HomePrivacy Policy

Privacy Policy

Last updated: January 1, 2025 · Effective date: January 1, 2025

Overview

SideClaw AI (“SideClaw,” “we,” “our,” or “us”) operates the platform available at www.sideclaw.ai (the “Service”). This Privacy Policy explains what information we collect, why we collect it, how we use it, and the choices you have regarding your information.

By using SideClaw, you agree to the collection and use of information in accordance with this policy. If you do not agree with any part of this policy, please do not use the Service.

Short version: We collect only what we need to run the Service. We don't sell your data. We use standard industry security practices to protect it.

Information We Collect

Account Information

When you sign up for SideClaw, we collect your name, email address, organization name, and role. Authentication is handled via Feishu (Lark) OAuth — we receive a verified email address and display name from the identity provider.

Campaign & Usage Data

We store data you input into the Service, including campaign briefs, influencer records, email drafts and threads, negotiation notes, and reporting data. This information is necessary to provide the core functionality of the platform.

Gmail Integration Data

If you connect a Gmail account, we use the Gmail API to send outreach emails on your behalf and retrieve reply threads. We request only the permissions necessary to perform outreach and track responses. We do not read, index, or store emails unrelated to your SideClaw campaigns.

Log & Technical Data

We automatically collect server logs, IP addresses, browser type, operating system, pages visited, and error data for the purpose of operating, maintaining, and improving the Service.

How We Use Information

  • To provide, operate, and maintain the Service.
  • To authenticate your identity and manage your account.
  • To send outreach emails and track replies on your behalf via Gmail.
  • To generate AI-assisted content (briefs, email drafts, recommendations) using your campaign data.
  • To send transactional notifications, service updates, and support responses.
  • To analyze aggregate usage patterns and improve the platform.
  • To comply with legal obligations and enforce our Terms of Service.

We do not use your campaign data to train AI models or share it with third parties for advertising purposes.

Sharing & Disclosure

We do not sell, trade, or rent your personal information to third parties. We share information only in the following circumstances:

Service Providers

We work with infrastructure and service providers including Supabase (database and authentication), Google Cloud (Gmail API), and AI model providers (Google Gemini). These providers access information only as necessary to perform services on our behalf and are bound by data processing agreements.

Within Your Organization

Campaign data is shared with members of your organization in SideClaw according to their assigned roles (admin, operator, or viewer). You control who has access within your team.

Legal Requirements

We may disclose information if required by law, regulation, court order, or governmental authority, or if we believe in good faith that disclosure is necessary to protect the rights, property, or safety of SideClaw, our users, or others.

Business Transfers

If SideClaw is involved in a merger, acquisition, or asset sale, user information may be transferred. We will notify users before their information is transferred and becomes subject to a different policy.

Data Retention

We retain your account information and campaign data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law.

Log and technical data is retained for up to 90 days for operational and security purposes.

Security

We implement industry-standard security measures to protect your information, including:

  • All data transmitted between your browser and our servers is encrypted using TLS.
  • Database access is protected by Row-Level Security (RLS) policies, ensuring users can only access data belonging to their organization.
  • OAuth tokens (Gmail, Feishu) are encrypted at rest.
  • We conduct regular security reviews of our infrastructure and dependencies.

No method of transmission over the Internet is 100% secure. While we use commercially reasonable means to protect your information, we cannot guarantee absolute security.

Your Rights

Depending on your location, you may have the following rights regarding your personal information:

Access

Request a copy of the personal data we hold about you.

Correction

Request correction of inaccurate or incomplete data.

Deletion

Request deletion of your personal data, subject to certain exceptions.

Portability

Request a machine-readable export of your data.

Restriction

Request that we restrict processing of your data in certain circumstances.

Objection

Object to our processing of your data based on legitimate interests.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. For EEA/UK users, rights are governed by GDPR. For California residents, rights are governed by the CCPA.

Cookies & Tracking

We use cookies and similar tracking technologies to maintain your session, remember your preferences, and analyze usage of the Service.

TypePurpose
SessionMaintains your authenticated session across page loads.
PreferenceStores UI settings such as sidebar state.
AnalyticsAnonymous aggregate usage metrics to improve the product.

You can control cookies through your browser settings. Disabling session cookies will prevent you from logging in to the Service.

Third-Party Services

SideClaw integrates with the following third-party services. Each has its own privacy policy:

Children's Privacy

The Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us at [email protected] and we will promptly delete it.

International Data Transfers

SideClaw is operated from servers located in the United States and EU regions. If you access the Service from outside these regions, your information may be transferred to, stored, and processed in countries where data protection laws may differ from your own.

For transfers from the EEA, UK, or Switzerland, we rely on Standard Contractual Clauses (SCCs) as approved by the European Commission where applicable.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page and, for material changes, notify registered users by email or in-app notification at least 14 days before the change takes effect.

Your continued use of the Service after changes take effect constitutes your acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

SideClaw AI

Privacy inquiries: [email protected]

General support: [email protected]

Website: www.sideclaw.ai

Terms of Service →