Privacy Policy

Last updated: March 30, 2026

1. Information We Collect

We collect information you provide directly: email address, brand assets (colors, fonts, logos), and integration credentials (OAuth tokens for connected platforms).

2. How We Use Your Information

• To operate and maintain your brand vault
• To sync brand tokens across your connected platforms
• To process payments via Stripe
• To send transactional emails about your account

3. Data Storage

Your data is stored on Supabase (PostgreSQL) with encryption at rest. Integration credentials are stored encrypted. We do not sell or share your data with third parties.

4. BYOK Data

If you use Bring Your Own Key (BYOK) for AI features, your API keys are used only for the specific extraction task and are not stored beyond the session. We do not access your AI provider account.

5. Third-Party Services

Thread integrates with platforms you authorize (Webflow, Notion, Twitter, etc.). Data sent to these platforms is governed by their respective privacy policies.

6. Cookies

We use essential cookies for authentication. We do not use tracking cookies or analytics beyond basic server logs.

7. Data Deletion

You can delete your account and all associated data at any time from your dashboard settings. Deletion is permanent and irreversible.

8. Changes to This Policy

We may update this policy periodically. Changes will be posted on this page with an updated date.

9. Contact

For privacy-related questions, email hello@calyvent.com.