Your data belongs to you — not Context HQ. We store it so the Steward can help you stay organized. That is the only reason it exists on our servers.
We store the notes, projects, contacts, and action items you create inside Context HQ, along with your account information (name and email address) and usage data (feature activity and session information) needed to operate the service.
Your data is stored in Supabase — a PostgreSQL database hosted on AWS infrastructure in the United States. All data is encrypted at rest and in transit.
When you capture a note or generate a Brief, your content is sent to Anthropic's Claude API for processing. Anthropic does not retain your content after the API call completes and does not use it for model training. See Anthropic's privacy policy for details.
If you choose to connect your Google account, Context HQ requests access to the following Google data to provide its core features:
Gmail (read-only) — We access your email messages and settings to display your inbox threads inside Context HQ. We read thread subjects, senders, recipients, snippets, and message bodies to power the Comms view and Steward analysis. We do not modify, delete, or move your Gmail messages.
Gmail (send) — We send email on your behalf only when you explicitly compose and submit a message inside Context HQ.
Gmail labels — We read your Gmail label data to assist with inbox organization and classification inside Context HQ.
Google Calendar — We access your calendar events (read and write) to display your schedule and allow you to create or update events from within Context HQ.
Google Contacts — We read your contacts to provide autocomplete when composing emails.
Google data accessed by Context HQ is used solely to provide the features described above. It is never sold, shared with third parties, or used to train AI models. Email content sent to Anthropic's Claude API for Steward analysis is processed in real time and not retained by Anthropic after the API call completes.
Context HQ's use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.
Your information is never sold, shared with third parties, or used for advertising. Only you have access to your notes and project content. Context HQ staff may access account-level information (not note or email content) only to resolve a support issue you have specifically requested help with.
Notes, emails, and content you enter into Context HQ are never used to train Anthropic's models or any other AI system. Your business context is yours alone.
We use session cookies for authentication via Supabase. We use PostHog for anonymous product analytics — this tracks which features are used, not what content you enter. We do not use advertising cookies or tracking pixels.
You can download a complete JSON export of your data at any time from Settings → Export my data. The export includes all notes, projects, people, action items, and AI-generated summaries.
You can delete your account from Settings → Delete account. You have two options:
Standard deletion — your account is scheduled for permanent deletion in 20 days. You may sign back in any time during this period to cancel the deletion and restore your account.
Immediate deletion — your notes, projects, and contacts are deleted immediately with no recovery period.
In both cases, billing records (name, email, dates of service, plan history, and invoice records) are retained as required for legal and tax purposes. Your email address becomes available for a new account after deletion.
Active account data is retained as long as your account is open. Deleted account content is removed within 20 days of a deletion request. Billing records are retained for 7 years per standard accounting requirements.
Context HQ uses row-level security (RLS) in Supabase — your data is isolated at the database level so no other user can access it, even with a valid session token. All API calls are made over HTTPS. The Anthropic API key is server-side only and never exposed to the client.
Context HQ is designed for business professionals and is not directed at children under 13. We do not knowingly collect information from anyone under 13.
If we make material changes to this policy, we will notify you by email and update the effective date above. Continued use of the service after notification constitutes acceptance of the updated policy.
Use our contact form to reach us. We respond to all privacy inquiries within 48 hours.