Certixs
Get Access

Legal

Privacy Policy

Effective date: May 12, 2025

What We Collect

When you create an account, we collect your email address and name through Clerk, our authentication provider. When you use the cert generation tool, we receive the files you upload and the certificate content generated from them. We also collect basic usage data such as the number of certs generated and timestamps.

What We Do With Your Documents

Files you upload (engineering prints, material certs, routers) are transferred to temporary cloud storage solely for processing. Once your certificate is generated, all uploaded files are permanently and automatically deleted from our servers. We do not retain, analyze, index, or share your source documents for any purpose.

How We Store Generated Certificates

Generated certificate content is encrypted using AES-256-GCM before being saved to our database. The encryption key is derived uniquely per user — meaning Certixs operators cannot read the content of your generated certificates. Only your account can decrypt and access your cert history.

Third-Party Services

Certixs uses the following third-party services to operate: • Clerk — account authentication and identity management • Supabase — encrypted database storage • Stripe — payment processing (we never store card details) • Vercel — application hosting and file delivery • Anthropic — AI processing of your uploaded documents Each provider operates under their own privacy policy. Your uploaded documents are sent to Anthropic for AI processing and are subject to Anthropic's data handling practices, which prohibit use of API data for model training.

Data Sharing

We do not sell your data. We do not share your documents or certificate content with any third party outside of the service providers listed above. We do not use your job data for advertising, analytics resale, or AI model training.

Data Retention

Uploaded documents are deleted immediately after processing. Generated certificate metadata (timestamps, credit usage) is retained for billing and account purposes. Encrypted certificate content is retained until you delete your account. You may request deletion of your data at any time by contacting us.

Your Rights

You may request a copy of the data we hold on your account, request correction of inaccurate data, or request deletion of your account and associated data by emailing us at certixssupport@gmail.com. We will respond within 30 days.

Security

We use industry-standard encryption in transit (TLS) and at rest (AES-256-GCM). Access to our database is restricted and authenticated. We do not store payment card information — all billing is handled by Stripe.

Changes to This Policy

We may update this policy as the product evolves. Material changes will be communicated via email or an in-app notice. Continued use of Certixs after a policy update constitutes acceptance of the revised policy.

Contact

Questions about this policy? Reach us at certixssupport@gmail.com.