Legal

Privacy Policy

Last updated: February 2026

This Privacy Policy describes how PlanArmory ("we," "us," or "our") collects, uses, and shares your personal information when you use our website and AI business plan generator service (the "Service").

1. Information We Collect

Information You Provide

We collect information you provide directly, including:

  • Account Information: Name, email address, and password when you create an account
  • Organization Information: Organization name and details you provide when setting up your workspace
  • Business Plan Inputs: Business details, industry information, and other responses you submit through our business plan questionnaire
  • Payment Information: Billing details processed through Stripe (we do not store full credit card numbers)
  • Communications: Messages you send to us via email or our contact form

Information Collected Automatically

When you use our Service, we automatically collect:

  • Log Data: IP address, browser type, operating system, referring URLs, pages viewed, and access timestamps
  • Device Information: Hardware model, operating system version, and unique device identifiers
  • Usage Data: Features used, business plans generated, and interaction patterns
  • Cookies: Essential, performance, and functionality cookies (see our Cookie Policy for details)

2. How We Use Your Information

We use collected information to:

  • Provide the Service: Process your inputs and generate AI-powered business plans
  • Manage Your Account: Create and maintain your account, organizations, and subscriptions
  • Process Payments: Handle billing through Stripe
  • Improve the Service: Analyze usage patterns to improve features and performance
  • Communicate: Send transactional emails (account verification, password resets, subscription updates)
  • Support: Respond to your questions and support requests
  • Security: Detect, prevent, and address fraud and security issues
  • Legal Compliance: Comply with applicable laws and legal obligations

We do not sell your personal information to third parties.

3. AI Data Processing

When you use our business plan generator:

  • Your form responses are sent to OpenAI's API (GPT-4) for processing
  • OpenAI processes this data according to their API data usage policy — API inputs and outputs are not used to train their models
  • Generated business plans are stored in our database, linked to your organization
  • We may use anonymized, aggregated data to improve our AI prompts and Service quality

4. Third-Party Services

We share information with the following third-party service providers:

  • Stripe — Payment processing. Data shared: billing info, email, subscription details.
  • OpenAI — AI business plan generation. Data shared: form responses (business details).
  • Resend — Transactional email delivery. Data shared: email address, name.
  • Vercel — Hosting and infrastructure. Data shared: log data, IP addresses.
  • PostgreSQL (Neon/Supabase) — Database. Data shared: all application data (encrypted at rest).

Each provider processes data under their own privacy policies and our data processing agreements.

5. Data Retention

  • Account Data: Retained while your account is active, deleted within 30 days of account deletion
  • Business Plans: Retained while your account is active; deleted when you delete them or your account
  • Payment Records: Retained as required by tax and accounting laws (typically 7 years)
  • Log Data: Retained for up to 90 days for security and debugging purposes
  • Anonymized Data: May be retained indefinitely for analytics and Service improvement

6. Your Rights

Depending on your location, you may have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal data ("right to be forgotten")
  • Portability: Request your data in a portable format
  • Objection: Object to certain types of data processing
  • Restriction: Request restriction of processing in certain circumstances
  • Withdrawal of Consent: Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at hello@planarmory.com. We will respond within 30 days.

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what personal information we collect and the right to opt out of the sale of personal information. We do not sell personal information.

European Residents (GDPR)

If you are located in the European Economic Area, our legal bases for processing include: contract performance (providing the Service), legitimate interests (improving the Service, security), consent (where applicable), and legal compliance.

7. Data Security

We implement industry-standard security measures to protect your data:

  • Encrypted data in transit (TLS/HTTPS)
  • Encrypted data at rest in our database
  • Secure authentication with optional two-factor authentication (2FA)
  • Role-based access controls for organization data
  • Regular security reviews

While we take reasonable measures to protect your information, no method of transmission or storage is 100% secure.

8. Children's Privacy

PlanArmory is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.

9. International Transfers

Your data may be processed in the United States and other countries where our service providers operate. By using the Service, you consent to the transfer of your data to these locations. We ensure appropriate safeguards are in place for international transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on our website. The "Last updated" date at the top reflects the most recent revision.

11. Contact Us

If you have questions or concerns about this Privacy Policy or your data, contact us at:

Email: hello@planarmory.com

Website: planarmory.com/contact