Privacy Policy
This Privacy Policy explains how Crucible, operated by Abhishek Janjalkar ("we", "us"), collects, uses, and shares your information when you use the Service.
1. Information we collect
- Account data — your email address and a securely hashed password.
- Content you submit — the idea text and any clarifying details you enter for analysis ("Your Content"), and the analyses generated from it.
- Usage data — actions such as analyses run and quota usage, plus standard technical data (IP-derived country for regional pricing, browser type, timestamps).
- Payment data — handled entirely by our payment provider; we do not receive or store your full card details (see "Payments" below).
2. How we use it
- To provide the Service — create your account, run analyses, and show your results.
- To meter usage and enforce plan quotas.
- To process payments and manage subscriptions.
- To secure, maintain, debug, and improve the Service.
- To communicate with you about your account or service changes.
3. AI processing of Your Content
To generate an analysis, the idea text you submit is sent to our third-party large language model provider(s) for processing. We transmit only what is needed to produce your result. We do not sell Your Content, and we do not use it to train our own public models. Please avoid submitting sensitive personal data or confidential third-party information you are not permitted to share.
4. Subprocessors we share data with
We share limited data with vetted providers strictly to operate the Service:
- LLM provider (e.g. via an AI gateway) — to generate analyses from Your Content.
- Paddle — our Merchant of Record, to process payments and subscriptions.
- Hosting / infrastructure — to run the application and store your data.
We may also disclose information if required by law or to protect our rights, users, or the security of the Service.
5. Payments
Payments are processed by Paddle as Merchant of Record. When you purchase a subscription, Paddle collects and processes your payment information under its own privacy policy. We receive transaction and subscription status (not your full card number).
6. Cookies
We use strictly necessary cookies: a session cookie to keep you signed in (HttpOnly, SameSite) and a small preference for your theme. We do not use third-party advertising or cross-site tracking cookies.
7. Data retention
We keep your account data and Your Content while your account is active. You can delete individual analyses at any time, and deleting your account removes your associated data, except where we must retain limited records to meet legal, tax, or security obligations.
8. Your rights
Subject to applicable law, you may request access to, correction of, or deletion of your personal data, and you may object to or restrict certain processing. To exercise these rights, email us at [email protected].
9. Security
We protect your data with measures such as password hashing, signed session tokens, CSRF protection, transport encryption (HTTPS), and access controls. No method of transmission or storage is perfectly secure, but we work to safeguard your information.
10. Children
The Service is not directed to children under 18, and we do not knowingly collect their personal data.
11. International transfers
Your information may be processed in countries other than your own. Where required, we rely on appropriate safeguards for such transfers.
12. Changes
We may update this Policy; material changes are posted here with a new "last updated" date.
13. Contact
Questions or requests? Email [email protected].