Privacy Policy

Effective date: March 11, 2026

GovRadar ("we", "our", or "us") operates govradar.space. This Privacy Policy explains how we collect, use, and protect your information when you use our service.

1. Information We Collect

Information you provide

• Account information: name, email address, and password when you register.
• Company profile: company name, NAICS codes, certifications, capabilities narrative, past performance entries, and key personnel you enter into your profile.
• SAM.gov API key: stored encrypted at rest using AES-256-GCM. We never store it in plaintext.
• Payment information: billing is handled entirely by Stripe. We do not store card numbers or payment details on our servers.
• Watch profiles: the search criteria you configure to find opportunities.

Information collected automatically

• Log data including IP address, browser type, and pages visited.
• Session data stored in our database to keep you signed in.

2. How We Use Your Information

• To provide the service: fetch SAM.gov opportunities on your behalf, score them against your profile, and generate AI briefs.
• To send you email digests and deadline reminders you have opted into.
• To process payments and manage your subscription via Stripe.
• To improve the platform and diagnose technical issues.
• To communicate important updates about the service.

3. How We Share Your Information

We do not sell your personal information. We share data only with the following service providers:

• MongoDB Atlas — database hosting.
• Anthropic — AI brief generation. Your company profile and opportunity descriptions are sent to the Anthropic API to generate briefs. See Anthropic's privacy policy for how they handle API data.
• SAM.gov (GSA) — we query the SAM.gov API using your API key to retrieve federal contract opportunities.
• Stripe — payment processing and subscription management.
• Resend — transactional email delivery.
• Vercel — application hosting and infrastructure.

We may disclose information if required by law or to protect the rights and safety of GovRadar and its users.

4. Data Retention

• Opportunity and brief data is retained according to your plan (30 days, 90 days, or 1 year).
• System logs are automatically deleted after 90 days.
• If you delete your account, your personal data and company profile are deleted within 30 days.

5. Security

We use industry-standard security practices including HTTPS, AES-256-GCM encryption for sensitive credentials, and bcrypt password hashing. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

6. Your Rights

You may at any time:

• Access, update, or delete your company profile and account from within the application.
• Export your data by contacting us.
• Delete your account by contacting us at the address below.
• Opt out of email digests in Settings.

7. Cookies

We use a single session cookie to keep you signed in. We do not use tracking cookies or advertising cookies.

8. Children's Privacy

GovRadar is intended for business use and is not directed at children under 13. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or by posting a notice in the application. Continued use after changes constitutes acceptance.

10. Contact

Questions about this policy? Email us at privacy@govradar.space.