๐ŸŒฒSherwood

Privacy Policy

Last updated: 2026-05-22

This Privacy Policy explains what we collect, why, and what choices you have. Sherwood is operated by a UK-based sole proprietor. For privacy questions, email hello@sherwood.camp.

What we collect

  • Account info: your email address and name from Clerk (our auth provider).
  • Your business data: clients, invoices, proposals, expenses, settings, uploaded files, typed signatures, and other records you create in Sherwood.
  • Client and recipient data: names, emails, business details, proposal responses, signatures, payment status, and similar information you add or collect through public invoice and proposal links.
  • Payment info: Stripe handles all payment processing. We never see card numbers. We only see Stripe's customer ID and a record of successful/failed payments.
  • AI usage: when you use an AI feature we process the content needed to answer your request, plus which feature, model, and token count were used. We use this to provide the feature, debug failures, and apply fair-use limits.
  • Server logs: standard request logs (IP address, user agent, status codes) kept for 30 days for debugging and abuse prevention.

What we don't do

  • We don't sell your data. Ever.
  • We don't share it with third-party advertisers.
  • We don't use your invoices, proposals, or AI conversations to train AI models. The AI provider (Anthropic) has the same commitment under their API terms.
  • We don't track you across the web. No third-party ad pixels.

How we use your data

To run the Service: render your dashboard, send the invoices and reminders you ask us to send, process payments, run AI requests on your behalf, send you transactional emails (welcome, reminders, lifecycle).

Legal basis for EU / UK users

  • Contract: to provide the Service, authenticate you, store your records, send documents, and process plan billing.
  • Legitimate interests: to prevent abuse, secure the Service, debug errors, improve reliability, and understand aggregate usage.
  • Legal obligation: to keep payment, tax, accounting, and compliance records where the law requires it.
  • Consent: where we ask for optional choices that require consent, such as non-essential cookies if we add them later.

Subprocessors

The companies we share data with, only as needed to run Sherwood:

  • Vercel - application hosting (US + EU regions)
  • Neon - Postgres database hosting (EU region)
  • Clerk - authentication (US)
  • Stripe - payments (US + global)
  • Cloudflare R2 - file storage for receipts and logos
  • Resend - transactional email delivery
  • Anthropic - AI model provider (only when you use an AI feature)

Where your data lives

Primary database and file storage are in the EU. Some subprocessors (Clerk, Stripe, Anthropic) operate from the US under standard contractual clauses for international transfers.

Your rights

If you're in the EU, UK, or California, you have the right to:

  • Access the data we hold about you
  • Correct it
  • Export it (CSV from Settings, any time)
  • Delete your account and all associated data (Settings โ†’ Danger Zone)
  • Object to processing or restrict it
  • Complain to your local data protection authority

For requests we can't action through the app, email hello@sherwood.campand we'll respond within 30 days.

Retention

Active accounts: we keep your data as long as your account is open.

Deleted accounts: removed from the production database within 30 days. Backups may retain a copy for up to 90 days, after which they are overwritten on a rolling basis.

Server logs: 30 days. Payment records: kept indefinitely for tax / accounting reasons as required by law.

Client-facing invoices, proposals, and signatures are retained with your account records unless you delete them or delete your account, subject to backup and legal-record retention.

Cookies

We use essential cookies only - for authentication (Clerk) and payments (Stripe). We don't set tracking cookies. We don't run third-party analytics by default.

Children

Sherwood isn't for anyone under 18. We don't knowingly collect data from minors.

Security

TLS everywhere. Passwords are hashed (handled by Clerk). Database backups are encrypted at rest. We can't promise perfect security - no online service can - but we follow standard practice and patch quickly.

Changes

We'll email you 14 days before any material change. The "last updated" date at the top of this page always reflects the latest revision.

Contact

For any privacy question, email hello@sherwood.camp.