← Back to Legal

Privacy Policy

Last Updated: July 15, 2025

Your Privacy Matters

At SureThing, we are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information. This policy explains our practices in clear, understandable terms.

1. Information We Collect

Personal Information

When you use SureThing, we collect information that you provide directly to us, including:

  • Name and contact information (email address, phone number)
  • Account credentials and authentication data
  • Agreement details and digital signatures
  • Payment information (processed securely through Stripe)
  • Communication preferences and support inquiries

Technical Information

We automatically collect certain technical information when you use our service:

  • Device information (type, operating system, browser)
  • IP address and general location data
  • Usage analytics and performance metrics (via PostHog)
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our contract management platform
  • Authentication: To verify your identity and secure your account
  • Communication: To send important updates, notifications, and support responses
  • Analytics: To understand usage patterns and improve user experience
  • Legal Compliance: To comply with applicable laws and regulations
  • Security: To protect against fraud, abuse, and security threats

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to fulfill our service agreement
  • Legitimate Interest: For analytics, security, and service improvement
  • Legal Obligation: To comply with applicable laws and regulations
  • Consent: For marketing communications and optional features

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

  • Service Providers: Trusted third parties who assist in service delivery (Stripe, PostHog, SendGrid)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfer: In connection with a merger, acquisition, or sale of assets
  • Contract Parties: Other parties involved in contracts you create (as necessary for contract execution)

5. Data Security

We implement comprehensive security measures to protect your data:

  • End-to-end encryption for sensitive data
  • Secure authentication with industry-standard protocols
  • Regular security audits and vulnerability assessments
  • Access controls and employee training
  • Secure infrastructure with monitoring and logging

6. Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (subject to legal requirements)
  • Portability: Receive your data in a structured, machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to certain types of processing
  • Withdrawal: Withdraw consent at any time

To exercise these rights, contact us at hello@surethingapp.com

7. Data Retention

We retain your personal data only as long as necessary for:

  • Providing our services and maintaining your account
  • Complying with legal obligations
  • Resolving disputes and enforcing agreements

Retention Periods:

  • Contract data: 7 years after contract completion (as required by law)
  • Analytics data: 2 years maximum
  • Account data: Until account deletion or 3 years of inactivity

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and preferences
  • Analyze usage patterns and improve our service
  • Provide personalized experiences

You can manage cookie preferences through your browser settings. See our Cookie Policy for detailed information.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by relevant authorities
  • Adequacy decisions by the European Commission
  • Other legally recognized transfer mechanisms

10. Changes to This Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or through our service. Your continued use of SureThing after such changes constitutes acceptance of the updated policy.

11. Contact Information

For questions about this privacy policy or our data practices, contact us:

Email:

hello@surethingapp.com

12. Supervisory Authority

If you are located in the European Economic Area, you have the right to lodge a complaint with your local data protection supervisory authority if you believe we have processed your personal data in violation of applicable law.