Legal

Privacy Policy

Effective February 10, 2026

1. Who We Are

PolicyFront ("we," "us," or "our") operates the PolicyFront.io website and associated services (collectively, the "Service"). This Privacy Policy describes how we collect, use, disclose, and protect your information when you use our Service.

2. Information We Collect

Information You Provide

  • Account registration information (name, email address, password)
  • Waitlist signup information (email address)
  • Topics, keywords, and monitoring preferences you configure
  • Communications you send to us (support requests, feedback)
  • Payment information (processed by third-party payment processors; we do not store payment card details)

Information Collected Automatically

  • Device and browser information (type, operating system, screen resolution)
  • IP address and approximate geolocation
  • Usage data (pages visited, features used, timestamps)
  • Cookies and similar tracking technologies

Information From Third-Party Sources

  • Publicly available legislative data from government databases
  • Publicly available media content from news outlets and publications
  • Journalist and outlet information derived from public reporting

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To create and manage your account
  • To deliver monitoring alerts, digests, and notifications
  • To process transactions and send related information
  • To respond to your comments, questions, and support requests
  • To send administrative information (service updates, security alerts)
  • To detect, prevent, and address technical issues, fraud, or illegal activity
  • To comply with legal obligations
  • To enforce our Terms of Service

4. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

  • Service Providers: With third parties who perform services on our behalf (hosting, analytics, payment processing, email delivery)
  • Legal Requirements: When required by law, subpoena, court order, or governmental request
  • Protection of Rights: To protect the rights, property, or safety of PolicyFront, our users, or others
  • Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets
  • With Your Consent: When you have given us explicit permission

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. We will retain and use your information as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. Monitoring data (media mentions, legislative records) may be retained indefinitely as part of the historical record of the Service. You may request deletion of your account and associated personal data at any time by contacting us.

6. Data Security

We implement commercially reasonable technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit (TLS/SSL), encryption at rest, access controls, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Object to or restrict processing of your information
  • Data portability (receive your data in a structured format)
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@policyfront.io.

8. Cookies

We use essential cookies required for the Service to function (authentication, session management). We may use analytics cookies to understand how the Service is used. You can control cookie preferences through your browser settings. Disabling essential cookies may prevent you from using certain features of the Service.

9. Third-Party Services

The Service may contain links to third-party websites, services, or content. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you access through our Service. Third-party services we use include Supabase (database and authentication), Vercel (hosting), and Firecrawl (web content indexing).

10. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete such information.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to such countries.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Effective" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy, please contact us at privacy@policyfront.io.