Privacy Policy
Last updated: February 15, 2026
1. Overview
Confidere ("we," "us," or "our") operates confidere.biz (the "Site"). This Privacy Policy explains how we collect, use, store, and protect your information when you visit the Site or use our AI-powered chatbot ("Chatbot").
By using the Site, you consent to the practices described in this policy. If you do not agree, please do not use the Site.
2. What We Collect
Information You Provide Directly
- Chat messages: The content of your conversations with our Chatbot, including any questions, descriptions, or business information you share.
- Contact information: Your name, email address, and phone number if you voluntarily provide them through the Chatbot or contact forms.
- Service interest: Information about which services you're interested in, based on your interactions.
Information Collected Automatically
- Device and browser information: Browser type, operating system, screen resolution, and device type.
- IP address: Your IP address, which may indicate your approximate geographic location.
- Usage data: Pages visited, time spent on pages, click patterns, and referral sources.
- Session identifiers: Randomly generated session IDs to maintain continuity during Chatbot conversations. These are not linked to your real identity unless you provide identifying information.
- Cookies and similar technologies: See Section 5 below.
Information We Do Not Collect
- We do not knowingly collect payment or financial account information through the Site.
- We do not collect Social Security numbers or government-issued identification.
- We do not request or store login credentials for your other services.
3. How We Use Your Data
We use the information we collect to:
- Provide the service: Process your Chatbot messages and generate relevant responses.
- Follow up on inquiries: If you provide your contact information and express interest in our services, we may reach out to you. You can opt out at any time.
- Improve our services: Analyze aggregated, anonymized usage patterns to improve the Chatbot's responses and the Site's performance.
- Monitor performance: Track system health, token usage, and error rates to maintain service quality.
- Ensure security: Detect and prevent abuse, fraud, or unauthorized access.
- Comply with legal obligations: Respond to legal requests and enforce our Terms of Service.
We do not sell your personal information. We do not rent, trade, or sell your data to third parties for their marketing purposes.
4. Third-Party Services
We use the following third-party services that may process your data:
OpenAI
Chat messages are sent to OpenAI's API to generate Chatbot responses. OpenAI processes your input text on their servers. We use their API endpoint, meaning your data is sent to OpenAI for processing. Please review OpenAI's Privacy Policy for details on how they handle data.
Google Analytics (GA4) & Google Tag Manager
We use Google Analytics to understand Site traffic and usage patterns. Google may collect your IP address, browser information, and browsing behavior. You can opt out using the Google Analytics Opt-out Browser Add-on.
Vercel
Our Site is hosted on Vercel's infrastructure. Vercel may collect server logs including IP addresses and request metadata. See Vercel's Privacy Policy.
Supabase
We use Supabase for backend data storage, including chat conversation logs and lead information. Data is stored in Supabase-managed PostgreSQL databases. See Supabase's Privacy Policy.
6. Data Retention
- Chat conversations: We retain Chatbot conversation logs for up to 12 months for service improvement and lead follow-up purposes, after which they are deleted or anonymized.
- Contact information: If you provide your name, email, or phone number, we retain this information until you request its deletion or for up to 24 months from your last interaction, whichever comes first.
- Analytics data: Aggregated, anonymized analytics data may be retained indefinitely. Identifiable analytics data is retained according to Google Analytics' data retention settings (currently set to 14 months).
- Server logs: Basic server logs (IP addresses, request data) are retained for up to 30 days for security purposes.
7. Data Security
We implement reasonable technical and organizational measures to protect your data, including:
- Encrypted data transmission (HTTPS/TLS) for all Site traffic
- Secure, authenticated access to backend systems and databases
- Environment-based secret management (API keys and credentials are never exposed to client-side code)
- Row-level security policies on database tables
- Regular dependency updates and security patches
However, no method of internet transmission or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You use the Site at your own risk.
8. Your Rights
Depending on your location, you may have the following rights:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request that we correct inaccurate or incomplete data.
- Deletion: Request that we delete your personal data. We will comply within 30 days, subject to any legal obligations requiring us to retain certain data.
- Opt-out of communications: If you've provided your email, you can opt out of any follow-up communications at any time by replying "unsubscribe" or contacting us directly.
- Data portability: Request your data in a structured, commonly used format.
To exercise any of these rights, contact us at ben@confidere.biz. We will respond within 30 days.
9. International & EU Visitors (GDPR)
Confidere is a US-based business. If you are visiting from the European Union, European Economic Area, or the United Kingdom, please be aware:
- Your data is processed and stored in the United States.
- By using the Site, you consent to the transfer of your data to the US, where data protection laws may differ from your jurisdiction.
- We process your data based on: (a) your consent (e.g., using the Chatbot), (b) our legitimate interest in providing and improving our services, and (c) compliance with legal obligations.
Under GDPR, you have additional rights including the right to object to processing and the right to lodge a complaint with your local data protection authority. Contact us at ben@confidere.biz to exercise these rights.
10. Children's Privacy
The Site is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at ben@confidere.biz and we will promptly delete such information.
If we become aware that we have collected personal data from a child under 13 without verified parental consent, we will take steps to delete that information.
11. California Residents (CCPA)
If you are a California resident, you have the right under the California Consumer Privacy Act (CCPA) to:
- Know what personal information we collect, use, and disclose
- Request deletion of your personal information
- Opt out of the "sale" of personal information (note: we do not sell personal information)
- Not be discriminated against for exercising your privacy rights
To exercise these rights, contact us at ben@confidere.biz.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Changes take effect when posted to this page with an updated "Last updated" date. Your continued use of the Site after changes are posted constitutes your acceptance of the revised policy.
For material changes that significantly affect how we handle your data, we will make reasonable efforts to provide prominent notice.
13. Contact Us
If you have questions about this Privacy Policy or want to exercise your data rights, contact us at:
Confidere
Email: ben@confidere.biz
Website: confidere.biz
For data deletion or access requests, please include "Privacy Request" in your email subject line. We will respond within 30 days.