Privacy Policy

When you create an account or subscribe to intelligence briefings, we collect:

• Email address (for account access and briefing delivery)
• Name (if provided during registration)
• Authentication data (passwords are hashed; OAuth tokens are managed by your identity provider)

When you use the platform, we collect:

• Analysis queries and conversation history — stored in your private workspace to enable follow-up analysis, knowledge graph building, and topic monitoring. You can delete individual conversations or your entire account at any time.
• Usage data (page views, feature usage — for product improvement)

• Provide intelligence analysis and platform features
• Send intelligence briefing emails (if subscribed — you can unsubscribe anytime)
• Improve the platform based on aggregate usage patterns
• Respond to support requests

We do NOT sell your data to third parties. We do NOT use your queries to train AI models.

For detailed information about our security practices, see our Security page. Key highlights:

• Data is stored in encrypted databases hosted in the United States
• All connections use TLS encryption in transit
• Passwords are cryptographically hashed (plaintext never stored)
• API keys are stored as one-way hashes (plaintext never stored)
• Multi-tenant isolation ensures organizations cannot access each other's data

We use the following services to operate the platform:

• Cloud hosting provider — application hosting and deployment
• Email delivery provider — transactional email only, no marketing tracking
• Bot protection service — prevents automated abuse (no tracking cookies)
• AI analysis providers — your queries are sent to AI providers to generate analysis. These providers do not use API data to train their models.
• Web search provider — evidence collection from public sources
• Social media — public intelligence showcase distribution (no user data shared)

We use essential cookies only — for authentication sessions and security. We do not use advertising cookies, tracking pixels, or analytics cookies. Cloudflare Turnstile uses a challenge cookie for bot protection that does not track users across sites.

You can:

• Access your data — view your analyses, entities, and account info in the platform
• Delete your account — contact privacy@mapshock.com and we will delete all your data within 30 days
• Unsubscribe from emails — one-click unsubscribe link in every email
• Export your data — export individual analyses as PDF or PPTX from the platform

• Account data: retained while your account is active
• Analysis data: retained while your account is active
• Briefing subscriptions: retained until you unsubscribe
• After account deletion: all data permanently deleted within 30 days

Mapshock is not intended for users under 18. We do not knowingly collect data from minors.

We may update this policy. Significant changes will be communicated via email to registered users. Continued use after changes constitutes acceptance.

Questions about this privacy policy? Contact us at privacy@mapshock.com.