Privacy Policy

Last Updated: January 31, 2026

Introduction

Direct Sight ("we", "our", or "us") operates the Direct Sight service, including our website and Chrome extension (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

Information We Collect

Information You Provide

  • Account Information: Name, email address, company name, and password
  • Payment Information: Processed by Stripe; we do not store complete credit card details
  • Profile Information: User preferences and settings

Information Collected Automatically

  • Usage Data: Session recordings, screen sharing sessions, timestamps, and interaction data
  • Technical Data: IP address, browser type, device information, and operating system
  • Cookies: Session cookies and authentication tokens

Information from Third Parties

  • CRM Data: Contact information and case details from integrated CRM systems (HubSpot, Salesforce, Zendesk)
  • OAuth Data: When you sign in with Google, we receive your name, email address, and profile picture

How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process transactions and send related information
  • Enable screen sharing and session recording functionality
  • Integrate with your CRM systems
  • Send administrative and support messages
  • Respond to inquiries and provide customer support
  • Monitor and analyze usage patterns
  • Detect and prevent fraud or abuse

Data Sharing and Disclosure

We Share Data With:

  • Service Providers: LiveKit (video infrastructure), Stripe (payments), Vercel (hosting), Supabase (database)
  • CRM Systems: Data is synced with connected CRM platforms as configured by you
  • Legal Requirements: When required by law or to protect our rights

We Do Not:

  • Sell your personal information
  • Share your data for third-party marketing purposes
  • Use screen sharing recordings for purposes other than providing the Service

Data Storage and Security

  • Location: Data is stored on servers located in the United States and EU
  • Security: We use industry-standard encryption (TLS/SSL) for data in transit and at rest
  • Retention: Session recordings are retained for 90 days unless deleted earlier; account data is retained while your account is active

Your Rights and Choices

You have the right to:

  • Access, update, or delete your personal information
  • Export your data
  • Opt out of marketing communications
  • Disable cookies (may limit functionality)
  • Request deletion of your account and associated data

To exercise these rights, contact us at privacy@directsight.io

Google OAuth Integration

When you sign in with Google:

  • We request access to your basic profile information (name, email, profile picture)
  • We use this information solely for authentication and account creation
  • We do not access your Google Drive, Gmail, or other Google services
  • You can revoke access at any time through your Google Account settings

Chrome Extension

Our Chrome extension:

  • Only activates when you initiate a screen sharing session
  • Requires explicit user permission for each screen share
  • Does not collect browsing history
  • Does not access data from other websites without permission
  • Complies with Chrome Web Store policies

CRM Integration

When you connect Direct Sight to your CRM:

  • We access contact information and support case data necessary to provide the Service
  • Session recordings and notes are logged to your CRM timeline
  • You control which data is synchronized
  • You can disconnect the integration at any time

Children's Privacy

Our Service is not directed to individuals under 18. We do not knowingly collect personal information from children.

International Data Transfers

If you access the Service from outside the United States, your information may be transferred to and processed in the United States where our servers are located.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through the Service. Continued use after changes constitutes acceptance.

California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt out of sale (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

EU Data Protection Rights (GDPR)

EU residents have the right to:

  • Access, rectification, and erasure of personal data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent
  • Lodge a complaint with supervisory authorities

Contact Us

For privacy-related questions or requests:

support@directsight.co