Privacy Policy

Account Information: When you create an account via Clerk, we receive your name, email address, and profile picture. We do not store passwords — authentication is handled entirely by Clerk.

Certificate Data: When you create certificates, we store the template images, recipient data (names, emails, and any custom fields from your CSV uploads), and generated certificate files.

Usage Data: We collect basic usage analytics such as page views, feature usage, and error logs to improve the platform. This data is anonymized and never sold to third parties.

Device Information: We automatically collect device type, browser version, and operating system information for compatibility and debugging purposes.

Certificate Generation: Your uploaded templates and recipient data are used solely to generate and manage certificates as you direct.

Verification: Recipient names, event details, and verification IDs are made publicly accessible through verification links and QR codes — this is the core purpose of the platform.

Communication: We may send you email notifications about batch completions, account updates, or important service announcements based on your notification preferences.

Improvement: Anonymized usage data helps us identify bugs, improve user experience, and prioritize new features.

We do not sell your data. Period.

Clerk: Authentication is handled by Clerk (clerk.com). Their privacy policy governs how they handle authentication data.

Cloud Storage: Certificate files and templates may be stored on cloud providers (e.g., AWS S3, Vercel Blob) to ensure reliable delivery and fast access.

No Advertising: We do not share any data with advertisers or marketing platforms.

All data is transmitted over HTTPS with TLS encryption.

Database access is restricted to authorized services only.

We implement industry-standard security practices including parameterized queries, input sanitization, and role-based access control.

While we strive to protect your data, no system is 100% secure. We recommend using strong, unique passwords for your account.

Account Data: Retained as long as your account is active. Upon account deletion, your personal data is permanently removed within 30 days.

Certificate Data: Generated certificates and verification records are retained indefinitely to support ongoing verification of issued certificates. You can delete specific batches at any time.

Usage Logs: Anonymized analytics data is retained for up to 12 months.

Access: You can view all your data through your account dashboard.

Correction: You can update your profile and organization details at any time in Settings.

Deletion: You can delete your account and all associated data from the Settings page. Note that publicly issued certificates may remain verifiable to protect recipients' interests.

Export: You can download your certificate data at any time.

We use essential cookies for authentication and session management.

We do not use tracking cookies, advertising cookies, or any third-party analytics cookies.

You can manage cookie preferences through your browser settings.

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date.

For significant changes, we will notify registered users via email.

If you have any questions about this Privacy Policy or your data, please reach out to us at privacy@technojam.in.