The Intelligence Layer

Privacy Policy

How we collect, use, and protect your information.

Effective date: March 31, 2026

The Intelligence Layer, LLC (“The Intelligence Layer,” “we,” “us,” or “our”) operates the website at theintelligancelayer.com and the client portal accessible through it (collectively, the “Service”). This Privacy Policy explains what information we collect, how we use it, who we share it with, and your choices regarding that information.

By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Information You Provide

  • Account registration: First name, last name, email address, company name, and password when you create an account. If you sign in with Google, we receive your name, email address, and profile picture from Google.
  • Contact form: Name, email address, company name, annual revenue range, and the content of your message.
  • Onboarding questionnaire: Information about your business including industry, revenue, ERP systems, team size, data challenges, and strategic priorities.
  • Demo interactions: Questions you ask and actions you take within our interactive demo environment, including chat messages with our AI assistant.
  • Portal communications: Messages, files, and documents you upload or send through the engagement portal.
  • Feedback: Responses you provide through post-demo surveys, call feedback forms, and other feedback mechanisms.
  • Call scheduling: When you book a discovery call, your name, email, and scheduling preferences are shared with our calendar scheduling provider.

1.2 Information Collected Automatically

  • Usage data: Pages visited, features used, time spent on pages, clicks, and navigation paths.
  • Device information: Browser type, operating system, screen resolution, and language preferences.
  • Network information: IP address, approximate geographic location (city/region level), and referring URL.

1.3 Client Engagement Data

If you become a paying client, additional data may be processed as part of building your custom intelligence platform. This data is governed by your individual client agreement and may include financial records, ERP exports, and business data you provide to us. This Privacy Policy covers only the data collected through the Service itself, not client engagement data processed under a separate agreement.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service, including account management, the client portal, and interactive demos.
  • Respond to your inquiries and communicate with you about our services, including sending transactional emails (account verification, password resets, engagement notifications).
  • Generate personalized demo experiences and call preparation materials from your questionnaire responses.
  • Process AI-powered features, including the interactive demo chatbot, which sends your queries to our AI provider for processing.
  • Analyze usage patterns to understand how the Service is used and to improve user experience, measure conversion funnels, and optimize marketing pages.
  • Process payments and manage billing for paid services.
  • Detect, prevent, and address fraud, abuse, and technical issues.
  • Comply with legal obligations and enforce our Terms of Service.

3. Third-Party Services

We use the following third-party services to operate the Service. Each service processes data only as necessary to provide its function and is subject to its own privacy policy.

3.1 Infrastructure and Hosting

  • Cloudflare (cloudflare.com): Website hosting, content delivery, DDoS protection, and edge compute. Cloudflare processes network-level data (IP addresses, request headers) to deliver and secure the Service.
  • Supabase (supabase.com): Database hosting, authentication, file storage, and real-time data synchronization. Your account data, questionnaire responses, portal messages, and uploaded files are stored in our Supabase database. All data is encrypted at rest (AES-256) and in transit (TLS 1.2+). Supabase hosts our data in the United States.

3.2 Authentication

  • Supabase Auth: Handles account creation, login, email verification, password resets, and session management. If you choose to sign in with Google, Supabase facilitates the OAuth flow with Google and receives your Google profile information (name, email, profile picture).
  • Google OAuth (google.com): If you sign in with Google, Google shares your basic profile information with us. We do not access your Google contacts, Drive files, or other Google data beyond what is needed for authentication.

3.3 Payments

  • Stripe (stripe.com): Payment processing for paid services. Stripe collects and processes your payment card details directly. We do not store your full card number on our servers. We receive from Stripe a tokenized reference, billing address, and transaction history necessary to manage your subscription.

3.4 AI Processing

  • Anthropic (anthropic.com): Powers the AI features within the Service, including the interactive demo chatbot and automated document generation. When you interact with AI-powered features, your input (questions, prompts) is sent to Anthropic’s API for processing. Anthropic does not use data submitted via its API to train its models. Refer to Anthropic’s Privacy Policy for details on their data handling.

3.5 Analytics

  • PostHog (posthog.com): Product analytics including page views, feature usage, and conversion funnel tracking. PostHog collects usage events, device information, and IP-derived approximate location. We use PostHog in “identified only” mode, meaning anonymous visitors are not tracked with person profiles. PostHog processes data in the United States.

3.6 Email

  • Resend (resend.com): Transactional email delivery for account verification, password resets, and engagement notifications. Resend processes recipient email addresses and message content to deliver emails on our behalf.

3.7 Scheduling

  • Cal.com (cal.com): Discovery call booking. When you schedule a call, your name, email, and any notes you provide are shared with Cal.com to manage the appointment.

4. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

  • Essential cookies: Session management and authentication. These are required for the Service to function.
  • Analytics cookies: PostHog sets cookies to track usage patterns and distinguish returning visitors. These help us understand how the Service is used and improve the experience.

You can control cookies through your browser settings. Disabling essential cookies may prevent you from using parts of the Service that require authentication.

5. Data Sharing

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We share information only in the following circumstances:

  • Service providers: With the third-party services listed in Section 3, solely to operate the Service.
  • Legal requirements: When required by law, legal process, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
  • With your consent: When you have given us explicit permission to share your information for a specific purpose.

6. Data Retention

  • Account data: Retained for as long as your account is active. If you request account deletion, we will delete your account data within 30 days, except where retention is required for legal or legitimate business purposes (e.g., billing records).
  • Contact form submissions: Retained for up to 24 months to manage our sales pipeline and respond to inquiries.
  • Analytics data: PostHog retains event data according to our configured retention period. Aggregate analytics (non-personally identifiable) may be retained indefinitely.
  • Transactional records: Payment and billing records are retained as required by applicable tax and accounting regulations.

7. Data Security

We protect your data through the following measures:

  • All data is encrypted in transit using TLS 1.2 or higher.
  • Database contents are encrypted at rest using AES-256 encryption.
  • Access to production systems is restricted to authorized personnel using role-based access controls.
  • Row-level security policies enforce data isolation so that users can only access their own data.
  • Sensitive credentials (such as third-party integration tokens) are encrypted at the application level before storage.
  • We do not store full payment card numbers; all payment processing is handled by Stripe, a PCI DSS Level 1 certified provider.
  • Uploaded files are validated for type and size before storage and restricted through storage access policies.

No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

8. Your Rights and Choices

Depending on your location, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information in your account.
  • Delete your account and associated personal data.
  • Export your data in a portable format.
  • Object to or restrict certain processing of your information.
  • Withdraw consent where processing is based on your consent.

To exercise any of these rights, contact us at hello@theintelligancelayer.com. We will respond within 30 days.

9. Children’s Privacy

The Service is designed for business professionals and is not directed at individuals under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at hello@theintelligancelayer.com and we will delete it promptly.

10. International Data Transfers

Our Service is hosted in the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and, where appropriate, notify you by email or through the Service. Your continued use of the Service after a change constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

The Intelligence Layer, LLC
Email: hello@theintelligancelayer.com