Privacy Policy
Last updated: April 2026
1. Data Controller
CLARIQ is operated by David Anthony Consulting & Coaching (DACC). For privacy inquiries, contact: privacy@getclariq.com.
2. Data We Collect
We collect: your name (entered before the test), your email (via Stripe payment), your assessment answers and scores, your elapsed test time, and your payment transaction ID. We do not collect passwords, location data, or device identifiers.
3. Purpose of Processing
Your data is processed solely to: deliver your diagnostic assessment and personalised report, process your payment via Stripe, enforce the 30-day retake policy, and improve the quality of our assessment platform.
4. Legal Basis
We process your data based on: contractual necessity (delivering the service you paid for), and legitimate interest (platform improvement and fraud prevention).
5. Data Sharing
We share data only with: Stripe (payment processing, governed by Stripe's privacy policy), and our hosting provider (Google Cloud, EU region europe-west1). We never sell your data to third parties.
6. Data Retention
Assessment data is retained for 24 months after completion. Payment records are retained as required by tax law (7 years). You may request earlier deletion (see Section 8).
7. Cookies
We use only functional cookies: a cookie consent preference (localStorage), and a session identifier for the assessment flow. We do not use tracking cookies, analytics cookies, or advertising cookies.
8. Your Rights (GDPR)
Under GDPR, you have the right to: access your data, rectify inaccurate data, erase your data ('right to be forgotten'), export your data in machine-readable format, restrict processing, and object to processing. To exercise any right, email privacy@getclariq.com with your name and the email used during payment.
9. Data Security
All data is transmitted over HTTPS/TLS. Database access is restricted by role-based permissions. Payment data is handled entirely by Stripe (PCI DSS compliant). We implement security headers (HSTS, CSP, X-Frame-Options) on all pages.
10. International Transfers
Your data is stored in the EU (Google Cloud europe-west1). Stripe may process payment data in the US under Standard Contractual Clauses.
11. Changes to This Policy
We will notify users of material changes via the email address provided during payment. Continued use of the service after notification constitutes acceptance of the updated policy.