Privacy Policy
Last updated: March 16, 2026
consultingapp.io ("we," "us," "our") is built for consultants, analysts, and researchers who handle sensitive client material every day. We designed our data practices to earn and keep your trust. This policy explains — in plain language — what we collect, why, and what we never do.
Our Data Promise
- 1.We never sell your data. Not to advertisers, data brokers, or anyone else.
- 2.We never share your documents with other users or organizations unless you explicitly invite them.
- 3.We never use your content to train AI models. Documents you upload are processed by Claude (Anthropic) under their zero-retention API policy — your data is not stored or used for model training.
- 4.You own your data. You can export or delete everything at any time.
What We Collect
Account Information
Name, email address, and profile photo — provided through Clerk, our authentication provider. We use this to manage your account and send transactional emails (password resets, billing receipts).
Documents You Upload
PDFs, DOCX files, spreadsheets, audio recordings, and other files you upload to your projects. These are stored securely and only accessible to you and team members you explicitly invite.
Generated Content
Simulation results, reports, frameworks, financial models, and other outputs created within the platform. All of this belongs to you.
Usage Information
Page views, feature usage counts, and performance metrics. We use this to improve the platform and enforce tier limits — not for advertising.
Payment Information
Billing details are handled entirely by Stripe. We never see or store your full credit card number. We only receive confirmation of payment status.
How We Store Your Data
- Database: Neon PostgreSQL with encryption at rest and in transit (TLS 1.3).
- File storage: Vercel Blob Storage with encryption at rest.
- Application hosting: Vercel (frontend) and Railway (engine service), both with SOC 2 compliance.
- Region: US East (Virginia) for primary data storage.
Third-Party Services
We use a small number of trusted services to operate the platform. Each processes only the minimum data necessary:
| Service | Purpose | Data Shared |
|---|---|---|
| Clerk | Authentication | Email, name |
| Stripe | Billing | Payment info (direct) |
| Anthropic (Claude) | AI analysis | Document text (zero-retention API) |
| Vercel | Hosting & storage | Application data |
| Neon | Database | All structured data |
Your Rights
- Access: You can view all your data through the platform dashboard at any time.
- Export: Download your documents, reports, frameworks, and simulation data in standard formats (PDF, CSV, JSON).
- Delete: Delete individual projects, documents, or your entire account. Deletion is permanent — we do not retain backups of deleted data beyond 30 days.
- Portability: Export all project data in machine-readable formats for migration.
- Correction: Update your account information at any time through Settings.
Data Retention
- Active accounts: Data is retained as long as your account is active.
- Deleted projects: Permanently removed within 30 days.
- Canceled accounts: Data is retained for 90 days after cancellation to allow reactivation, then permanently deleted.
- Contact form submissions: Retained for 12 months, then deleted.
Cookies
We use only essential cookies required for authentication and session management. We do not use advertising cookies, tracking pixels, or third-party analytics that follow you across the web.
Children's Privacy
consultingapp.io is designed for professional use. We do not knowingly collect information from children under 16. If you believe a child has created an account, please contact us and we will promptly delete it.
Changes to This Policy
If we make material changes to this policy, we will notify you via email at least 30 days before they take effect. Minor clarifications may be made without notice.
Questions?
For privacy-related questions or data requests, please contact us. We aim to respond within 2 business days.