How we collect, use, and protect your information.
Effective Date: April 14, 2026
Version: 1.0
This Privacy Policy explains how Deckhouse ("we", "us", "our") collects, uses, and shares your information when you use our Service.
Account Data
When you sign up, we collect your email address, name, and profile image through our authentication provider (Clerk). This information is required to create and manage your account.
Workspace Data
When you set up your workspace, we collect your company name, optional website URL, and business context description. If you provide a website URL, we may scrape it to extract brand colors, logos, and fonts for your workspace configuration.
Content Data
We store the content you create in the Service, including deck HTML, chat conversation history with our AI assistant, and media files (images and videos up to 50MB). Media files are stored with public-read URLs.
Technical Data
We collect standard technical data including your IP address, browser user agent, and authentication cookies (managed by Clerk). We may collect additional usage analytics in the future — this policy will be updated accordingly.
When you use the AI features of Deckhouse, the following data is sent to Anthropic's Claude API for processing:
This data is processed according to Anthropic's data usage policies. We do not use your content to train AI models.
We share data with the following third-party services to operate Deckhouse:
| Service | Data Shared | Purpose |
|---|---|---|
| Clerk | Email, name, profile | Authentication & team management |
| Supabase | All user data | Database & file storage |
| Anthropic Claude | Chat messages, deck content, brand config | AI-powered deck generation |
| Composio | OAuth tokens for connected apps | CRM & tool integrations |
| Firecrawl | Website URLs | Content scraping & brand extraction |
| Fly.io | Application data | Hosting |
When you connect third-party services (such as HubSpot, Salesforce, or Google Sheets) through our integration platform (Composio), those services may access and provide data according to their own privacy policies. We store the connection metadata but the data exchange is governed by the connected service's terms.
When you publish a deck, it becomes accessible via a direct URL at /d/{workspace}/{deck}. Published decks are not indexed by search engines — they are only accessible to those who have the specific link. Magic edit links use hashed, time-limited tokens for temporary editing access.
We retain your data for as long as your account is active. You may delete individual decks at any time. Deleting a workspace permanently removes all associated data, including decks, chat sessions, integrations, and media files. There is no automatic data purge — deletion is user-initiated.
We use essential authentication cookies managed by Clerk to maintain your login session. We do not currently use analytics, advertising, or tracking cookies. If we add analytics in the future, this policy will be updated.
Team invitation emails are sent through Clerk's email infrastructure. We plan to add transactional email communications (account notifications, service updates) in the future. We will not send unsolicited marketing emails without your consent.
You have the right to:
To exercise these rights, contact us at privacy@deckhouse.ai.
We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the Service and require you to acknowledge the updated policy before continuing to use the Service.
If you have questions about this Privacy Policy, contact us at privacy@deckhouse.ai.