Back to home

Privacy Policy

Last updated: March 9, 2026

Thank you for using ToolTrack AI ("we," "us," or "our"). This Privacy Policy explains how we collect, use, and protect your information when you use our platform at tooltrack.ai (the "Service").

1. Information We Collect

1.1 Account Information

When you create an account, we collect your name and email address. You may sign in using a magic link (email-based) or Google OAuth. We do not store passwords.

1.2 Organization Data

You may create or join an organization and add information about your SaaS tools, team members, access requests, and onboarding workflows. This data is stored in our database and is only accessible to members of your organization based on their role (Owner, Admin, or Member).

1.3 Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or banking details on our servers. Stripe's privacy policy governs the handling of your payment information.

1.4 Usage Data

We collect non-personal data such as browser type, device information, and pages visited to improve the Service. We may use cookies for session management and analytics.

2. How We Use Your Data

  • To provide and maintain the Service
  • To process access requests and manage team workflows
  • To send transactional emails (invitations, approvals, notifications)
  • To process subscription payments via Stripe
  • To generate audit logs for compliance purposes
  • To improve the Service based on usage patterns

3. AI Assistant

Our AI assistant processes queries about your organization's tool data, access requests, and team information. Queries are sent to Anthropic's Claude API for processing. We do not use your data to train AI models.

4. Data Sharing

We do not sell, trade, or rent your personal information. We share data only with:

  • Stripe — for payment processing
  • Supabase — for database hosting and authentication
  • Resend — for transactional email delivery
  • Anthropic — for AI assistant functionality

5. Data Security

Data is encrypted in transit (TLS) and at rest. We use row-level security (RLS) policies to ensure users can only access data within their organization. Audit logs are immutable and cannot be modified or deleted.

6. Data Retention and Deletion

You can request deletion of your account and associated data by contacting us at hello@tooltrack.ai. We will delete your data within 30 days of a verified request.

7. Children's Privacy

ToolTrack AI is not intended for users under the age of 16. We do not knowingly collect data from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service.

9. Contact

For questions about this Privacy Policy, contact us at hello@tooltrack.ai.