Privacy Policy

Introduction

ContactTh.is ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our business contact discovery and outreach platform.

Information We Collect

• • Account information: email address, name, business name, and contact details when you register
• • Lead information: business names, contact details, and notes you add to manage your outreach
• • Search data: queries and filters used to find businesses
• • Generated content: outreach scripts and drafts created using our AI features
• • Payment information: billing details processed securely through Stripe (we do not store card numbers)
• • Usage data: pages visited, features used, and session information to improve our service
• • Device information: browser type, IP address, and device identifiers for security purposes

How We Use Your Information

• • Provide, maintain, and improve the ContactTh.is service
• • Process transactions and manage your subscription
• • Send transactional emails (account updates, notifications)
• • Respond to customer support requests
• • Analyze usage patterns to improve user experience
• • Detect and prevent fraud, abuse, and security incidents
• • Comply with legal obligations

Third-Party Data Sources

ContactTh.is aggregates publicly available business information from third-party sources including Google Maps. We do not collect or store private personal information. All business data we process is publicly available information that businesses have made accessible online.

Sub-Processors and Third-Party Services

We use trusted third-party services to operate ContactTh.is. These sub-processors have access to your data only to perform specific tasks on our behalf and are obligated to protect your information:

• • Stripe (stripe.com) — Payment processing. See Stripe's Privacy Policy at stripe.com/privacy
• • Google Maps Platform — Business search and data. See Google's Privacy Policy
• • OpenAI — AI-powered outreach generation (no personal data shared)
• • Neon — PostgreSQL database hosting for application data
• • Vercel — Application hosting and deployment
• • SendGrid (Twilio) — Transactional email delivery

Data Storage and Security

Your data is stored on secure servers with encryption at rest and in transit. We implement industry-standard security measures including access controls, encryption (TLS 1.2+), secure authentication, and regular security reviews. Only authorized personnel have access to production systems, and access is logged and audited.

Data Retention

We retain your data for as long as your account is active or as needed to provide services. If you cancel your subscription, your data is retained for 30 days, then permanently deleted. You may request earlier deletion by contacting support@contactth.is.

Cookies and Tracking

We use essential cookies to authenticate users, maintain sessions, and remember preferences. We do not use third-party advertising or tracking cookies. For detailed information about our cookie usage, please see our Cookie Policy at contactth.is/cookies.

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• • Access: Request a copy of the personal data we hold about you
• • Correction: Request correction of inaccurate or incomplete data
• • Deletion: Request deletion of your personal data
• • Portability: Request your data in a machine-readable format
• • Restriction: Request that we limit processing of your data
• • Objection: Object to processing based on legitimate interests
• • Withdraw consent: Withdraw consent at any time where processing is based on consent

For European Users (GDPR)

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR). Our legal bases for processing your data include: (1) performance of our contract with you, (2) our legitimate interests in operating and improving our service, (3) your consent where applicable, and (4) compliance with legal obligations. You have the right to lodge a complaint with your local data protection authority.

For California Users (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA). You have the right to: (1) know what personal information we collect and how it is used, (2) request deletion of your personal information, (3) opt-out of the sale of personal information (note: we do not sell personal information), and (4) non-discrimination for exercising your rights. To exercise these rights, contact us at privacy@contactth.is.

Children's Privacy

ContactTh.is is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a prominent notice on our website at least 30 days before the changes take effect. Your continued use of the service after changes become effective constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at: privacy@contactth.is.