Privacy Policy
Data Policy — AI 2035 Strategic Brief Generator
Last updated: April 2026
Controller: Sofus Midtgaard · Droningensgade 12a 1. tv.
Contact: sofusmidtgaard@gmail.com · +45 30 220 111
What this tool does
The AI 2035 Strategic Brief Generator is a paid advisory tool. It takes the information you provide about your organisation and generates a tailored strategic brief using AI. This policy explains what data is collected, how it is used, and your rights under GDPR.
Important notice before you begin
Do not enter information that is price-sensitive, market-sensitive, or subject to stock exchange disclosure requirements.
If you work for a listed company or a company with listed debt, some of the information this tool asks about — competitive pressures, strategic direction, financial condition, or undisclosed business developments — may constitute material non-public information (MNPI). Entering such information into an AI system may conflict with your obligations under market abuse regulations (EU MAR) or equivalent rules in your jurisdiction.
If in doubt, use only publicly available information or consult your compliance function before proceeding.
Do not enter personal data about third parties — clients, employees, partners, or individuals — beyond what is necessary to describe your organisation's general situation.
What data we collect
Information you provide directly:
Organisation name and type
Your name and title (optional)
Contextual information about your organisation — sector, mandate, competitive landscape
Answers to up to five diagnostic questions
Any free-text question or dilemma you choose to share
Your email address (required for payment processing and brief delivery)
Technical data collected automatically:
Standard web server logs (IP address, browser type, timestamp)
Session storage in your browser — used temporarily to preserve your progress during Stripe payment redirect. Stored only in your browser and deleted automatically when your session ends.
How your data is processed — and by whom
This tool uses the Anthropic API — not Claude.ai
The brief is generated using the Anthropic API — the developer interface to Claude. This is different from Claude.ai, which is Anthropic's consumer product.
The distinction matters:
Anthropic API (what we use) Claude.ai (consumer product) Is content used to train AI models? No — Anthropic's API Terms of Service explicitly prohibit training on API inputs and outputs without opt-in consent Different terms apply Who controls the data? The operator (Sofus Midtgaard) is responsible for what is submitted Anthropic's consumer terms apply Is content stored by Anthropic? Anthropic may retain inputs/outputs for up to 30 days for trust and safety purposes, then deletes them Different retention applies
In plain terms: what you type into this tool is sent to Anthropic's API to generate your brief. Anthropic does not use it to train Claude or any other AI model. It may be retained briefly for safety monitoring, then deleted.
For full details, see Anthropic's Privacy Policy and Anthropic's Usage Policies.
How we use your data
Purpose Legal basis Generating your strategic brief via the Anthropic API Contractual necessity (GDPR Art. 6(1)(b)) Processing payment via Stripe Contractual necessity (GDPR Art. 6(1)(b)) Confirming payment and delivering the executive brief Contractual necessity (GDPR Art. 6(1)(b)) Maintaining server logs for security and troubleshooting Legitimate interest (GDPR Art. 6(1)(f))
We do not use your data for marketing, profiling, or any purpose beyond delivering the service you requested.
Who we share your data with
Anthropic (Claude API) The content you enter is sent to Anthropic's API to generate the analysis. Anthropic acts as a data processor on our behalf under a data processing agreement. They do not train on your data. Anthropic may be based outside the EU — transfers are covered by their Standard Contractual Clauses. See Anthropic's privacy policy.
Stripe Your email address and payment information are processed by Stripe, Inc. We receive confirmation of payment only — we never see or store your card details. See Stripe's privacy policy.
Cloudflare API requests are routed through Cloudflare Workers. