Privacy Policy
Last updated: 15 April 2026
ReadTheRoom ("we", "our", or "us") operates the ReadTheRoom browser extension and the readtheroom.me web application (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not use the Service.
1. Information We Collect
1.1 Personally Identifiable Information
When you create an account, we collect your name and email address through our authentication provider (Clerk). We use this information to identify your account, manage your subscription, and communicate with you about the Service.
1.2 LinkedIn Profile Data (Website Content)
When you initiate an analysis on a LinkedIn profile, the extension reads publicly visible content from the profile page you are viewing. This includes the profile holder's name, headline, location, work experience, education, skills, endorsements, recommendations, posts, and comments. This data is sent to our servers solely for the purpose of generating AI-powered psychographic analysis. We do not collect profile data passively — extraction only occurs when you explicitly request an analysis.
1.3 User Activity
We collect anonymised usage analytics to improve the Service, including which features you use, analysis requests you initiate, and general interaction patterns within the extension and web dashboard. We use PostHog for analytics, which may record session replays on the web dashboard (with all form inputs masked). We do not log keystrokes, and we do not monitor your browsing activity outside of direct interactions with the ReadTheRoom extension and dashboard.
1.4 Authentication Information
Authentication is handled by Clerk, a third-party authentication provider. We do not store your password. Clerk manages session tokens and credentials on our behalf. We store only the session token necessary to authenticate your API requests.
1.5 Payment Information
Payment processing is handled entirely by Stripe through Clerk Billing. We do not collect, store, or have access to your credit card numbers, bank account details, or other financial payment information. We only receive confirmation of your subscription status and tier.
2. How We Use Your Information
We use the information we collect exclusively for the following purposes:
- To provide and operate the Service — generating psychographic analyses from LinkedIn profile data
- To authenticate your identity and manage your account
- To process your subscription and track credit usage
- To send you notifications about completed analyses and account activity
- To improve the Service through aggregated, anonymised usage analytics
- To provide customer support
3. Data Sharing and Transfers
We certify that:
- ✓ We do not sell or transfer user data to third parties, outside of approved use cases described below.
- ✓ We do not use or transfer user data for purposes that are unrelated to the Service's single purpose of LinkedIn profile analysis.
- ✓ We do not use or transfer user data to determine creditworthiness or for lending purposes.
We share data only with the following service providers, strictly to operate the Service:
- OpenAI / Anthropic — LinkedIn profile text is sent to AI providers to generate psychographic analysis. No personally identifiable information about you (the user) is included in these requests.
- Convex — Cloud database provider that stores profile snapshots and analysis results.
- Clerk — Authentication provider that manages user sign-in and session tokens.
- Stripe (via Clerk Billing) — Payment processor for subscription billing. We never receive or store your payment card details.
- PostHog — Product analytics provider for anonymised usage tracking and session replay.
- Vercel — Cloud hosting provider for our web application.
We do not sell, rent, or trade your personal information to any third party for marketing, advertising, or any other purpose.
4. Data Storage and Retention
Profile analysis data is stored with a time-to-live (TTL) policy. Analysis snapshots for free-tier users expire after one month, and Max-tier snapshots expire after one week. Expired data is automatically purged.
Your account information is retained for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law.
All data is transmitted over HTTPS and stored on servers located in the United States.
5. Data Collected by the Browser Extension
The ReadTheRoom browser extension collects the following categories of data:
| Data Category | What We Collect | Purpose |
|---|---|---|
| Personally Identifiable Information | Name and email address (via Clerk authentication) | Account management and authentication |
| Website Content | Publicly visible LinkedIn profile data (name, headline, experience, education, skills, posts, comments) | AI-powered psychographic analysis |
| User Activity | Feature usage, analysis requests, interaction patterns within the extension | Product improvement and analytics |
The extension does not collect health information, financial or payment information, personal communications, location data, or web browsing history. The extension only activates on linkedin.com pages and does not monitor any other websites.
6. Remote Code
The ReadTheRoom browser extension does not load or execute any remotely hosted code. All JavaScript is bundled at build time and included in the extension package. All communication with our servers is data-only (JSON API requests and responses).
7. Cookies and Local Storage
We use cookies and browser local storage for the following purposes:
- Authentication — Session cookies from Clerk to keep you signed in.
- Preferences — Local storage to remember your notification preferences and extension settings.
- Analytics — PostHog uses local storage to maintain an anonymous session identifier for usage analytics.
We do not use cookies for advertising or cross-site tracking.
8. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Withdraw consent for data processing
- Export your data in a portable format
- Opt out of analytics tracking
To exercise any of these rights, please contact us at privacy@readtheroom.me.
9. Children's Privacy
The Service is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.
11. Contact Us
If you have questions or concerns about this Privacy Policy, please contact us at: