← Back to home

Privacy Policy

Effective date: April 20, 2026

This Privacy Policy explains how Context Desk (“we”, “us”) collects, uses, stores, shares and protects personal data when you use the Context Desk service (the “Service”). It applies to visitors to our marketing site and to customers using the dashboard.

1. Who is the data controller?

For the personal data of our account holders (you, the customer), Context Desk is the data controller. For personal data contained inside the messages, orders, customers and other records that we process from your connected platforms (Shopify, Stripe, Zendesk, Intercom, Gmail, etc.), you are the controller and we act as your processor under a Data Processing Agreement.

2. Personal data we collect

Information you give us when you sign up or use the dashboard:

  • Account details: name, email, company name, password (hashed) or Google OAuth identifier.
  • Billing details: collected by our payment provider (acting as Merchant of Record). We receive only a customer reference, plan, status and last four digits of the card — never the full card number.
  • Integration credentials: OAuth tokens or API keys for Shopify, Stripe, Zendesk, Intercom, Gmail. These are encrypted at rest with AES-256.
  • Settings, audit-trail entries, escalation rules and any messages you write in the dashboard.

Customer Data we process on your behalf from connected platforms:

  • Order history, subscription status, ticket history, message threads, customer profile fields, and the contents of inbound support emails.
  • Drafted and sent reply text, confidence scores and decision reasoning.

Information we collect automatically:

  • Log data: IP address, user-agent, request paths, timestamps, error traces.
  • Cookies and similar technologies (see Section 9).

3. How we use personal data

  • To provide, operate, maintain and improve the Service.
  • To draft, route and (where you have configured auto-reply) send support replies on your behalf.
  • To authenticate you and protect your account.
  • To process payments, issue invoices, and prevent fraud, via our Merchant of Record.
  • To send transactional emails (trial reminders, audit reports, escalation alerts, billing receipts). You cannot opt out of these while you have an active account.
  • To send product updates and educational emails. You can opt out of these at any time.
  • To monitor, debug, secure and rate-limit the Service.
  • To comply with legal obligations and enforce our Terms.

4. Lawful basis (GDPR)

Where the GDPR applies we rely on the following lawful bases: (a) contract — to provide the Service you have signed up for; (b) legitimate interests — to secure the Service, prevent abuse, and improve our product; (c) legal obligation — for tax, accounting and compliance; (d) consent — for non-essential cookies and marketing emails, which you may withdraw at any time.

5. AI processing

The Service uses a third-party large-language-model provider to generate reply drafts. The minimum context required for the draft is sent to the provider via their API. We have a data-processing agreement with the provider that prohibits them from using your data to train their models. AI-generated output is treated as Customer Data and is stored only in your tenant.

6. Sub-processors

We use the following sub-processors. Each is bound by a data-processing agreement and EU Standard Contractual Clauses where applicable.

  • Supabase — database, authentication, file storage.
  • DeepSeek — AI inference (reply drafting).
  • Resend — transactional email delivery.
  • Polar — payment processing as Merchant of Record (subscriptions, invoices, tax, refunds, chargebacks).
  • Replit — hosting and deployment infrastructure.
  • Upstash — rate-limiting and caching.

The list of sub-processors may change. Material changes will be communicated by email or in-app at least 14 days before they take effect, except where a replacement is required for security reasons.

7. International transfers

Personal data may be transferred to and processed in countries outside your country of residence, including the United States. Where a transfer leaves the European Economic Area or the United Kingdom, we rely on appropriate safeguards such as the EU Standard Contractual Clauses or the UK International Data Transfer Addendum.

8. Data retention

  • Account data is retained while your account is active and for up to 30 days after termination, after which it is deleted or anonymised.
  • Audit-trail entries (immutable record of AI decisions and human actions) are retained for 12 months unless you request earlier deletion.
  • Billing records are retained for 7 years to comply with tax and accounting obligations.
  • System and security logs are retained for 90 days.

9. Cookies

We use a small number of strictly-necessary cookies for authentication, session management and CSRF protection. We do not use third-party advertising or tracking cookies. We may use a privacy-friendly first-party analytics tool (without cross-site tracking) to understand product usage; you can opt out from your browser settings.

10. Security

We protect personal data with industry-standard controls including encryption in transit (TLS 1.2+), encryption at rest (AES-256), Postgres Row-Level Security to isolate tenants, hashed passwords, encrypted integration credentials, least-privilege access for staff, audit logging, and regular dependency and security scans. No system is perfectly secure; if we ever experience a breach affecting your data we will notify you without undue delay and within the timeframes required by applicable law.

11. Your rights

Subject to applicable law (including GDPR and the CCPA / CPRA) you have the right to:

  • access the personal data we hold about you;
  • request correction of inaccurate personal data;
  • request deletion of your personal data (“right to be forgotten”);
  • request export of your data in a portable format;
  • object to or restrict certain processing;
  • withdraw consent for processing based on consent;
  • opt out of the “sale” or “sharing” of personal data — we do not sell or share your data, but you may still submit a request;
  • lodge a complaint with your supervisory authority.

To exercise any of these rights, email support@contextdesk.app. We respond within 30 days. Account data export and deletion are also available self-service from Dashboard → Settings → Data.

12. Children

The Service is intended for businesses and is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us and we will delete it.

13. Changes to this Policy

We may update this Privacy Policy from time to time. The “Effective date” at the top indicates when it was last revised. We will notify you of material changes by email or in-app at least 14 days before they take effect.

14. Contact

Questions, requests, or complaints? Email support@contextdesk.app.