Gains Insights ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.
1. Information We Collect
1.1 Information You Provide
Account Information: Name, email address, company name, job title
Payment Information: Billing address, payment method details (processed by Stripe)
Content: Data you upload, surveys, research materials, and generated content
Communications: Support requests, feedback, and correspondence
1.2 Information Collected Automatically
Usage Data: Features used, pages visited, actions taken within the platform
Log Data: IP address, access times, referring URLs
Cookies: Session cookies, preference cookies, analytics cookies
1.3 Information from Third Parties
Authentication Providers: If you sign in with Google or other providers
Payment Processor: Transaction confirmation from Stripe
Analytics Partners: Aggregated usage patterns
2. How We Use Your Information
We use collected information to:
Provide, maintain, and improve our services
Process transactions and send related information
Send administrative messages, updates, and security alerts
Respond to your comments, questions, and support requests
Monitor and analyze usage patterns and trends
Detect, prevent, and address technical issues or fraud
Develop new features and services
Comply with legal obligations
3. AI-Generated Content
3.1 Your Data in AI Processing
Content you provide may be processed by AI models to generate outputs
We do not use your content to train AI models
AI-generated content is associated with your account
3.2 Third-Party AI Services
We use third-party AI providers (e.g., OpenAI, Anthropic) for content generation
These providers process data according to their enterprise agreements
No personally identifiable information is shared with AI providers unless necessary for the service
4. Information Sharing
We may share your information in the following circumstances:
4.1 Service Providers
With vendors who perform services on our behalf:
Payment processing (Stripe)
Cloud infrastructure (Google Cloud, Firebase)
Analytics (anonymized data only)
Customer support tools
4.2 Business Transfers
In connection with a merger, acquisition, or sale of assets, your information may be transferred as a business asset.
4.3 Legal Requirements
When required by law or to:
Comply with legal process
Protect our rights and safety
Prevent fraud or security issues
Enforce our Terms of Service
4.4 With Your Consent
We may share information with third parties when you give us explicit consent.
5. Data Security
We implement appropriate security measures including:
Encryption of data in transit (TLS/SSL) and at rest
Access controls and authentication requirements
Regular security assessments and monitoring
Employee training on data protection
Incident response procedures
However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
6. Data Retention
Account Data: Retained while your account is active and for a reasonable period afterward
Usage Data: Retained for analytics purposes, typically 24 months
Generated Content: Retained until you delete it or close your account
Payment Records: Retained as required for tax and legal compliance
Upon account deletion, we will delete or anonymize your personal data within 30 days, except where retention is required by law.
7. Your Rights and Choices
7.1 Access and Portability
You can access your data through your account dashboard or by contacting us.
7.2 Correction
You can update your account information at any time through your settings.
7.3 Deletion
You can request deletion of your account and associated data by contacting support.
7.4 Marketing Opt-Out
You can unsubscribe from marketing emails using the link in any email or through your account settings.
7.5 Cookie Preferences
You can manage cookie preferences through your browser settings.
8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including:
Standard contractual clauses
Compliance with applicable data protection frameworks
9. Children's Privacy
Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If we learn we have collected information from a child, we will delete it promptly.
10. California Privacy Rights (CCPA)
California residents have additional rights:
Right to know what personal information is collected
Right to delete personal information
Right to opt-out of sale of personal information (we do not sell personal information)
Right to non-discrimination for exercising privacy rights
11. European Privacy Rights (GDPR)
For users in the European Economic Area:
Legal bases for processing include contract performance, legitimate interests, and consent
You have rights to access, rectify, erase, restrict, and port your data
You may lodge a complaint with a supervisory authority
You can withdraw consent at any time
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
Posting the updated policy on our website
Sending an email notification
Displaying a notice in the platform
Your continued use after changes constitutes acceptance of the updated policy.