Privacy policy.

IntakeKit stores intake submissions (name, email, phone, case description, custom fields) that prospects of your firm submit to your hosted form. We also store your workspace settings (firm name, integrations, classification prompt).

Submissions are passed to Anthropic Claude for classification (descriptions are PII-redacted before transmission — emails, phones, SSNs, and card numbers are stripped). Qualified submissions trigger email via Resend, a webhook POST to your configured CRM, and a ping to your configured Slack webhook.

Supabase (database hosting), Vercel (application hosting), Anthropic (classification), Resend (transactional email), Stripe (billing), Cal.com (booking), Cloudflare (DNS + bot protection).

Intakes are auto-deleted after the retention period configured in your workspace settings (default 90 days). On account deletion, all associated workspace data is removed within 30 days.

To request a copy, export, or deletion of data you control, email privacy@intakekit.com. We respond within 30 days.

We do not run Google Analytics, Meta Pixel, Hotjar, or similar on intake forms or in-app pages.

IntakeKit is not configured for HIPAA-covered data. Do not use it to intake protected health information unless we have signed a BAA — we currently do not offer one.