Privacy Policy

Context Clarity, Inc. (“Company,” “we,” “us,” or “our”) operates ClarityCoreMCP, an AI-powered cross-domain intelligence platform. This Privacy Policy explains what data we collect, how we use it, and what rights you have over it.

We collect the following categories of information:

• ›Account information — name, email address, and authentication credentials (managed by Clerk)
• ›Usage data — queries submitted to the Service, tool invocations, timestamps, and response metadata
• ›Technical data — IP address, browser/client type, device information, and access logs
• ›Billing data — subscription plan and billing status (payment details handled entirely by Stripe; we never see or store your card number)

We do not sell your personal data. We do not share data with third-party advertisers. We do not build advertising profiles. We do not use tracking pixels or engage in cross-site behavioral targeting.

Your queries are used solely to deliver the Service and improve response quality. They are never sold, licensed, or shared with external parties for their own purposes.

We use a minimal set of cookies strictly necessary to operate the Service:

• ›Clerk session token — authenticates your login session. Strictly functional — no tracking or advertising purpose.
• ›CSRF token — protects against cross-site request forgery attacks. Session-scoped, no personal data stored.
• ›Stripe checkout cookies — Stripe may set cookies during payment flows for fraud prevention. These are controlled by Stripe and scoped to their domain.

We do NOT use advertising cookies, tracking pixels, or cross-site behavioral targeting. There are no Google Analytics, Mixpanel, or similar third-party analytics cookies on this site.

We use the data we collect to:

• ›Deliver, maintain, and improve the Service
• ›Process your queries through AI models and return cited, verified responses
• ›Cache results to improve performance for similar queries
• ›Manage your account, subscriptions, and billing
• ›Communicate with you about your account, updates, and security notices
• ›Detect and prevent abuse, fraud, and unauthorized access

When you submit a query, it is processed by AI models including Anthropic's Claude API and, in some cases, local inference models running on our infrastructure. These models generate the responses you receive.

We do NOT use your queries to train or fine-tune ANY AI model — ours or anyone else's. Your data is used for inference only.

Anthropic's commercial API terms also prohibit them from training on data submitted through their API. Your queries are processed and discarded by the model; they do not enter any training dataset.

Query results may be cached in our database to reduce latency on similar requests. Cached data is scoped to your account and is not accessible to other users. Cached query results are retained for up to 90 days, then automatically purged.

We log usage metadata (tool name, credits consumed, timestamps) for billing and abuse prevention. We do NOT log the content of your queries in our billing or usage systems.

We share data only with the following parties, strictly as required to operate the Service:

• ›Anthropic (Claude API) — your query text is sent to Anthropic for AI processing. Anthropic does not train on commercial API data. See Anthropic's Privacy Policy.
• ›Clerk — authentication data only (email, login events). Clerk never receives your queries or usage data. See Clerk's Privacy Policy.
• ›Stripe — billing data only (plan, payment status, invoices). Stripe never sees your queries or AI-generated responses. See Stripe's Privacy Policy.
• ›Railway — cloud infrastructure hosting. PostgreSQL databases and application servers.

We do NOT sell, rent, or share your data with any other third party.

Law enforcement: We will only disclose user data in response to valid legal process (subpoena, court order, or equivalent). We will notify you of any such request unless we are legally prohibited from doing so.

During account registration, we collect hashed IP addresses and user agent fingerprints for abuse prevention. Raw IP addresses are never stored — only cryptographic hashes that cannot be reversed to identify you.

This data is used solely to detect and prevent fraudulent account creation (e.g., mass automated signups). Signup audit data is retained for 90 days, then automatically purged.

Your data is stored in PostgreSQL databases hosted on Railway with encryption at rest. Application data is transmitted over HTTPS/TLS. Access to production systems is restricted to authorized personnel only.

While we implement commercially reasonable security measures, no system is perfectly secure. We cannot guarantee absolute protection against all threats.

We retain your account data for as long as your account is active. Cached query results are retained for up to 90 days. Usage logs are retained for up to 12 months. After these periods, data is automatically purged.

When you delete your account, we remove your personal data within 30 days. Some anonymized, aggregated data may be retained for analytics purposes.

You have the right to:

• ›Access — request a copy of the personal data we hold about you
• ›Correction — request correction of inaccurate data
• ›Deletion — request deletion of your account and associated data
• ›Export — request a machine-readable export of your data
• ›Objection — object to specific processing activities where permitted by law

To exercise any of these rights, contact us at nick@contextclarity.ai. We will respond within 30 days.

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• ›Right to know — you may request disclosure of the categories and specific pieces of personal information we have collected about you
• ›Right to delete — you may request that we delete personal information we have collected from you, subject to certain exceptions
• ›Right to opt out of sale — we do not sell personal information. Because no sale occurs, there is nothing to opt out of.
• ›Right to non-discrimination — we will not discriminate against you for exercising any of your CCPA rights

To exercise your California privacy rights, contact us at nick@contextclarity.ai. We will verify your identity before processing your request and respond within 45 days.

The Service is not directed to individuals under 18. We do not knowingly collect data from minors. If you believe a minor has provided us with personal data, contact us and we will delete it promptly.

Our servers are located in the United States. If you access the Service from outside the U.S., your data will be transferred to and processed in the U.S. By using the Service, you consent to this transfer.

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice within the Service at least 30 days before taking effect. Your continued use after changes become effective constitutes acceptance of the revised policy.

Questions or concerns about your privacy? Contact us at nick@contextclarity.ai.

Context Clarity, Inc.
Denver, Colorado