Privacy Policy
Frozen World — All Applications · Last updated: June 10, 2026
The canonical version published at frozen-world.com/privacy is the authoritative copy.
1. Who We Are
Clause — Contract Analyzer ("Clause", "we", "our", "us") is an iOS application that uses artificial intelligence to help individuals understand legal documents before signing them. We are an independent developer operating under the Apple Developer Program.
Contact: [email protected]
2. What This Policy Covers
This policy explains what data we collect, why we collect it, how it is processed, who we share it with, and what rights you have over your data. It applies to the Clause iOS app and any associated cloud services.
3. Data We Collect
3.1 Account Information
When you sign in using Apple Sign-In or Google Sign-In, we receive:
- Email address — used solely for account identification and support
- Display name — used to personalize your in-app experience
- User ID — a unique identifier assigned by Firebase Authentication
We do not collect your phone number or physical address.
3.2 Document Content
When you scan or upload a document for analysis:
- The document is processed locally on your device using OCR to extract text
- The extracted text content is transmitted to our secure cloud backend (Firebase Cloud Functions) for AI analysis
- The text is sent to Anthropic's Claude API to generate a plain-English risk summary, clause analysis, and key insights
- The original document image is never transmitted off your device
- We store only the analysis result (risk score, clause summaries, document type) — not the original text or images
3.3 Usage and Interaction Data
We collect anonymized product interaction data via Firebase Analytics:
- Screens viewed and navigation flows
- Feature interactions (e.g., "scan tapped", "paywall viewed")
- Document category selected (e.g., "lease", "NDA") — never the document content
- Authentication method used (Apple or Google)
- Subscription plan interactions (purchase tapped, restore tapped)
This data is used exclusively by us to understand how the app is used and improve the product. It is never used for advertising and is never linked to third-party advertising networks.
3.4 Subscription and Billing Data
- Subscription tier (free, monthly, annual, pay-per-document)
- Number of analyses used in the current period
- Subscription expiry date
- All payment processing is handled entirely by Apple (StoreKit / App Store). We never receive or store your payment card details.
4. How We Use Your Data
| Data | Purpose |
|---|
| Email / Name / User ID | Account creation, authentication, support |
| Document text (transient) | AI analysis via Anthropic Claude — not stored after processing |
| Analysis results | Saved to your personal history in the app |
| Usage analytics | Product improvement (first-party only, no advertising use) |
| Subscription data | Enforcing analysis limits, displaying correct plan status |
We do not use any of your data for advertising, profiling, or behavioral targeting.
5. Third-Party Service Providers
We work with the following sub-processors. Each is engaged under a data processing agreement and may only use your data to provide the specific service described.
Firebase (Google LLC)
- What: Authentication, database (Firestore), cloud functions hosting, analytics
- Data received: Email, name, user ID, analysis results, usage events
- Purpose: Core app infrastructure
- Policy: https://firebase.google.com/support/privacy
Anthropic, PBC
- What: Large language model (Claude) used to analyze document text
- Data received: Extracted OCR text of documents you submit for analysis
- Purpose: Generating risk summaries and clause analysis — the core feature of the app
- Note: Anthropic processes the text to generate a response and does not retain your document content to train models under their standard API terms.
- Policy: https://www.anthropic.com/privacy
Google Sign-In (Google LLC)
- What: OAuth authentication provider
- Data received: Name, email, profile ID at sign-in
- Purpose: Secure sign-in without a password
- Policy: https://policies.google.com/privacy
Apple Inc.
- What: Apple Sign-In (authentication), StoreKit (in-app purchases), App Store distribution
- Data received: Anonymized user identifier, subscription receipt
- Purpose: Secure sign-in and purchase processing
- Policy: https://www.apple.com/privacy
6. Data We Do NOT Collect
- We do not sell your data to any third party
- We do not share your data with data brokers
- We do not use your data to serve targeted advertising inside or outside the app
- We do not use the AppTrackingTransparency framework — because we do not track you across other apps or websites
- We do not store your original document images on our servers
- We do not store the raw OCR text after analysis is complete
- We do not access your contacts, calendar, microphone, or location
7. Data Storage and Security
- Analysis results and account data are stored in Google Cloud Firestore in the United States
- All data in transit is encrypted using TLS 1.2 or higher
- All data at rest is encrypted using AES-256 (Google Cloud default encryption)
- Access to your data in Firestore is controlled by Firebase Security Rules — your data is only accessible to your authenticated account
- We do not retain any document text beyond the duration of a single analysis request
8. Data Retention
| Data | How Long We Keep It |
|---|
| Account (email, name, UID) | Until you delete your account |
| Analysis results | Until you delete the document or your account |
| Usage analytics | Aggregated and anonymized; raw event data retained by Firebase for up to 14 months |
| Subscription records | Retained for the life of the subscription plus 2 years for billing dispute resolution |
When you delete your account through the app (Profile → Support → Delete Account), we permanently erase your Firestore records and local device data. Some anonymized aggregate analytics may be retained in aggregated form where individual identification is not possible.
9. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access — request a copy of the personal data we hold about you
- Correction — request correction of inaccurate data
- Deletion — request permanent deletion of your account and all associated data. You can do this directly in the app: Profile → Support → How do I delete my account?
- Portability — request your analysis history in a portable format
- Objection — object to processing for analytics purposes
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
10. Children's Privacy
Clause is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it promptly.
11. International Users
Our servers are located in the United States. If you access the app from outside the United States, your data will be transferred to and processed in the United States. By using the app you consent to this transfer.
12. California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act:
- You have the right to know what personal information we collect, use, and disclose
- You have the right to delete personal information we have collected from you
- You have the right to opt out of the sale of personal information — we do not sell personal information
- You have the right to non-discrimination for exercising your CCPA rights
To exercise your rights, contact [email protected].
13. Changes to This Policy
We may update this policy from time to time. When we make material changes, we will notify you through the app or by email. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the app after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions about this privacy policy or how we handle your data:
Email: [email protected]
In-App: Profile → Support → Email Us
We aim to respond to all privacy inquiries within 5 business days.