Privacy Policy

Our free MCP runs entirely on your local machine. This means:

• Your source code never leaves your computer during analysis
• No data is transmitted to Patentable servers during patent detection
• No internet connection is required for the MCP to function
• We cannot and do not collect any data from your local MCP usage
• All patent detection results are stored locally on your machine

When you visit patentable.app, we collect minimal, non-invasive analytics:

• Page views: Which pages you visit and how long you stay
• Referral source: Where you came from (search engine, direct link, etc.)
• Device information: Browser type, device type, screen resolution (for responsive design)
• Geographic location: Country-level only (for compliance and localization)

What we DON'T collect:

• Individual user tracking or identification
• Personal information without your explicit consent
• Third-party advertising cookies
• Invasive behavioral tracking

When you choose to use our professional patent filing services, we collect only the information necessary to file your patent application:

Required Information

• Inventor details: Name, address, citizenship (required by USPTO)
• Contact information: Email, phone number for communication
• Invention description: Technical details you explicitly provide
• Payment information: Credit card or bank details (processed securely via Stripe)

Attorney-Client Privilege

Once you engage our patent filing services, all communications are protected by attorney-client privilege. This means:

• Your invention details are confidential and cannot be disclosed
• Communications with our attorneys are legally privileged
• We have a legal duty to protect your confidential information
• Only authorized legal staff have access to your patent materials

Infrastructure

• Hosting: Vercel (SOC 2 Type II certified)
• Database: Supabase (PostgreSQL with encryption at rest)
• File Storage: Supabase Storage (encrypted, access-controlled)
• Payments: Stripe (PCI DSS compliant)

Security Measures

• Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Control: Role-based access with multi-factor authentication for staff
• Audit Logs: All access to patent materials is logged and monitored
• Regular Security Audits: Third-party penetration testing and vulnerability assessments

We use the following third-party services to provide our patent filing platform:

• Gemini AI (Google): Content generation for patent applications (your invention details are processed under strict confidentiality agreements)
• Stripe: Payment processing (we never see or store your full credit card details)
• Vercel: Website hosting and serverless functions
• Supabase: Database and file storage

All third-party services are bound by strict data processing agreements (DPAs) and comply with GDPR, CCPA, and other privacy regulations.

You have complete control over your data. You can:

• Access: Request a copy of all data we hold about you
• Correct: Update any inaccurate or incomplete information
• Delete: Request deletion of your account and associated data (note: patent filings submitted to USPTO cannot be deleted)
• Export: Download your patent application materials in portable formats
• Opt-out: Unsubscribe from marketing emails at any time

To exercise these rights, contact us at: privacy@patentable.app

We use minimal, essential cookies:

• Authentication cookies: Keep you logged in (if using filing services)
• Session cookies: Maintain your session state during patent application process
• Analytics cookies: Anonymous usage statistics (can be disabled in browser)

We do NOT use:

• Advertising or tracking cookies
• Third-party marketing cookies
• Cross-site tracking

Patentable is intended for use by adults and businesses. We do not knowingly collect information from children under 18. If you believe we have inadvertently collected information from a minor, please contact us immediately at privacy@patentable.app.

Patentable is based in the United States. If you are accessing our services from outside the U.S.:

• Your data may be transferred to and stored in the United States
• We comply with GDPR for European users
• We comply with CCPA for California residents
• We maintain Standard Contractual Clauses (SCCs) for international data transfers

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification if you have an account with us
• Displaying a prominent notice on our website

Your continued use of Patentable after changes indicates acceptance of the updated policy.