Privacy Policy

Last updated: March 2026

Cortiq ("we", "our", "us") operates the Cortiq.ai desktop application and website. This Privacy Policy explains how we collect, use, and protect your information.

1. Information We Collect

Account Data: Email address and payment information when you create an account. Payment processing is handled by Whop as our Merchant of Record — we do not store credit card details.

Screen Data: When you explicitly invoke Cortiq (by asking a question or clicking analyze), we capture a snapshot of your active screen. This is the most important thing to understand about our privacy practices:

  • Screen data is captured only when you explicitly ask — never in the background
  • The snapshot is sent encrypted (TLS 1.3) to our AI model provider for processing
  • It is immediately discarded after the AI response is generated
  • It is never stored on our servers
  • It is never used for AI model training — not by us, not by our providers
  • You can exclude specific applications from being captured

Usage Data: Anonymous analytics about which features are used and session duration. This data is aggregated and cannot identify individual users.

Device Data: macOS version and hardware type, used solely for compatibility and debugging.

2. How We Use Your Data

  • To provide and improve the Cortiq service
  • To process payments and manage subscriptions
  • To send transactional emails (receipts, account updates)
  • To analyze anonymous usage patterns for product improvement

3. Third-Party Services

We use the following third-party services:

  • Anthropic (Claude API) — AI model provider for screen analysis. Screen data is sent to their API for processing and is subject to their data usage policies. Anthropic does not use API inputs for model training.
  • Whop — Payment processing and subscription management (Merchant of Record)
  • Plausible Analytics — Privacy-respecting website analytics (no cookies, no personal data)

4. Data Security

All data is encrypted in transit using TLS 1.3. We implement access controls and follow security best practices. Screen data is ephemeral and exists only during the brief processing window.

5. Your Rights

You have the right to access, correct, or delete your personal data at any time. You can request data export or account deletion by emailing [email protected].

For EU/EEA users: You have rights under GDPR including access, rectification, erasure, portability, and objection to processing.

For California users: You have rights under CCPA/CPRA including the right to know, delete, and opt-out of data selling (we do not sell data).

6. Data Retention

  • Screen data: Not retained — processed in real-time and immediately discarded
  • Account data: Retained while your account is active, deleted upon request
  • Usage data: Anonymized, retained for up to 12 months

7. Children's Privacy

Cortiq is not intended for users under 13 years of age. We do not knowingly collect data from children.

8. Changes to This Policy

We will provide at least 30 days' notice before making material changes to this policy. Continued use of Cortiq after changes constitutes acceptance.

9. Contact

For privacy-related questions or requests: [email protected]