Belcher

Privacy Policy

Effective July 16, 2026

This describes how Belcher currently handles data, in plain language. It's a starting point, not legal advice — have it reviewed by a qualified attorney, and keep it accurate if your data practices change.

The short version

We store what's needed to run your account and subscription. We do not store the review text you paste in for an audit — it's sent to our AI provider to analyze your request and is not saved to our database or logs.

What we collect

  • Account: your email address and a hashed (never plaintext) password.
  • Billing: your subscription status and Stripe customer/subscription identifiers. Card details are handled by Stripe — we never see or store them.
  • Usage: a monthly count of audits you've run, to enforce your plan's limit.
  • Contact messages: if you use the contact form, the name, email, and message you send us.

What we don't store

The reviews you paste for an audit are processed in memory for that single request to generate your results, then discarded. They are not written to our database or retained in application logs.

Third parties we share with

We use a small set of service providers to operate Belcher, each receiving only what they need:

  • Anthropic — runs the AI that analyzes your audit request.
  • Stripe — processes payments and manages your subscription.
  • Resend — sends transactional email (password resets, contact form).
  • Neon — hosts our database (account and subscription data).
  • Vercel — hosts and serves the application.

We do not sell your personal information.

Cookies

We use a single essential cookie to keep you logged in (your session). We don't use advertising or third-party tracking cookies.

Data retention

We keep account and billing data for as long as your account is active and as needed for legal and accounting purposes. Password-reset links expire after one hour.

Your choices

You can cancel your subscription anytime through the billing portal. To access or delete your account data, contact us and we'll help.

Security

Passwords are hashed, traffic is served over HTTPS, and secrets are stored server-side. No system is perfectly secure, but we take reasonable measures to protect your data.

Changes & contact

We'll update the effective date above when this policy changes. Questions? Reach us through the contact page.