Privacy Policy

Last updated: May 17, 2026

GhostDawg AI (“we,” “us,” or “our”) is a division of GhostDawg Consulting, headquartered in Saint Augustine, Florida. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use GhostDawgAI.com (“the Site”) and our services.

1. Information We Collect

Information You Provide

• Account Information: Name, email address, company name, and password when you create an account.
• Payment Information: Payment details are collected and processed by Stripe. We never store credit card numbers, CVVs, or full payment credentials on our servers. We receive and store your Stripe customer ID for subscription management.
• Query Submissions: The text, documents, and files you submit through our VCSaaS platform and other services.
• Intake Forms: Business information, company details, and project requirements submitted through our intake and pre-call forms.
• Communications: Emails and messages you send to us.

Information Collected Automatically

• Log Data: IP address, browser type, device information, pages visited, and timestamps.
• Cookies: Essential authentication cookies only (see Section 7).

2. How We Use Your Information

• Service Delivery: To provide, maintain, and improve our services, process queries, and deliver reports and analysis.
• Billing & Payments: To process payments, manage subscriptions, send invoices, and handle refunds via Stripe.
• Communication: To send purchase confirmations, service updates, welcome emails, cancellation notices, and respond to your inquiries.
• Account Management: To manage your account, authenticate your identity, and enforce our Terms of Service.
• Service Improvement: To analyze usage patterns and improve our platform and deliverable quality.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes.

3. Third-Party Service Providers

We share your information with the following third-party providers as necessary to deliver our services:

• Stripe — Payment processing, subscription management, and billing. Stripe’s privacy policy governs their handling of your payment data.
• Supabase — Database and authentication infrastructure (hosted on AWS). Stores your account information, profiles, and query data.
• Netlify — Website hosting and serverless function execution.
• Resend — Transactional email delivery (purchase confirmations, welcome emails, cancellation notices).
• AI Model Providers — Your query content may be processed by AI model providers (such as OpenAI, Anthropic, or Google) to generate analysis and deliverables. These providers process data according to their enterprise/API terms and do not use your data for model training.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Data Retention

• Active Accounts: Your data is retained for as long as your account is active and you maintain a relationship with us.
• After Cancellation: Following account cancellation or closure, we retain your data for up to two (2) years for legal compliance, dispute resolution, and record-keeping purposes.
• Payment Records: Transaction records are retained as required by applicable tax and financial regulations.
• Deletion Requests: You may request earlier deletion of your data (see Section 5). We will comply within 30 days, except where retention is required by law.

5. Your Rights

You have the following rights regarding your personal information:

• Access: Request a copy of all personal data we hold about you.
• Correction: Update or correct inaccurate information through your dashboard or by contacting us.
• Deletion: Request deletion of your personal data. We will delete your data within 30 days, subject to legal retention requirements.
• Portability: Request your data in a structured, commonly used, machine-readable format.
• Opt-Out: Unsubscribe from non-essential communications at any time.

To exercise any of these rights, contact us at privacy@ghostdawgconsulting.com.

6. California Residents (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights:

• Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
• Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
• Right to Opt-Out of Sale: We do not sell personal information. No opt-out is necessary.
• Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To submit a CCPA request, email privacy@ghostdawgconsulting.com with the subject line “CCPA Request.”

7. Canadian Users (PIPEDA)

If you are a Canadian user, your personal information is handled in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to access your personal information held by us, challenge its accuracy, and withdraw consent for its collection, use, or disclosure (subject to legal or contractual restrictions). Contact privacy@ghostdawgconsulting.com for any PIPEDA-related inquiries.

8. Cookie Policy

We use minimal cookies:

• Essential Cookies: Required for authentication and session management. These cannot be disabled without breaking core functionality.
• Analytics: We do not currently use third-party analytics cookies or tracking pixels. If this changes, this policy will be updated.

We do not use advertising cookies or share cookie data with advertisers.

9. Data Security

We implement industry-standard security measures to protect your personal information, including encryption in transit (TLS/SSL), secure authentication, and access controls. Your data is stored on Supabase (hosted on AWS infrastructure) with encryption at rest. However, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

10. Children’s Privacy

Our services are intended for business professionals and are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us immediately and we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on the Site. The “Last updated” date at the top of this page indicates when the policy was most recently revised.

12. Contact Us

For privacy inquiries, data requests, or concerns:

Privacy Email: privacy@ghostdawgconsulting.com

General Email: info@ghostdawgconsulting.com

Company: GhostDawg Consulting

Location: Saint Augustine, Florida