Privacy Policy

Effective Date: December 23, 2025
Version: 1.3
Last Updated: December 23, 2025

In short: We don't know who you are, we do not store your ChatGPT conversation history on our servers, and we don't track you. We only store your organized board when you choose to save it — nothing is stored automatically.

This Privacy Policy explains how Priority Guard ("we", "us", "our") collects, uses, and protects your data in accordance with the General Data Protection Regulation (GDPR) when you use our ChatGPT SDK applications, including Clarity and future apps in the Priority Guard suite.

Clarity runs inside ChatGPT and uses OpenAI's infrastructure to process your input. We do not store your ChatGPT conversation history on our servers — we store only your organized board when you explicitly save it.

1. Controller & Contact

Data Controller: Nadja Carabulea
Contact: support@priority-guard.com
Website: priority-guard.com

For privacy-related inquiries, contact us at the email above. We aim to respond within 30 days.

2. Data We Collect

Below is the complete list of data we store. If it's not listed here, we don't collect it.

2.1 Clarity

Data CategoryWhat We StorePurposeUser IdentifierPseudonymous ChatGPT user ID (UUID)Identify your account across sessionsBoard DataStructured thought clusters including: cluster names, subcluster names, thought items (text), optional priority rankings (P1/P2/P3), and system-generated behavioral tags (e.g., "research", "delegate")Save and restore your board across sessionsContent HashSHA256 hash of board contentDetect unsaved changes in the widgetOAuth TokensEncrypted access and refresh tokensAuthenticate your session with ChatGPTConsent RecordsApp name, scope (clarity.write), timestampCompliance audit trail

What we do NOT store: Your full chat conversation or the raw text you type into ChatGPT. When you share thoughts, ChatGPT organizes them into structured clusters. If you choose to save your board, only this organized output (cluster names and thought items) is stored on our servers — not your conversation history or original unstructured messages. Nothing is saved unless you explicitly click save.

2.2 Data Limits

To ensure performance and prevent abuse, Clarity enforces the following limits on saved boards:

  • Maximum 20 top-level clusters

  • Maximum 100 thought items total (across all clusters and subclusters)

  • Maximum 500 characters per thought item

2.3 Shared Infrastructure

All Priority Guard apps share a common backend for authentication and user management:

  • Pseudonymous user ID (no names, emails, or personal identifiers)

  • OAuth session tokens (encrypted with AES-256)

  • Consent records per app and scope

  • Operational audit logs (no personal data, only action metadata)

2.4 Data We Do NOT Collect

  • Your name, email address, or real identity

  • Payment information (PCI), health data (PHI), or government IDs

  • Location data (city, coordinates, IP addresses)

  • Full chat history or conversation logs

  • Behavioral tracking or profiling data

3. Lawful Basis for Processing

We process your data based on your consent, granted when you authorize the app through ChatGPT's OAuth flow, and where applicable, to perform the service you request (saving and restoring your board). You can withdraw consent at any time by disconnecting the app or deleting your data.

4. Data Retention

Data TypeRetention PeriodBoard data (Clarity)Until you delete it, or 6 months of inactivityUser accountUntil you delete it, or 6 months of inactivityOAuth access tokens1 hour (auto-refresh)OAuth refresh tokens30 daysAuthentication session metadataUp to 2 years (or until 6-month inactivity cleanup, whichever is sooner)Audit logs90 daysConsent recordsPersistent (required for compliance)Database backups7 days (encrypted, then permanently deleted)

4.1 Automatic Inactivity Cleanup

After 6 months of inactivity (no active OAuth connections and no active consents), your account is anonymized or permanently deleted. This monthly process includes:

  • Deletion of all app-specific data (Clarity boards, etc.)

  • Deletion of all OAuth tokens and sessions

  • Deletion of all consent records

  • Anonymization or deletion of user record

  • Audit log entry for compliance (retained 90 days)

5. Data Storage & Security

5.1 Location

All data is stored on servers in the European Union (Germany) using Render's managed infrastructure. No data is transferred or stored outside the EU, except as noted in Section 6.

5.2 Security Measures

  • Encryption at rest: AES-256 for all sensitive fields (OAuth tokens)

  • Encryption in transit: TLS 1.3 for all network traffic

  • Pseudonymization: Users identified by UUID only, no real identities stored

  • Access control: Sole-developer model with MFA and least-privilege access

  • Automated deletion: Retention limits enforced by scheduled background jobs

  • Internal API security: Backend endpoints protected by secret-based authentication

6. Data Sharing & Processors

We share data with the following processors to provide our services:

ProcessorPurposeLocationOpenAIChatGPT runtime (processes your input, hosts the SDK app interface)USARenderApplication hosting, PostgreSQL database, infrastructureGermany (EU)

We do not sell your data. We do not share data for marketing or advertising purposes.

7. Your Rights

You have the following rights regarding your data:

  • Access: Request a copy of your data

  • Rectification: Correct inaccurate data

  • Erasure: Delete your data

  • Portability: Export your data in a machine-readable format (JSON or CSV)

  • Restriction: Limit how we process your data

  • Objection: Object to processing

  • Withdraw consent: Revoke your consent at any time

To exercise these rights, contact support@priority-guard.com. We will respond within 30 days.

8. How to Delete Your Data

You can delete your Clarity board data at any time using one of these methods:

8.1 In-App Deletion (Recommended)

Within Clarity, simply ask ChatGPT to delete your data. For example:

  • "Delete my saved board"

  • "Delete my Clarity data"

  • "Remove all my data"

You will be asked to confirm before deletion proceeds. This action permanently deletes your saved board and cannot be undone.

8.2 By Email

Contact support@priority-guard.com to request deletion of your data. Please specify which app (e.g., Clarity) in your request.

8.3 What Happens When You Delete

When you delete your Clarity data:

  • Your saved board (clusters, thought items, priorities, tags) is permanently deleted

  • An audit log entry is created (user ID + timestamp only, no personal data)

  • The audit log is retained for 90 days for compliance, then deleted

Note: Deleting your Clarity board does not delete your Priority Guard account. To delete your entire account across all apps, contact support@priority-guard.com.

9. Cookies

We use a single, strictly necessary session cookie (pg_session) for authentication on our own domain (e.g., during OAuth flows). This cookie is not accessible within the ChatGPT app iframe and is not used for tracking or analytics.

This cookie:

  • Enables you to stay logged in across Priority Guard apps during authorization

  • Is HttpOnly (not accessible via JavaScript)

  • Is Secure (HTTPS only)

  • Is SameSite=Lax (sent on OAuth redirects, blocked on cross-site POST)

  • Is scoped to /oauth paths only

  • Expires after 2 years of inactivity (or during 6-month inactivity cleanup)

We do not use tracking cookies, analytics cookies, or advertising cookies. No cookie consent banner is required as this cookie is strictly necessary for functionality.

10. Children

Our services are not intended for children under 13 years of age, consistent with ChatGPT's age requirements. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us immediately.

11. AI-Generated Content

Clarity uses ChatGPT to organize your thoughts into clusters. Important notes about AI processing:

  • Your text input is processed by ChatGPT to create structured clusters

  • Only the structured output (clusters, items, tags) is stored by Clarity on our servers

  • AI-generated cluster names and organization may not be perfectly accurate—review and edit as needed

  • OpenAI processes your input according to their own Privacy Policy

12. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Material changes will be communicated via:

  • Updated "Effective Date" and "Version" at the top of this page

  • In-app notification (for significant changes)

We encourage you to review this policy periodically.

13. Contact

For questions, concerns, or to exercise your rights:

Email: support@priority-guard.com
Website: priority-guard.com


Legal

Impressum

Impressum

Privacy Policy

Terms of Service

About

Contact