Your contract is yours.
We make sure it stays that way.
Contracts contain salaries, equity terms, NDA scope, business secrets, and personal details. You should never have to wonder where that information ends up. Here’s exactly what we do — and don’t do — with what you upload.
Encrypted in transit
Every upload uses HTTPS / TLS 1.3. Your file never travels over an unencrypted channel.
Contract text wiped after analysis
The moment your report is generated, we delete the source contract text from our storage. Only the analysis remains, and that expires within 24 hours.
Never used to train AI
Your contract is processed by Anthropic's Claude API, which excludes API traffic from training by default. We do not train any model on your data.
No human review
No employee opens, reviews, or audits your uploaded contract. There is no internal moderation queue and no debug log that captures contract text.
Original PDF is not stored
We extract the text in memory and only persist that text long enough to run the analysis. The original PDF binary is never written to disk.
No third-party sharing
Beyond the AI processor (Anthropic), your contract is not shared with anyone — not advertisers, not analytics vendors, no one.
The full lifecycle of your upload
From the moment you click “Scan my contract” to the moment everything is gone:
0s — Upload
Your PDF leaves your browser over HTTPS (TLS 1.3) and arrives at our server in memory.
0s–5s — Parse
We extract the text from the PDF in memory. The original binary file is never written to disk.
5s — Temporary storage
The extracted text is stored in encrypted Redis (Upstash) keyed by a random ID, so we can run the analysis after you pay.
~30–60s — Analysis
After payment, the text is sent over TLS to Anthropic's Claude API, which generates the report. Anthropic does not train on API traffic.
Within seconds of analysis — Wipe
The original contract text is deleted from our storage. Only the analysis result remains.
Within 24 hours — Full deletion
The analysis result is auto-deleted. Nothing about your contract remains in our systems.
Sub-processors
We’re transparent about every third party that touches your data:
- • Vercel — hosting and serverless compute (US region).
- • Anthropic — the Claude API that generates your report. API traffic is not used for training.
- • Upstash — encrypted Redis storage for the short-lived contract text and analysis result.
- • Stripe — payment processing. We never see your card number.
What we don’t do
- ✗ We don’t train AI models on your contracts.
- ✗ We don’t share your contract with advertisers, analytics vendors, or anyone other than the AI processor.
- ✗ We don’t require you to create an account or hand over your real name.
- ✗ We don’t set tracking cookies.
- ✗ We don’t keep your contract around “just in case” — it’s gone within seconds of analysis.
Frequently asked
Is it safe to upload my contract to Decode Plainly?
Yes. Your PDF is uploaded over an encrypted (TLS) connection, parsed in memory, and the extracted text is wiped within seconds of analysis completing. We never store the original PDF binary, no human reviews your file, and your contract is never used to train any AI model.
How long do you keep my contract?
The contract text is wiped within seconds of the analysis completing — only your report remains. The report itself is auto-deleted within 24 hours. If you want to keep your report, save the page or print it to PDF before it expires.
Will my contract be used to train an AI model?
No. We send your contract text to Anthropic's Claude API, which by policy does not use API traffic for model training. We do not train any model of our own on your data, and we do not share your contract with any third party other than the AI processor.
Does anyone at Decode Plainly read my contract?
No. There is no internal review queue, no support agent who opens uploaded files, and no debugging logs that capture the contract text. The only systems that touch your contract are the upload parser and the AI model.
What happens if there's a problem with my analysis?
If the analysis fails or you want a refund, email hello@contractplainly.com with your Stripe receipt. Because we don't keep your contract text, you may need to re-upload the PDF if you want a fresh attempt.
Have a question we didn’t answer?
Email us — we’ll reply personally.
hello@contractplainly.comFor the legal version with retention windows and your data rights, see our Privacy Policy.