CatchIntent LogoCatchIntent

Privacy Policy

Learn how CatchIntent collects, uses, and protects your data. We are committed to transparency and protecting your business information.

Last updated: December 2024

At CatchIntent, we are committed to protecting your privacy and being transparent about how we handle your data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our buyer intent detection platform.

1. Information We Collect

1.1 Account Information

When you create an account or workspace, we collect:

  • Business Information: Company name, business email address, and billing information
  • User Credentials: Email address, encrypted password, and authentication tokens
  • Profile Data: Name, role, timezone preferences, and notification settings
  • Team Information: Email addresses and roles of team members you invite to your workspace

1.2 Service Configuration Data

To provide our intent detection service, we collect:

  • Listener Configurations: Keywords, phrases, and platform preferences you configure to monitor
  • Alert Settings: Your notification preferences including email addresses, Slack channels, Discord servers, Telegram chats, and custom webhook endpoints
  • Integration Credentials: OAuth tokens and API keys for third-party integrations (Slack, Discord, Telegram, email services) stored in encrypted form

1.3 Signal and Analytics Data

Our service processes and stores:

  • Public Content: Posts and comments from public platforms (Reddit, Hacker News, Bluesky) that match your configured keywords
  • AI Analysis Results: Intent scores, relevance ratings, sentiment analysis, and AI-generated reasoning for each signal
  • Engagement Metrics: Signal views, actions taken, and response tracking within our platform

1.4 Usage and Technical Data

We automatically collect:

  • Usage Data: Features accessed, actions performed, time spent in the application, and interaction patterns
  • Device Information: Browser type, operating system, device identifiers, and screen resolution
  • Log Data: IP addresses, access times, pages viewed, and error logs
  • Performance Data: API response times, error rates, and service performance metrics

1.5 Payment Information

For billing purposes, we collect:

  • Billing Details: Company name, billing address, and VAT/tax identification numbers
  • Payment Method: All payment information is processed and stored securely by our payment processor, Paddle. We do not store any credit card or payment details on our servers. Please refer to Paddle’s Privacy Policy for information about how they handle your payment data.

2. How We Use Your Information

2.1 Service Delivery

We use your information to:

  • Operate and maintain the CatchIntent platform
  • Monitor public platforms for content matching your configured keywords
  • Analyze content using AI to detect buying intent signals
  • Deliver alerts and notifications based on your preferences
  • Process and manage your subscription and billing

2.2 Service Improvement

We use aggregated and anonymized data to:

  • Improve our AI models and intent detection accuracy
  • Analyze usage patterns to enhance user experience
  • Identify and fix bugs, errors, and performance issues
  • Develop new features and functionality

2.3 Communication

We may contact you to:

  • Send service-related notifications and alerts
  • Provide customer support and respond to inquiries
  • Send product updates and feature announcements
  • Share relevant content about buyer intent detection (with your consent)

2.4 Security and Compliance

We use your information to:

  • Detect and prevent fraud, abuse, and unauthorized access
  • Enforce our Terms of Service
  • Comply with legal obligations and respond to lawful requests
  • Protect the rights and safety of our users and third parties

3. Data from Public Platforms

3.1 What We Monitor

CatchIntent monitors publicly available content from social platforms including:

  • Reddit (public subreddits and posts)
  • Hacker News (public posts and comments)
  • Bluesky (public posts)
  • Additional platforms as we expand our coverage

3.2 How We Handle Public Data

  • We only access and process content that is publicly available
  • We do not access private messages, protected accounts, or restricted content
  • We store relevant posts that match your keywords for analysis and display
  • We respect platform terms of service and rate limits
  • We do not scrape or collect data in ways that violate platform policies

3.3 Content Retention

  • Signals (matched public posts) are retained for the duration of your subscription
  • Upon account deletion, your stored signals are permanently removed within 30 days
  • Aggregated, anonymized analytics may be retained for service improvement

4. Data Sharing and Disclosure

4.1 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information or business data to third parties for their marketing purposes.

