DistillDoc

Privacy Policy

Effective June 12, 2026

DistillDoc (“we”, “us”) is a document analysis service. This policy explains what data we collect, why, and how long we keep it. We keep it short because we don't do much with your data.

What we collect

Email address

For one-off analyses, you provide an email to receive your summary. We store a one-way SHA-256 hash — not the address itself — for refund eligibility. The actual address is passed to Resend to deliver your summary, then is not retained by us. For Vault accounts, your email is stored in your profile for login, billing, and optional renewal reminders.

Vault account

If you create a free DistillDoc Vault account, we store your email (via Supabase Auth), contract metadata you enter or confirm, AI-generated summaries, and chat history with each contract. This data is private to your account and protected by row-level security in our database.

Your PDF document

For one-off analysis, your PDF is stored in private cloud storage (Supabase) only during processing and deleted within 60 seconds of payment. For vault uploads, the PDF is deleted immediately after we extract text for metadata — we keep structured fields and a brief summary, not the file.

Payment information

We do not handle card data. Stripe processes one-time analysis payments ($4.99) and optional Vault Pro subscriptions ($9/month). We receive payment confirmations and subscription status, not card numbers.

Usage data

Standard web server logs (IP address, browser, timestamp) are retained by our hosting provider (Railway) per their standard policies. We may use PostHog for product analytics when configured — no ad tracking or data sales.

Captcha interactions

The refund page uses Cloudflare Turnstile to prevent automated abuse. Cloudflare may process your IP address and browser signals to determine whether you are human. No data from this check is stored by us.

How we use it

  • To process your document and return a summary.
  • To email you the summary and, optionally, brief follow-ups (3 days and 14 days after delivery). You can reply “unsubscribe” to any follow-up email to stop receiving them.
  • To issue refunds if you request one.
  • To detect abuse and maintain service availability.

We do not sell your data. We do not use your document content to train any model. Your document is processed by our AI provider (Anthropic) under their API terms, which prohibit training on API inputs.

Third-party services

Running DistillDoc requires the following sub-processors. Each link goes to their privacy policy.

AnthropicAI analysis of your document text
StripePayment processing (your card data stays with Stripe — we see only a confirmation)
ResendTransactional email delivery
SupabaseTemporary file storage and database
RailwayHosting and infrastructure
CloudflareRefund page bot protection (Turnstile)

Data retention

PDF file: Deleted immediately after analysis (within 60 seconds of payment).

One-off summaries: Stored so your share link remains accessible until you request deletion.

Vault data: Retained while your account exists. Delete individual contracts from your dashboard or contact us to delete your account.

Email hash (one-off): Retained to enforce the refund guarantee (30-day window, one refund per address) and prevent abuse.

Payment records: Retained by Stripe per their legal obligations.

Security

We encrypt all data in transit using TLS. Data at rest is encrypted by Supabase and Railway using AES-256. Access to production systems is restricted to authorized operators. No security measure is perfect, but we do not store your document beyond the time needed to produce your summary.

Your rights

You may request access to, correction of, or deletion of data we hold about you. Because we store only a hash of your email (not the address itself), we cannot look up your record by email alone — please include your share link or job ID when contacting us. We respond to rights requests within 45 days.

California residents (CCPA)

If you are a California resident, you have the following rights:

  • Right to know — what personal information we collect, use, and disclose.
  • Right to delete — request deletion of personal information we hold.
  • Right to correct — request correction of inaccurate personal information.
  • Right to opt out of sale — we do not sell your personal information.
  • Right not to be discriminated against — exercising these rights will not affect your access to the service.

Cookies and local storage

Vault login sessions are stored in your browser via Supabase Auth (typically localStorage, not cookies). Stripe sets cookies during checkout for fraud prevention. We do not use advertising or cross-site tracking cookies.

Children

DistillDoc is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has submitted a document through our service and we will delete any associated data promptly.

Changes

We may update this policy. Material changes will be noted by updating the effective date above. Continued use of the service after changes constitutes acceptance.