Afigima AI

Trust Center

How we earn the right to hold your quote data.

Clarify is the expert on your side of every Palo Alto Networks engagement. Our customers trust us with sensitive procurement information. This page is how we show our work.

Our commitments to you

  • Your quote text is never persisted in raw form.
    We extract the structured report and discard the source. The report stays; the underlying quote text does not.
  • No training on your data, ever.
    Our extraction provider runs under privacy-compliant agreements. No model training, no retention beyond the request, no third-party sharing.
  • Your data is yours.
    One-click export of every report, catalog selection, and audit log entry. JSON and CSV. No data hostage games.
  • Soft delete with 30-day recovery.
    When you delete a report, it's recoverable for 30 days. After that it's gone for good.
  • Honest status reporting.
    When something breaks, we say so. Postmortems for any production incident over a defined severity threshold are public.

Security posture

We're a young company. We're upfront about what's certified today versus what's in motion. The list below is honest about both.

SOC 2 Type I
Vanta program initiated. Type I audit targeted within six months of paid launch; Type II within 18 months.
In motion
GDPR / CCPA
Article 28 controller-processor DPA template signable on request. CCPA disclosures live.
Available
Penetration test
Annual third-party penetration test scheduled. Summary will be published here.
Scheduled
SSO (SAML / OIDC)
Required for Team contracts. Targeted via WorkOS in the 60 to 90 day post-launch window.
On roadmap
SCIM provisioning
User lifecycle sync from Okta and Azure AD. Lands alongside SSO.
On roadmap
Cyber liability insurance
$1M minimum coverage being placed before first paid Team contract.
In motion
Bug bounty
Public program targeted within twelve months of launch.
On roadmap

Sub-processors

The vendors that touch your data when you use Clarify. We notify customers via the address on file when this list changes.

VendorPurposeData typeRegion
RenderApplication hosting + Postgres databaseAll customer dataUS East (Ohio)
AnthropicExtraction for image-only / scanned quotesQuote content during processing onlyUS
ResendOutbound email + inbound forwardingEmail metadata + attachments during processingUS
StripeSubscription billingBilling identity, payment metadataUS

Anthropic processing runs under their zero-retention agreement. Customer quote content is not retained by the model provider beyond the immediate request.

How your data is handled

Stored
  • Your account email, plan, and authentication state
  • The structured engine output of each check (the report)
  • Catalog selections and partner email drafts you save
  • Audit log entries and sub-processor records
Processed in memory, not persisted
  • Raw quote text from uploads, paste, or email
  • PDF, Word, Excel, and image bytes
  • Extraction request payloads
  • Forwarded email attachment content

The structured report persists so you can come back to it. The underlying quote text is discarded after extraction. If you delete the report, both are gone (subject to soft-delete).

Reliability

Uptime target
99.5%
Pro plan
Uptime target
99.9%
Team plan
Status page
Coming soon
BetterStack rollout post-launch

Our database is backed up daily with point-in-time recovery enabled. Email deliverability has a planned secondary path so a single-vendor outage does not take the inbound forwarding flow offline.

Your rights as a customer

  • Data export
    One-click export of all your reports, catalog selections, and audit log entries via Your data. JSON and CSV.
  • Account deletion
    Delete your account from the dashboard. Soft-delete preserves recovery for 30 days, then everything is purged.
  • Data Processing Addendum
    Download our DPA template for review or signing.
  • Subject access requests
    Email clarify@afigima.ai and we respond within 30 days, in line with GDPR and CCPA timelines.

Contact us

Security incidents
clarify@afigima.ai
24-hour acknowledgment
Privacy + DPO
clarify@afigima.ai
GDPR / CCPA inquiries
Customer support
clarify@afigima.ai
Product and account help
Clarify · Independent procurement review for security software. Not affiliated with any vendor.

The Network

Sister Sites

Part of the Afigima Enterprises portfolio. A working portfolio of ventures led by Christy Mendoza.