4.2 Service Providers

We share data with trusted third-party service providers who assist us in:

  • Cloud Infrastructure: Hosting and data storage (Hetzner, Cloudflare)
  • Payment Processing: Subscription billing (Paddle)
  • Email Delivery: Transactional and notification emails
  • AI Services: Content analysis and intent detection
  • Analytics: Privacy-focused usage analytics

All service providers are bound by data processing agreements and are prohibited from using your data for any purpose other than providing services to us.

4.3 Integrations You Configure

When you connect third-party integrations:

  • Email: We send alerts to your configured email addresses
  • Slack: We send alert notifications to your configured Slack channels
  • Discord: We send alert notifications to your configured Discord servers
  • Telegram: We send alert notifications to your configured Telegram chats
  • Webhooks: We send signal data to your specified webhook endpoints

You control what data is shared through these integrations via your settings.

We may disclose your information if required to:

  • Comply with applicable laws, regulations, or legal processes
  • Respond to lawful requests from government authorities
  • Protect our rights, privacy, safety, or property
  • Enforce our Terms of Service
  • Prevent fraud or security issues

4.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity. We will notify you of any such change and any choices you may have regarding your data.

5. Data Security

5.1 Security Measures

We implement industry-standard security measures including:

  • Encryption: TLS 1.3 for data in transit, AES-256 for sensitive data at rest
  • Authentication: Secure password hashing, JWT tokens with expiration
  • Access Controls: Role-based access controls and principle of least privilege
  • Infrastructure: Secure cloud infrastructure with firewalls and intrusion detection
  • Monitoring: Continuous security monitoring and logging

5.2 Security Practices

  • Regular security assessments and code reviews
  • Employee security training and access restrictions
  • Incident response procedures and breach notification protocols
  • Secure development practices and dependency management

5.3 Your Security Responsibilities

You are responsible for:

  • Maintaining the confidentiality of your account credentials
  • Using strong, unique passwords
  • Restricting access to your workspace to authorized team members
  • Promptly notifying us of any suspected security issues

6. Data Retention

6.1 Active Accounts

While your account is active, we retain:

  • Account and profile information
  • Listener configurations and settings
  • Signals and AI analysis results
  • Usage logs and analytics data

6.2 Account Deletion

Upon account deletion or subscription cancellation:

  • Account data is deleted within 30 days
  • Signals and listener configurations are permanently removed
  • Billing records are retained as required by law (typically 7 years)
  • Backups containing your data are purged within 90 days

6.3 Data Export

You may request an export of your data at any time through your account settings or by contacting support.

7. Your Rights and Choices

7.1 Access and Correction

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Request a copy of your data in a portable format

7.2 Deletion

You may request deletion of your account and associated data. Some data may be retained as required by law or for legitimate business purposes.

7.3 Communication Preferences

You can manage your communication preferences:

  • Adjust notification settings in your account
  • Unsubscribe from marketing emails via the link in each email
  • Service-related communications cannot be opted out while maintaining an active account

7.4 GDPR Rights (EEA Users)

If you are in the European Economic Area, you have additional rights including:

  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

8. International Data Transfers

8.1 Data Location

Our primary infrastructure is located in the European Union (Germany). Some data may be processed in other jurisdictions through our service providers.

8.2 Transfer Safeguards

For transfers outside the EEA, we ensure appropriate safeguards through:

  • Standard Contractual Clauses approved by the European Commission
  • Data processing agreements with all service providers
  • Assessment of recipient country data protection laws

9. Cookies and Tracking

9.1 Essential Cookies

We use essential cookies for:

  • User authentication and session management
  • Security features and fraud prevention
  • Remembering your preferences and settings

9.2 Analytics

We use privacy-focused analytics to understand how users interact with our service. We do not use invasive tracking or share analytics data with advertisers.

9.3 Managing Cookies

You can control cookies through your browser settings. Disabling essential cookies may affect the functionality of our service.

10. Children’s Privacy

CatchIntent is a B2B service designed for businesses and professionals. We do not knowingly collect data from individuals under 18 years of age. If we become aware that we have collected data from a minor, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Sending an email to your registered email address
  • Displaying a notice within the application

Your continued use of the service after changes take effect constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at team@catchintent.com

This Privacy Policy was last updated in December 2024.