Privacy Policy

1. Who We Are

Briefr Inc. ("Briefr", "we", "us", or "our") operates the Briefr platform available at briefr.ai and related services. We are the data controller for personal information collected through our services.

If you have any questions about this Privacy Policy, please contact us at privacy@briefr.ai.

2. Information We Collect

Information you provide to us

• Account registration details: name, email address, password
• Profile information: company name, job title, profile photo
• Content you submit: notes, documents, files, and data you provide to generate reports
• Communications: messages you send us via support or contact forms
• Payment information: processed securely by our payment provider (we do not store card details)

Information collected automatically

• Usage data: pages visited, features used, time spent, click patterns
• Device data: browser type, operating system, screen resolution, IP address
• Log data: server logs, error reports, performance metrics
• Cookies and similar technologies (see Section 7)

Information from third parties

• OAuth providers: if you sign in via Google or Slack, we receive basic profile information
• Integrations: data from connected tools (Slack, Notion, Linear) only as authorised by you

3. How We Use Your Information

We use your information for the following purposes:

• Provide our services: generate reports, enable AI chat, manage your account
• Improve our product: analyse usage patterns to fix bugs and build better features
• Communicate with you: send service-related emails, respond to support requests, share product updates (with your consent)
• Process payments: manage subscriptions and billing
• Ensure security: detect and prevent fraud, abuse, and unauthorised access
• Comply with legal obligations: respond to lawful requests and enforce our terms

We do not use your content to train AI models. Your documents and reports are processed only to deliver the service you requested.

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your data under the following legal bases:

• Contract performance: providing the services you've signed up for
• Legitimate interests: improving our product and preventing fraud
• Consent: marketing communications and optional cookies
• Legal obligation: compliance with applicable laws

5. How We Share Your Information

We do not sell your personal data. We share information only in these circumstances:

• Service providers: trusted vendors who help us operate (cloud hosting, payment processing, analytics) — bound by strict data processing agreements
• Your direction: when you share a report link, the recipients can view that report
• Business transfers: in the event of a merger or acquisition, with prior notice
• Legal requirements: when required by law or to protect the rights and safety of Briefr and its users

6. Data Retention

We retain your data for as long as your account is active or as needed to provide services. You can delete your account at any time, and we will delete your personal data within 30 days, except where we are required to retain it for legal purposes.

Report data and uploaded content is deleted within 90 days of account closure unless you export it first.

7. Cookies

We use cookies and similar technologies to operate our service:

• Essential cookies: necessary for the service to function (cannot be disabled)
• Analytics cookies: help us understand how the product is used (opt-out available)
• Preference cookies: remember your settings and choices

You can manage cookie preferences in your browser settings or through our cookie preference centre.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: request a copy of the data we hold about you
• Correction: request correction of inaccurate data
• Deletion: request deletion of your data ("right to be forgotten")
• Portability: receive your data in a machine-readable format
• Objection: object to certain types of processing
• Restriction: request that we limit how we use your data
• Withdraw consent: opt out of consent-based processing at any time

To exercise any of these rights, email us at privacy@briefr.ai. We will respond within 30 days.

9. Security

We take security seriously. Your data is encrypted in transit (TLS 1.3) and at rest (AES-256). We are working toward SOC 2 Type II certification and conduct regular security audits.

In the event of a data breach that affects your personal data, we will notify you within 72 hours as required by applicable law.

10. International Transfers

Briefr is based in the United States. If you are accessing our service from the European Union, United Kingdom, or other regions with data transfer restrictions, your data may be transferred to and processed in the US under appropriate safeguards including Standard Contractual Clauses.

11. Children's Privacy

Briefr is not intended for use by anyone under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via an in-app notification at least 30 days before they take effect. Continued use of Briefr after changes take effect constitutes your acceptance of the updated policy.

13. Contact Us

For privacy-related questions or to exercise your rights:

• Email: privacy@briefr.ai
• General: hello@briefr.ai
• Address: Briefr Inc., 340 Pine Street, San Francisco, CA 94104, USA

EU/UK users may also lodge a complaint with their local data protection authority.