Start Free Trial

Privacy Policy

Last updated: March 1, 2026

Bespoke Analytics (“we”, “our”, or “us”), operated by Sterling Consulting Services, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at bespoke-analytics.com.

Please read this policy carefully. If you disagree with its terms, please discontinue use of the platform. Questions? Email sterlingconsultingservices@hotmail.com.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and a hashed password. If you sign in via Google, we receive your name and email from Google's OAuth service.

Business & Data Source Information

To provide our analytics service, we store metadata about your connected data sources (e.g., Google Sheets spreadsheet IDs, database connection strings). We access your business data solely to answer the queries you submit — we do not store, sell, or analyze your business data for any other purpose.

Query Data

We store the questions you ask and the AI-generated answers so you can revisit past insights in your dashboard. This query history is private to your account.

Usage & Analytics

We collect standard web analytics data (pages visited, features used, session duration) to improve the product. This data is aggregated and never sold to third parties.

Payment Information

Payments are processed by Stripe. We never see or store your full credit card number. Stripe's privacy policy governs their handling of payment data.

2. How We Use Your Information

  • To provide the service — answering your data queries and generating visual insights
  • To manage your account — authentication, billing, and workspace management
  • To send product updates — feature announcements, digest reports you configure, and transactional emails
  • To improve the product — understanding which features are most valuable and where users encounter friction
  • To comply with legal obligations — when required by applicable law

We do not use your data to train AI models. We do not sell your data to third parties.

3. Data Sharing & Third Parties

We share data with the following trusted service providers, solely to operate the platform:

  • Anthropic — AI queries are processed via their API. Data is subject to Anthropic's data usage policies.
  • Firebase / Google — Authentication and session management.
  • Railway / PostgreSQL — Database hosting for your account data.
  • Vercel — Application hosting and edge delivery.
  • Stripe — Payment processing.
  • Resend — Transactional email delivery.

All providers are contractually obligated to protect your data and may not use it for their own purposes.

4. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days. Anonymized, aggregated usage statistics may be retained indefinitely.

5. Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest, and strict access controls. For full details, see our Security page.

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (“right to be forgotten”)
  • Data portability — receive your data in a machine-readable format
  • Object to or restrict certain processing
  • Withdraw consent at any time (where processing is consent-based)

To exercise any of these rights, email sterlingconsultingservices@hotmail.com. We will respond within 30 days.

7. Cookies

We use essential cookies for authentication (session tokens) and preferences (e.g., theme). We do not use tracking or advertising cookies. You can disable cookies in your browser, though this will prevent you from staying logged in.

8. Children's Privacy

Bespoke Analytics is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

9. International Transfers

Your data may be processed in the United States and other countries where our service providers operate. For users in the EU/EEA, see our GDPR page for details on how we handle international data transfers.

10. Changes to This Policy

We may update this policy periodically. When we do, we'll update the “Last updated” date and notify you by email if the changes are material. Continued use of the platform after changes constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or to exercise your rights, contact us at: sterlingconsultingservices@hotmail.com

Sterling Consulting Services — Operated remotely, United States.