procure.blogProcureIndexBack to login

Privacy Policy

Last updated: April 19, 2026

1. Who We Are

ProcureIndex is a free procurement price intelligence platform operated by procure.blog. This policy explains how we collect, use, and protect your information when you use our website at index.procure.blog.

2. Information We Collect

We collect the following types of information:

  • Account information: When you sign in with Google, we receive your name, email address, and profile picture from your Google account.
  • Subscription & payment data: If you upgrade to Pro, we receive your subscription status and Lemon Squeezy customer ID. Payment card details are handled directly by Lemon Squeezy and never touch our servers.
  • Content you submit to AI features: When you upload a contract for should-cost analysis, describe a product for synthetic BOM, request a market brief, or use natural-language search, the text you submit is sent to Anthropic (Claude Haiku) for processing. We log usage counts for rate-limiting but do not store the full content of contracts you upload.
  • Usage data: We collect anonymized analytics data about how you interact with ProcureIndex, including pages visited, features used, and session duration. We use PostHog for analytics.
  • Locally stored data: Some features (watchlists, saved cost models, price alerts) store data in your browser's local storage. This data stays on your device and is not sent to our servers.

3. How We Use Your Information

  • To provide and maintain the ProcureIndex service
  • To authenticate your access to the platform
  • To send you our weekly procurement intelligence newsletter (you can unsubscribe at any time)
  • To improve the platform based on aggregated, anonymized usage patterns
  • To enforce rate limits on AI-powered features (market briefs)

4. Data Sharing

We do not sell your personal information. We share data only with:

  • Supabase: Our database and authentication provider (stores your account info)
  • Vercel: Our hosting provider
  • PostHog: Analytics (anonymized usage data)
  • Google: Authentication via Google OAuth
  • Lemon Squeezy: Payment processing for Pro subscriptions (handles card details on our behalf)
  • Anthropic: AI processing (Claude Haiku) for contract analysis, synthetic BOM, market briefs, and natural-language search
  • Beehiiv: Newsletter delivery for procure.blog updates (only if you opt in at signup)

5. Data Retention

We retain your account information for as long as your account is active. When you request account deletion, your access ends immediately and your data is hard-deleted after a 30-day grace period (allowing recovery in case of accidental deletion). Analytics data is retained in anonymized form indefinitely. Cancelling your Pro subscription does not delete your account.

6. Cookies and Local Storage

We use essential cookies for authentication and session management. We use local storage for user preferences such as watchlists, saved models, and alert configurations. PostHog may set analytics cookies to understand usage patterns.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Unsubscribe from our newsletter at any time
  • Clear locally stored data through your browser settings

8. Data Security

We use industry-standard security measures including HTTPS encryption, secure authentication via OAuth 2.0, and access controls on our database. However, no method of transmission over the Internet is 100% secure.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a new "Last updated" date.

10. Contact

For questions about this privacy policy or to exercise your data rights, please contact us through procure.blog.

Terms of ServiceBack to ProcureIndex