Privacy

Plain version

Survey is a hosted survey service. Customers (you) install our SDK in your apps, author surveys in our dashboard, and read responses back via API or MCP. We collect the minimum data we need to run that loop. We don't sell data, we don't use response content to train AI models, and we don't set advertising cookies.

What we collect

• Account data. Email and name from your auth provider (Clerk). Used to sign you in and identify you across projects.
• Project data. Survey definitions, questions, settings, and version history you create.
• Response data. The answers respondents submit to your surveys, plus any metadata you stamp on submissions (e.g. user id, plan). This is your data, not ours; we store it on your behalf and you can export or delete it at any time.
• Operational logs. Request paths, timestamps, IP addresses (for rate-limiting and abuse detection), and audit events for changes you or your agents make. Retained for 90 days unless required for legal reasons.
• Billing data. Card details and invoice history handled by Stripe; we never see raw card numbers.

What we don't collect

• Advertising or third-party tracking cookies.
• Cross-site behavioral profiles.
• Response content for AI training. We don't train models on your data, period.

Subprocessors

We use Supabase (Postgres + auth), Clerk (sign-in), Stripe (payments), Resend (transactional email), and Vercel (hosting). Each is a processor under standard data-processing agreements.

Your rights

• Export every response on a project as JSON or CSV at any time.
• Delete a project, which deletes all associated responses and audit events.
• Request access, correction, or deletion of personal data by emailing privacy@getsurvey.dev.

Contact

Questions about this policy: privacy@getsurvey.dev. For a formal data-processing agreement, email the same address.