Last updated: 27 April 2026
Privacy policy
What Proofer collects, why, and how to remove it. Plain English.
What we collect
Only what's needed to generate your proof packet: the form fields you fill in (name, email, product, retailer, dates, the issue description, your timeline notes), the evidence files you upload, your IP/User-Agent at request time, and the payment metadata Stripe returns when you check out. We do not collect government IDs, contact lists, or precise location data.
How we use it
Your form data is rendered into the letter and the PDF you download. Your evidence files are embedded into that PDF and indexed for the share page. Your email is used to send you the ready packet, the failure notice if generation breaks, and replies to support requests. Aggregated, non-identifying analytics (page views, conversion events) help us understand which generators people actually use.
Where it lives
Form rows live in a Postgres database hosted by Supabase. Evidence files and generated PDFs live in private Supabase Storage buckets, accessible only via short-lived signed URLs that we mint per request. Payment processing is handled by Stripe — Proofer never sees your full card number. Email is delivered via Resend.
Who can see it
Anyone you give the share link to (or who guesses a 24-character random token, which is computationally hard). Proofer staff have access to the underlying database for support and incident response, but we do not look at packets for any other reason. Subprocessors (Supabase, Stripe, Resend, Microsoft Clarity, Vercel) see only what they need to do their part of the job.
How long we keep it
Packets and evidence files are retained for 30 days from creation, after which they expire and become inaccessible from the share link. Background deletion runs shortly after expiry. Payment records are retained for 7 years for tax and accounting purposes. Support email threads are retained for 12 months.
Your choices
You can request deletion of any packet or all your data at any time by emailing privacy@proofer.work — include the email address you used and we'll act within 7 business days. You can also opt out of analytics by enabling "Do Not Track" in your browser; we honor it for Microsoft Clarity instrumentation. We do not sell or rent your information.
Cookies
We set a small first-party cookie that remembers your light/dark/system theme choice. Microsoft Clarity sets a cookie to anonymously stitch session recordings (only loaded when NEXT_PUBLIC_CLARITY_ID is configured). Stripe sets cookies on its own checkout page for fraud detection. We do not run advertising cookies.
Children
Proofer is intended for adults handling consumer disputes. We do not knowingly collect data from anyone under 16. If you believe a child has used Proofer, contact privacy@proofer.work and we'll delete the records.