We collect what the product needs. Nothing else.

• Account basics. Your email address (used for magic-link sign-in and the digests you opt into) and an optional display name.
• Billing state. Your subscription tier and Stripe customer/subscription identifiers. We never see or store your card number— payment details go directly to Stripe.
• Your research objects. The companies you follow, your prediction journal, your annotations, and which findings you’ve read, saved, or archived.
• Chat queries and responses. Every chat exchange is logged (query, retrieved sources, response) as the audit trail behind our compliance posture and for product analytics.
• Operational logs. Standard server logs and error reports (via Sentry) that may include your IP address and browser metadata. Used for debugging and abuse prevention, not profiling.
• Cookies. Essential session cookies only (sign-in state, security). No third-party advertising or analytics cookies.

• Operating the product you signed up for.
• Sending the emails you chose (sign-in links, digests, alerts you configured). Every non-essential email has an unsubscribe path.
• Compliance audit — the chat log exists so our editorial line (“no personalized advice”) is verifiable after the fact.
• Aggregate product analytics (e.g. which features get used). Aggregates only; your individual queries are not surfaced to other users.

• Sell or rent your personal data.
• Share your watchlist, journal, or annotations with other users.
• Run third-party advertising or cross-site tracking.
• Use your personal portfolio to tailor editorial output — that line protects both your privacy and our publisher’s exemption.

We use a small set of infrastructure providers, each receiving only what their function requires:

• Stripe — payments and subscription management.
• Brevo — transactional email delivery (sign-in links, digests).
• Render, Neon, Fly.io — application hosting, database, and search infrastructure.
• Anthropic — the chat assistant. Your chat messages and the filing excerpts they retrieve are sent to Anthropic’s API to generate responses.
• Sentry — error monitoring.

Beyond these processors, we disclose personal data only if legally required to.

• Account data lives as long as your account does.
• Account deletion (Settings → Danger zone) wipes your companies, journal entries, annotations, finding read-state, saved chats, preferences, and billing records.
• One exception — chat audit logs. Your chat questions and answers are retained after account deletion as our compliance record (the evidence that Drift provides information, not investment advice). We keep them because an anonymized log can’t serve that purpose. This is a permitted legal-defense retention under applicable US state privacy law; the records are used only for compliance and legal-defense, not for any other purpose.
• Operational logs and error reports age out on short, provider-standard windows.

All traffic is encrypted in transit (TLS). Sign-in is passwordless magic-link — there is no password for an attacker to steal — with optional two-factor authentication in Settings. Access to production data is limited to what operating the service requires.

You can access and export what you’ve put in (your journal has a built-in export), delete your account yourself in Settings, or email privacy@driftbrief.com for anything else — access, correction, deletion, or a question this page doesn’t answer. Depending on your US state (e.g. California, Colorado), some of these rights are also statutory; we honor them regardless, subject to the legal-defense retention noted above.

Drift Brief is intended for users in the United States. We do not target or market the service to people in the EU/EEA or UK, and we don’t intend to offer it to residents there. If you are outside the US, please don’t use the service.

Drift Brief is not directed at anyone under 18, and we don’t knowingly collect data from minors.

If this policy changes materially, we’ll note it here with a new “last updated” date and, for significant changes, notify account holders by email.