Privacy Policy

Effective date: March 2026

What We Collect

  • Account information: name, email address, profile picture (from Google OAuth).
  • Usage data: conversations, prompts, agents, folders, tags, and preferences.
  • Payment data: handled entirely by Stripe — we store only your Stripe customer ID and subscription ID, never credit card numbers.
  • Analytics: basic product analytics (page views, feature usage). No personal data is sold or shared.

What We Don’t Collect

  • We never see or store your API keys in plaintext — they are encrypted with AES-256-GCM using your personal passphrase before storage.
  • We never read, analyze, or train on your conversations.
  • We never share your data with third parties (except Stripe for payment processing).
  • We do not track you across other websites.

How Your Data Flows

  1. When you send a message, it goes from your browser → Perpendo server → directly to the AI provider (Anthropic, OpenAI, etc.) using your API key.
  2. Perpendo stores the conversation in your isolated database for your convenience.
  3. Your API key is decrypted in memory only for the duration of the API call, then discarded.
  4. Each user’s data is completely isolated — no user can access another user’s data.

Data Storage & Security

  • All data stored in PostgreSQL with per-user isolation.
  • API keys encrypted with AES-256-GCM.
  • All connections encrypted in transit (HTTPS/TLS).
  • Database encrypted at rest.
  • Hosted on Railway (US-based infrastructure).

Data Retention

  • Your data is stored as long as your account is active.
  • Upon account deletion, all your data (conversations, API keys, prompts, agents, settings) is permanently deleted within 30 days.
  • Backups containing your data are purged on a rolling schedule.

Your Rights

  • Access: view all your data at any time through the app.
  • Export: download your conversations as Markdown or JSON.
  • Delete: delete individual conversations or your entire account.
  • Portability: export and take your data elsewhere at any time.

Cookies

  • We use only essential cookies for authentication (session management).
  • No advertising cookies, no tracking cookies, no third-party analytics cookies.

Children’s Privacy

Perpendo is not intended for users under 18. We do not knowingly collect data from minors.

Self-Hosted Version

The following applies to users running the Perpendo Self-Hosted version on their own hardware.

  • All data stays on your machine — nothing is sent to CareerLinc Inc.
  • The only network calls Perpendo Self-Hosted makes are:
    • License validation on startup (sends your license key and a machine fingerprint — nothing else).
    • Version check for updates (sends nothing; just fetches the latest version number).
    • API calls to AI providers initiated by you (e.g., Anthropic, OpenAI).
  • No telemetry, no analytics, no usage tracking in the self-hosted version.
  • Your SQLite database is stored locally on your machine. CareerLinc Inc. has no access to your conversations, API keys, or any other data.

Third-Party Services

  • Google OAuth (authentication) — subject to Google’s privacy policy.
  • Stripe (payment processing) — subject to Stripe’s privacy policy.
  • AI providers (Anthropic, OpenAI, etc.) — subject to each provider’s privacy policy. Users connect directly; CareerLinc Inc. has no visibility into provider data handling beyond the API call.

Changes to This Policy

We will notify users of material changes via email or in-app notification. The effective date at the top of this policy will be updated accordingly.

Contact

Privacy questions? privacy@perpendo.app or support@perpendo.app.