1. Introduction
This Privacy Policy explains how Clientra, Inc. ("Clientra", "we", "us") collects, uses, and shares information about you when you use our website, applications, and services (collectively, the "Service").
We designed Clientra with privacy in mind: we collect only what we need, we never sell your data, and we provide tools to access, export, and delete your information at any time.
2. Information we collect
Account information: name, email, password hash, profile photo, and workspace details you provide.
Customer data: clients, contracts, invoices, files, and other content you upload or create within the Service.
Usage data: pages visited, features used, device type, browser, IP address, and approximate location, collected through cookies and similar technologies.
Payment information: collected and processed by Paddle, our merchant of record. Clientra does not store full card numbers — we receive only the order metadata Paddle returns (last 4 digits, country, subscription status).
3. How we use information
To provide, maintain, and improve the Service, including authenticating you and personalizing your experience.
To process payments, send transactional emails (receipts, security alerts), and respond to support requests.
To monitor for fraud, abuse, and security incidents, and to enforce our Terms.
With your consent, to send product updates and educational content. You may opt out at any time.
5. AI processing
When you use AI-assisted features, your prompts and the relevant context are processed by trusted model providers under contracts that prohibit training on your data. Outputs are returned to you and stored within your workspace until you delete them.
6. Your rights
Depending on where you live, you may have the right to access, correct, delete, or export your personal information, or to object to or restrict certain processing. You may also withdraw consent at any time.
To exercise these rights, email privacy@clientra.com. We will respond within the timeframes required by applicable law (typically 30 days).
7. Data retention
We retain account and customer data for as long as your account is active and for a reasonable period thereafter to comply with legal obligations and resolve disputes. You can delete your workspace at any time to begin the deletion process.
8. Security
We use industry-standard safeguards including encryption in transit (TLS 1.2+) and at rest (AES-256), continuous monitoring, regular penetration testing, and least-privilege access controls. We are SOC 2 Type II audited and GDPR-compliant.
No method of transmission over the internet is 100% secure. Report suspected vulnerabilities to security@clientra.com.
9. International transfers
Clientra is headquartered in the United States. By using the Service you consent to transferring your information to the U.S. and other countries. Where required, we use Standard Contractual Clauses or other valid mechanisms to safeguard transfers from the EEA, UK, and Switzerland.
10. Children's privacy
The Service is not directed to anyone under 16. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact privacy@clientra.com and we will promptly delete it.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be announced via in-app notice or email at least 14 days before they take effect.
13. Contact us
Privacy questions? Email privacy@clientra.com or write to: Clientra, Inc., Attn: Privacy Officer, 548 Market Street, San Francisco, CA 94104, USA.