← Back

Privacy Policy

Last updated: April 8, 2026

1. Overview

Clario ("we", "our", or "the app") is a product management tool that helps teams create, prioritize, and track project ideas. This Privacy Policy explains what information we collect, how we use it, and how we protect it.

2. Information We Collect

We collect the following information when you use Clario:

  • Account information: Your name, email address, and profile picture, provided when you sign up via email/password or a third-party OAuth provider (Google or GitHub).
  • Project data: Project names, descriptions, priority levels, target users, success metrics, and effort estimates that you create within the app.
  • Usage data: Basic server logs including request timestamps and error information, used solely for maintaining app reliability.

3. How We Use Your Information

  • To provide and operate the Clario application
  • To authenticate your identity and maintain your session
  • To associate projects with your account and enforce access permissions
  • To generate AI-assisted content suggestions using your project name as context (via Google Gemini)

We do not sell your personal information. We do not use your data for advertising.

4. AI-Generated Content

When you use the "Generate with AI" feature, your project name and any existing field content are sent to Google Gemini to generate suggestions. This data is processed by Google in accordance with their API terms and privacy policy. We do not store AI-generated suggestions separately — only what you choose to save as part of your project.

5. Third-Party Services

Clario uses the following third-party services:

  • Neon: Hosts our PostgreSQL database. Your data is stored on Neon's infrastructure.
  • Vercel: Hosts the application. Requests pass through Vercel's servers.
  • Google / GitHub: Optional OAuth sign-in providers. If you use these, their respective privacy policies apply to the authentication flow.
  • Google Gemini: Processes project content for AI-assisted field generation.

6. Data Retention

Your account and project data are retained for as long as your account is active. You may request deletion of your account and all associated data by contacting us.

7. Security

Passwords are hashed using bcrypt and never stored in plain text. Sessions are managed via signed JWT tokens. All data is transmitted over HTTPS. Access to projects is restricted to the creator and designated admin users.

8. Your Rights

You have the right to access, correct, or delete your personal data at any time. To exercise these rights, please contact us directly.

9. Changes to This Policy

We may update this policy from time to time. Continued use of Clario after changes constitutes acceptance of the updated policy.