Privacy Policy
Effective April 2, 2026
1. Introduction
SingleForm, Inc. (“SingleForm,” “we,” “us,” or “our”) is a Delaware C Corporation that operates an AI-powered form platform built on a zero-storage delivery architecture.
This Privacy Policy explains how we collect, use, share, and protect information when you use our services, including the web dashboard, mobile app, embed script, and related APIs.
By using any SingleForm service, you agree to the collection and use of information as described here.
2. Information We Collect
Our architecture is designed to minimize the data we hold. Different parts of the platform handle data in fundamentally different ways.
2a. Account Data (Web Dashboard)
When you create a SingleForm account, we collect:
- Email address, first and last name
- Business name
- Phone number (optional)
- Subscription tier and billing status
- Form configurations, webhook URLs, uploaded logos
Stored in PostgreSQL via Supabase. Standard SaaS account data necessary to operate the service.
2b. Mobile App Data
- No accounts are required.
- No data is synced to the cloud.
- No analytics or tracking is performed.
- Data is protected by device encryption, OS secure storage (Keychain/Android Keystore), and biometric auth.
SingleForm cannot access, recover, or restore mobile app data. If you delete the app or lose your device, that data is permanently gone.
2c. Submission Data (Zero-Storage)
Submissions are transmitted from the user's device to the business's webhook endpoint. SingleForm acts as an encrypted delivery pipe. Content is discarded immediately after delivery. There is no database table, log file, or storage bucket where submission content resides.
2d. Delivery Metadata
For each submission, we retain limited delivery metadata for reliability and abuse prevention:
| Timestamp | When the submission occurred |
| Delivery status | Success or failure |
| HTTP status code | Response from the webhook |
| Response time | Milliseconds |
| IP address | Of the submitting device |
| User agent | Browser/device information |
| Device identifier | For mobile submissions |
IP addresses and user agents may constitute personal data under GDPR. Lawful basis: legitimate interest in security and service reliability. Target retention: 90 days.
2e. AI Processing Data
When you use AI features, we send to our AI provider:
- Business context prompts for form generation
- Template system prompts
- Anonymized field metadata for field resolution (types and labels, not values)
AI processing data does not include end-user personal data, submission content, or mobile app stored values. It is transient and not retained after the response is generated.
2f. Nonce and Relay Data
- Submission nonces: Unique tokens for replay attack prevention. No personal data. Auto-purged after expiration.
- Encrypted ephemeral relay: End-to-end encrypted blobs between mobile app and embed script. Deleted on first read, 5-minute max TTL. SingleForm cannot decrypt relay content.
3. How We Use Your Information
- Service operation — providing, maintaining, and improving the platform
- Submission delivery — transmitting form submissions to configured webhook endpoints
- AI form generation — creating and customizing forms based on your business context
- AI field resolution — matching form fields to autofill data using anonymized metadata only
- System reliability — monitoring delivery success rates, diagnosing failures, maintaining uptime
- Abuse prevention — detecting and preventing spam, replay attacks, and unauthorized use
- Billing — processing subscription payments and managing account tiers
5. Subprocessors
| Provider | Purpose | Data Processed |
|---|---|---|
| Anthropic | AI form generation & field resolution | Business prompts, anonymized field metadata. No submission content. Does not train on API data. |
| Supabase | Database, auth, file storage | Account data, form configurations. No submission content. |
| Railway | Application hosting | Application traffic (submissions transit but are not stored). |
| Vercel | Marketing site hosting | Standard web traffic. |
| Stripe | Payment processing | Billing information provided during checkout. |
6. Data Retention
| Data Type | Retention |
|---|---|
| Submission content | Not retained — discarded immediately after delivery |
| AI processing data | Not retained after request completion |
| Account data | Duration of account. Deleted on termination. |
| Delivery metadata | 90 days (target) |
| Submission nonces | Auto-purged after expiration |
| Encrypted relay data | Deleted on first read, or 5 minutes max |
7. Your Rights and Choices
General
- Account deletion: Through the dashboard or by contacting privacy@singleform.ai.
- Mobile app data: Delete the app to remove all locally stored data. No server-side action needed.
- AI opt-out: Don't use AI features and no data is sent to AI providers.
- Access & correction: Contact privacy@singleform.ai.
- Data portability: Export form configurations through the dashboard.
GDPR Rights (EU/EEA)
- Access — request a copy of your data
- Rectification — request correction of inaccurate data
- Erasure — request deletion
- Restriction — request restricted processing
- Portability — receive data in a structured format
- Objection — object to legitimate-interest processing
Contact privacy@singleform.ai. We respond within 30 days.
CCPA Rights (California)
- Right to know — what personal information we collect and share
- Right to delete — request deletion of your information
- Right to opt-out of sale — we do not sell personal information
- Non-discrimination — we will not discriminate for exercising your rights
9. International Data Transfers
SingleForm infrastructure is hosted in the United States. AI processing data is sent to Anthropic, also US-based.
For EU/EEA users, transfers are protected by Standard Contractual Clauses or other legally recognized mechanisms where applicable.
This Privacy Policy is published in English. In the event of conflict between the English version and any translation, the English version governs.
10. Children's Privacy
SingleForm is not directed at children under 16. We do not knowingly collect personal information from children. The mobile app has no account system or age verification.
If you believe a child has provided us with personal data, contact privacy@singleform.ai.
11. Security
- TLS encryption for all data in transit
- HMAC-SHA256 webhook signatures for delivery authenticity
- End-to-end encrypted ephemeral relay with delete-on-read
- Secure, HttpOnly, SameSite authentication cookies
- Biometric auth and device-level encryption for mobile data
- Row-level security on database tables
- Regular security reviews
No system is perfectly secure. The strongest protection we offer is architectural: we do not store what we do not need.
12. Data Processing Roles
- Businesses using SingleForm are Data Controllers — they determine the purpose and means of processing submission data received through webhooks.
- SingleForm (submissions) is a limited Data Processor — transient processing only. Data passes through but is not stored.
- SingleForm (AI processing) is a limited Data Processor — processes anonymized field metadata only.
- SingleForm (account data) is the Data Controller — collects and manages account information for service operation.
A Data Processing Agreement (DPA) is available upon request. Contact legal@singleform.ai.
13. Changes to This Policy
We may update this policy. For material changes, we provide at least 30 days' notice by email and on this page. The effective date at the top indicates the current version.
14. Contact
For privacy inquiries, contact privacy@singleform.ai. For legal inquiries, contact legal@singleform.ai.
SingleForm, Inc. — A Delaware C Corporation