← Back to home

Privacy Policy

Effective date: January 1, 2026

1. Who We Are

The OpsGrade (“we,” “our,” “us”) is a business operations analysis service available at yourdomain.com. This Privacy Policy explains how we collect, use, and protect information when you use our Service.

2. Information We Collect

Information you provide directly

  • Email address — collected when you start an audit or create an account
  • Business information — the answers you provide in the audit intake form, including your business name, business type, team size, and descriptions of your operational processes
  • Payment information — billing details are collected and processed directly by Stripe, our payment processor. We do not store full credit card numbers or payment card data on our servers
  • Affiliate information — name, email, and platform details if you apply to the affiliate program

Information collected automatically

  • Usage data — pages visited, time spent, audit results accessed, collected via Vercel Analytics
  • Cookies — we use a single functional cookie to track affiliate referrals (a 60-day attribution cookie set when you visit via an affiliate link). We do not use advertising cookies or third-party tracking pixels

3. How We Use Your Information

  • To generate your audit report — your intake form responses are sent to the Claude AI API to produce a scored analysis
  • To deliver the Service — we use your email to send your report, subscription notifications, and re-audit alerts
  • To improve scoring accuracy — we may analyze anonymized, aggregated audit data to refine the scoring framework over time. Individual responses are never shared in identifiable form
  • To process payments — we share necessary transaction data with Stripe to complete purchases and manage subscriptions
  • To send marketing emails — if you have not opted out, we may send you follow-up emails related to your audit results and relevant product updates. Every email includes an unsubscribe link
  • To track affiliate referrals — if you were referred by an affiliate, we record that attribution to calculate commissions

4. What We Do Not Do

  • We never sell your personal information or business data to third parties
  • We never share your individually identifiable information with advertisers or data brokers
  • We do not use your business information to train AI models beyond the generation of your own audit report
  • We do not share your audit results with other businesses or third parties without your consent

5. Third-Party Services

We use the following third-party services to operate the platform:

  • Stripe — payment processing. Stripe’s privacy policy governs how they handle your payment data
  • Supabase — database and file storage for audit reports. Data is stored in the United States
  • Resend — transactional email delivery
  • Anthropic (Claude API) — AI analysis of audit intake responses. Inputs are processed per Anthropic’s API usage policy
  • Vercel — website hosting and analytics. Analytics data is anonymized and does not include personal identifiers

6. Data Retention

We retain your audit data for up to 2 years from the date of creation to support historical score tracking and the monthly re-audit subscription feature.

If you cancel your subscription or request deletion, your data will be permanently deleted within 30 days of the request, except where retention is required by law or for fraud prevention purposes.

7. Your Rights (GDPR)

If you are located in the European Economic Area, you have the following rights regarding your personal data:

  • Right to access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate data
  • Right to erasure — request deletion of your data
  • Right to portability — request your data in a machine-readable format
  • Right to object — object to processing of your data for marketing purposes

To exercise any of these rights, email privacy@yourdomain.com. We will respond within 30 days.

8. Cookie Policy

We use cookies for one purpose only:

  • Affiliate attribution cookie — a 60-day cookie set when you visit via an affiliate referral link, used solely to credit the referring affiliate if you make a purchase

We do not use advertising cookies, retargeting cookies, or third-party tracking cookies. You can disable cookies in your browser settings without affecting your ability to use the Service (this will only affect affiliate attribution).

9. Security

We implement industry-standard security measures including encrypted connections (HTTPS), row-level security on database access, and restricted API key access. No method of transmission over the internet is 100% secure. We cannot guarantee absolute security but we take reasonable steps to protect your information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted to this page with an updated effective date. Continued use of the Service after changes are posted constitutes acceptance of the revised Policy.

11. Contact

For privacy questions, data requests, or to exercise your rights, contact us at: privacy@yourdomain.com

Terms of ServiceAffiliate Agreement