Privacy Policy

Short version: We collect very little personal information. We do not sell your data, ever. Our advertising product is built on conversational context, not on tracking individuals — so the data we handle is materially smaller than what most ad-tech vendors collect. This policy is the long version of that sentence.

1. Who we are

"Context Hints" refers to Context Hints Labs Inc., a Delaware corporation. When this policy says "we," "our," or "us," we mean Context Hints Labs Inc., the publisher and operator of contexthints.com and the free tools and services available through it.

2. Plain-English summary

• If you visit the site, we log basic request data (your browser type, the page you visited, an IP-derived approximate region) to keep the site fast and to spot abuse.
• If you use one of our free tools (Reach Calculator, Context Hint Generator, UTM Generator), everything runs in your browser. We do not receive what you type.
• If you book a discovery call, our scheduling vendor (Calendly) collects the details you provide for that booking. We use those details to show up to the meeting.
• If you become a paying customer, we collect billing information through our payment processor and the information you provide to operate your account.
• We do not sell your personal information. We do not share it with advertisers. We do not use it to train AI models.

3. What we collect

3.1 Visitors to contexthints.com

When you load any page on the site, our hosting provider's edge network and our analytics layer receive standard request data:

• IP address (used to derive approximate region only; we do not store the full IP beyond what's needed for security logging).
• User-agent string (browser and operating system).
• Referrer URL (the page you came from, if any).
• The page you requested and the time of the request.

3.2 People who use our free tools

The Reach Calculator, Context Hint Generator, and UTM Generator are deliberately client-side. Inputs and outputs stay in your browser. We do not transmit them to our servers and we do not log them. If a future tool changes that behaviour, the tool's interface will say so explicitly before you submit anything.

3.3 People who book a discovery call

Discovery-call bookings are handled by Calendly. When you book, Calendly collects the name, email address, time zone, and any answers to its booking questions, and shares those with us so we know who is on the meeting. Calendly is the controller of that data with respect to its own platform and applies its own privacy policy in addition to ours.

3.4 Customers and prospects

If you engage us for advisory work, become a beta participant in any future paid product, or correspond with us over email, we will collect the information you provide for that engagement — typically your name, business email address, role, company, and the business context relevant to our work together.

3.5 What we do not collect

• We do not run cross-site tracking pixels.
• We do not load third-party advertising tags.
• We do not fingerprint your device.
• We do not collect special categories of personal data (health, religion, biometrics, sexual orientation, political opinions, etc.) unless you volunteer them in correspondence and they are necessary for the question you are asking.

4. Why we collect it

For each category above, the corresponding purpose:

• Site request data — to operate the site, prevent abuse and DDoS, debug errors, and report aggregate traffic statistics.
• Free-tool usage — to deliver the tool to your browser. The inputs you type stay with you.
• Booking data — to hold the meeting you booked, prepare for it, and follow up afterward.
• Customer data — to deliver the engagement, invoice you, support you, and meet our legal obligations (tax records, contract record-keeping).

Under EU and UK GDPR, our lawful bases are: legitimate interests for operating the site and keeping it secure; contract performance for fulfilling engagements you book or buy; consent where you affirmatively opt in (for example, by booking a call or sending us an email); and legal obligation for records we must keep.

5. Who we share with

We share information only with the service providers we depend on to operate, each acting as our processor:

We do not sell personal information. We do not share it with third-party advertisers, data brokers, or model trainers.

6. How long we keep it

• Site request logs — up to 30 days for security and debugging, then aggregated or deleted.
• Booking records — kept while you remain in our pipeline plus 12 months after the last meeting, unless you ask us to delete sooner.
• Customer records — kept for the duration of our engagement plus the period required by applicable tax and accounting law (typically seven years in the US).
• Email correspondence — kept indefinitely unless you ask us to delete a specific thread.

7. Your rights

Depending on where you live, you may have any or all of these rights with respect to your personal information:

• Access — ask what we have about you.
• Correction — ask us to fix anything inaccurate.
• Deletion — ask us to delete it (subject to records we must keep by law).
• Portability — ask us to send you a copy in a portable format.
• Objection — object to specific uses where our basis is legitimate interest.
• Opt-out of sale or sharing — we do not sell or share for cross-context behavioural advertising, so this is automatic, but you can confirm it in writing if you would like.
• Withdraw consent — where we relied on consent, withdraw it at any time.
• Complain — to your national data protection authority. In the EU, that is your local DPA; in the UK, the ICO; in California, the CPPA.

To exercise any of these, write to privacy@contexthints.com. We respond within 30 days (15 days under CPRA for verifiable consumer requests).

8. International transfers

Context Hints is based in the United States. The service providers we rely on may process data in the US, the EU, or other regions. Where personal data of EU, UK, or Swiss residents is transferred to a country without an adequacy decision, we rely on Standard Contractual Clauses or an equivalent transfer mechanism with the relevant processor. We will tell you which mechanism applies on request.

9. Security

We follow the practical security baseline you would expect of a small, technically-led company: TLS in transit, encryption at rest where supported by the provider, principle of least privilege for staff access, multi-factor authentication on every account, separation of production secrets from source control, and timely patching. No system is perfectly secure. If we ever experience a personal-data breach that materially affects you, we will tell you without undue delay and in any case within the timeline required by applicable law.

10. Minors

Our services are intended for use by adults in a business context. We do not knowingly collect personal information from anyone under 18. If you are a parent or guardian and believe a minor has provided us with information, write to privacy@contexthints.com and we will delete it.

11. Changes to this policy

When we update this policy in a way that materially changes how we collect or use personal information, we will update the "Effective" date at the top and, if you are a customer or have given us your email address, notify you by email. Historical versions are available on request.

12. How to contact us

Privacy-specific questions and requests: privacy@contexthints.com.
General contact: hello@contexthints.com.
Postal: Context Hints Labs Inc., c/o registered agent, Delaware, USA. We will supply the full mailing address on request to verified individuals exercising statutory rights.