Privacy Policy
Last updated: April 9, 2026
This Privacy Policy describes how Interconnected Software, Inc. ("Company," "we," "us," or "our") collects, uses, and shares information in connection with the FaxChat service at faxchat.app ("the Service"). By using the Service, you agree to the collection and use of information as described in this policy.
1. Information We Collect
1.1 Pay-Per-Use Customers (No Account Required)
- Recipient fax number
- Uploaded PDF files
- Email address (if optionally provided for delivery confirmation)
- IP address
- Browser type and operating system
- Date and time of access
1.2 Pro Plan Subscribers (Account Required)
In addition to the information listed above:
- Account credentials (email, Firebase authentication identifiers)
- Dedicated fax number assigned to your account
- Received fax documents
- Subscription and billing history
1.3 Payment Information
Payments are processed by Stripe. We do not store your credit card number. Stripe collects card details, billing address, email, and IP address in accordance with their Privacy Policy.
1.4 Automatically Collected Information
- Anonymized usage statistics via Google Analytics (GA4)
- Anonymized session recordings, heatmaps, and UX diagnostics via Microsoft Clarity (content and form input fields are masked by default)
- Error and performance data via Sentry
- Network-level data processed by Cloudflare (CDN and security)
2. How We Use Your Information
- To send and receive faxes on your behalf
- To process payments and manage subscriptions
- To send transactional emails (delivery confirmations, receipts)
- To detect and prevent fraud, abuse, or violations of our Terms of Service
- To comply with legal obligations and respond to lawful requests
- To analyze and improve the Service
- To provide customer support
3. Data Sharing and Third-Party Services
We do not sell your personal information. We share data with third parties only as necessary to operate the Service or as required by law.
| Provider | Purpose | Data Shared |
|---|---|---|
| Fax transmission provider | Sending and receiving faxes | Fax number, PDF content |
| Stripe | Payment processing | Payment details, email, IP |
| Firebase (Google) | Authentication and database | Account credentials, fax metadata |
| Google Analytics (GA4) | Anonymized usage analytics | Anonymized browsing data |
| Microsoft Clarity | Session replay and UX diagnostics | Masked session recordings, click and scroll heatmaps |
| Cloudflare | CDN and security | Network-level request data |
| Sentry | Error monitoring | Error reports, device info |
| Gmail SMTP | Transactional email delivery | Email address, message content |
We may also disclose your information if required by law, subpoena, court order, or other valid legal process, or to protect the rights, property, or safety of our users or the public.
4. Data Retention
- Uploaded PDF files: deleted within 24 hours after transmission
- Received fax documents (Pro plan): retained while your account is active; deleted within 30 days of account closure
- Transmission logs (IP address, fax number, timestamp): retained for up to 1 year
- Payment records: retained as required by applicable tax and financial regulations (managed by Stripe)
- Account data: retained while your account is active; deleted upon request or within 30 days of account closure
5. Data Security
We implement industry-standard security measures to protect your data, including encryption in transit (TLS/HTTPS), access controls, and secure infrastructure. However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
6. International Data Transfers
The Service is operated from the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States. By using the Service, you consent to this transfer. We rely on Standard Contractual Clauses and other lawful transfer mechanisms where required.
7. Your Rights Under GDPR (EU/EEA Residents)
If you are located in the European Union or European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):
- Access: Request a copy of the personal data we hold about you
- Rectification: Request correction of inaccurate data
- Erasure: Request deletion of your personal data ("right to be forgotten")
- Restriction: Request restriction of processing
- Portability: Receive your data in a portable format
- Objection: Object to processing based on legitimate interests
Legal basis for processing: We process your data based on (a) contractual necessity (to provide the Service), (b) legitimate interests (fraud prevention, service improvement), and (c) your consent (analytics cookies). To exercise your rights, contact us at [email protected]. We will respond within 30 days.
8. Your Rights Under CCPA (California Residents)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with the following rights:
- Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: We do not sell personal information. No opt-out is necessary
- Non-Discrimination: We will not discriminate against you for exercising your CCPA rights
To exercise your rights, contact us at [email protected]. We will verify your identity before processing your request and respond within 45 days.
9. Cookies and Tracking Technologies
We use the following cookies and tracking technologies:
- Essential cookies: Required for the Service to function (authentication, session management)
- Analytics cookies: Google Analytics (GA4) uses cookies to collect anonymized usage data. You can opt out by installing the Google Analytics Opt-out Browser Add-on
- Session replay: Microsoft Clarity records anonymized user sessions (mouse movements, clicks, scrolls) with content and form input fields masked by default, to help us diagnose UX issues. See Clarity Terms and Microsoft Privacy Statement.
- Sentry: Collects error and performance data to help us improve reliability
You can control cookies through your browser settings. Disabling essential cookies may impair functionality.
10. Children's Privacy
The Service is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will promptly delete it. If you believe a child under 13 has provided us with personal information, please contact us at [email protected].
11. HIPAA Disclaimer
FaxChat is not compliant with the Health Insurance Portability and Accountability Act (HIPAA). We do not provide Business Associate Agreements (BAAs). You must not use FaxChat to transmit, store, or process protected health information (PHI). If you are a healthcare provider or handle PHI, you must use a HIPAA-compliant fax service. We disclaim all liability for any PHI transmitted through the Service.
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy. We encourage you to review this page periodically.
13. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:
Interconnected Software, Inc.
131 Continental Dr, Suite 305, Newark, DE 19713, United States
Email: [email protected]