Privacy Policy

Autograph is an AI-native market research platform. We help teams design studies, specify audiences, generate questionnaires, and surface insights — all in one place.

If you have questions about this policy, contact us at hi@autograph.team.

When you create an account or use Autograph, we collect:

• Account information — your name, work email, and company name.
• Research data — study objectives, audience specifications, questionnaire content, and uploaded assets you create or provide.
• Usage data — pages visited, features used, and interactions with the platform.
• Authentication data — if you sign in with a third-party provider, we receive your name, email, and profile picture from that provider.

We do not collect payment card details directly — payments are processed by our payment provider and we receive only a confirmation.

• To provide and operate the Autograph platform.
• To power AI features — your research inputs are processed by AI models to generate recommendations, questionnaires, and insights.
• To generate study tile images using your study description as a prompt.
• To send transactional emails — account confirmation, password resets, and study status updates.
• To improve the platform based on aggregated, anonymised usage patterns.

We use trusted third-party services for infrastructure, authentication, hosting, analytics, and AI processing. These providers may process your data solely to deliver the services we use. We work only with providers that maintain appropriate data protection standards.

We retain your account data and research studies for as long as your account is active. If you delete your account, your personal data and studies are permanently deleted within 30 days. Backups may retain data for up to 90 days following deletion.

You have the right to:

• Access your personal data.
• Correct inaccurate information via Settings.
• Delete your account and associated data.
• Export your research data — contact us and we'll provide a copy.
• Opt out of non-essential analytics by using a browser with tracking protection.

To exercise any of these rights, email hi@autograph.team.

We use a single authentication cookie to keep you signed in. We do not use advertising or tracking cookies. Our analytics use anonymised, cookieless measurement that does not identify individual users.

All data is encrypted in transit (TLS) and at rest. Passwords are never stored in plain text — authentication is handled securely by our auth provider. We support two-factor authentication for added account security.

If we make material changes we'll update the effective date above and, where appropriate, notify you by email. Continued use of Autograph after changes take effect constitutes acceptance of the updated policy.