Privacy Policy
Last Updated: December 2025
Summary: We collect information to provide our AI-powered client communication platform. We never sell your data. You control your information and can request access, correction, or deletion at any time.
1. Information We Collect
We collect information to provide and improve our services. Here's what we collect and why:
Personal Information
- Account Information: Name, email address, phone number, and company name when you sign up
- Billing Information: Payment details processed securely through Stripe (we don't store full card numbers)
- Profile Data: Business type, industry, and preferences you provide
Customer Data
- Your Clients' Information: Names, contact details, and communication history of your customers that you input into our platform
- Communication Data: Emails, messages, and AI-generated draft responses
- Booking & Payment Records: Appointment details, invoices, and transaction history
Usage Data
- Platform Activity: How you interact with our features, pages visited, and actions taken
- Device Information: Browser type, operating system, and IP address
- Performance Data: Error logs and system diagnostics to improve reliability
2. How We Use Your Information
We use your information for the following purposes:
- Provide Services: Operate our platform, process your requests, and deliver AI-powered features
- Generate AI Drafts: Create context-aware email responses (always requiring your approval before sending)
- Process Payments: Handle subscriptions, invoicing, and payment confirmations through Stripe
- Calendar Management: Sync appointments and bookings with Google Calendar
- Customer Support: Respond to your inquiries and resolve issues
- Improve Services: Analyze usage patterns to enhance features and user experience
- Send Communications: Deliver service updates, security alerts, and (with consent) marketing messages
AI-Generated Content: Our AI assists with drafting emails and responses. All AI-generated content requires human review and approval before being sent. You maintain full control over outgoing communications.
3. Information Sharing and Disclosure
We do not sell your personal information. We share data only in these circumstances:
Service Providers
We share data with trusted third-party services that help us operate our platform (listed in Section 4). These providers are contractually bound to protect your information.
Legal Requirements
We may disclose information if required by law, subpoena, or court order, or to protect our rights, safety, or property.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change and your options.
With Your Consent
We may share information with third parties when you explicitly authorize us to do so.
4. Third-Party Services
StriveForward integrates with the following services to provide our functionality:
Current Integrations
- Stripe: Processes payments securely. Stripe Privacy Policy
- Google Calendar: Syncs appointments and bookings. Google Privacy Policy
- Gmail: Enables email integration. Google Privacy Policy
- OpenAI API: Powers AI email drafting (human approval required). OpenAI Privacy Policy
- Cloudflare: Provides hosting and security. Cloudflare Privacy Policy
Coming Soon
5. Data Security
We implement industry-standard security measures to protect your data:
- Encryption: All data is encrypted at rest and in transit using TLS 1.2+
- Multi-Tenant Architecture: Each organization's data is fully isolated from other customers
- Access Control: Role-based permissions ensure users only access authorized data
- Infrastructure Security: Hosted on secure cloud infrastructure with regular security updates
- Monitoring: Continuous monitoring for suspicious activity and potential threats
- Employee Training: Our team is trained on data protection best practices
While we implement robust security measures, no system is 100% secure. We encourage you to use strong passwords and keep your login credentials confidential.
6. Data Retention
We retain your data as follows:
- Active Accounts: We retain your data for as long as your account is active
- Deletion Requests: Upon request, we delete your personal data within 30 days
- Backup Retention: Backups may be retained for up to 90 days for disaster recovery
- Legal Compliance: Some data may be retained longer if required by law (e.g., tax records, legal disputes)
After account termination, we may retain anonymized, aggregated data for analytics purposes.
7. Your Rights (GDPR & CCPA)
You have the following rights regarding your personal information:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your personal data ("right to be forgotten")
- Portability: Receive your data in a portable, machine-readable format
- Restrict Processing: Request limitation of how we process your data
- Object: Object to certain types of processing, including marketing
- Withdraw Consent: Withdraw consent where processing is based on consent
- Non-Discrimination: We will not discriminate against you for exercising your rights
How to Exercise Your Rights
To exercise any of these rights, please contact us at hello@striveforward.io. We will respond within 30 days. We may need to verify your identity before processing your request.
California Residents (CCPA)
California residents have additional rights under the California Consumer Privacy Act. You may request disclosure of the categories and specific pieces of personal information collected, the sources and purposes of collection, and third parties with whom we share data.
9. Children's Privacy
StriveForward is designed for business use and is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18.
If we learn that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us at hello@striveforward.io.
10. International Data Transfers
StriveForward is based in the United States, and your data is stored and processed in the USA. If you are accessing our services from outside the United States, please be aware that your data will be transferred to, stored, and processed in the United States.
EU/EEA Users
For users in the European Union or European Economic Area, we comply with GDPR requirements for international data transfers. We implement appropriate safeguards, including standard contractual clauses approved by the European Commission.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page
- Notify you via email or through the platform for significant changes
- Provide a summary of key changes
We encourage you to review this Privacy Policy periodically. Your continued use of our services after changes take effect constitutes acceptance of the revised policy.
12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: hello@striveforward.io
- Address: StriveForward, Portsmouth, NH, USA
We aim to respond to all inquiries within 5 business days.