ExecuteKit

Privacy Policy

Effective Date: March 17, 2026

1. Introduction

ExecuteKit ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services at executekit.com (the "Service").

By using ExecuteKit, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

When you register for an account, we collect:

  • Name and email address
  • Account credentials (securely hashed)
  • Payment information (processed securely through Stripe)
  • Business information you provide in intake forms

2.2 Automatically Collected Information

When you use our Service, we automatically collect:

  • Device information (browser type, operating system)
  • IP address and location data
  • Usage data (pages visited, time spent on pages)
  • Cookies and similar tracking technologies

2.3 Business Data

Through our Phase A Brief intake forms, we collect:

  • Problem statements and business ideas
  • Target market descriptions
  • Revenue goals and business assumptions
  • Any additional context you provide

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our Service
  • Process validation briefs and generate research outputs when those workflows are available
  • Process payments and manage subscriptions
  • Send you service-related notifications and updates
  • Respond to your inquiries and provide customer support
  • Analyze usage patterns to improve user experience
  • Detect and prevent fraud and security issues
  • Comply with legal obligations

4. Third-Party Services

We use the following third-party services that may collect your information:

Clerk (Authentication)

Manages user authentication and account security

Stripe (Payments)

Processes payments and manages subscriptions

Vercel (Hosting)

Hosts our application and provides infrastructure

Railway (Database)

Stores your data securely in PostgreSQL database

Research and email service providers

Support research enrichment and transactional email when those workflows run

Each of these services has their own privacy policies. We encourage you to review them.

5. Data Security

We implement industry-standard security measures to protect your data:

  • HTTPS encryption for all data transmission
  • Secure password hashing (never stored in plain text)
  • Regular security audits and monitoring
  • Limited employee access to personal data
  • Secure database hosting with encryption at rest

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

6. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Active account data is retained while your account is active
  • Validation reports and business data are retained for the duration of your subscription
  • Payment records are retained for 7 years for tax and legal compliance
  • Marketing data is retained until you unsubscribe

After account deletion, we retain minimal data for legal compliance (e.g., transaction records) but remove all personally identifiable information within 30 days.

7. Your Privacy Rights

Depending on your location, you have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing of your data
  • Restriction: Request restriction of processing
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, contact us at contact@executekit.com.

8. Cookies and Tracking

We use cookies and similar technologies to improve your experience. See our Cookie Policy for details.

9. Children's Privacy

ExecuteKit is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this policy and applicable law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new policy on this page
  • Updating the "Effective Date" at the top
  • Sending an email notification for material changes

Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Email: contact@executekit.com

Website: https://executekit.com

← Back to Home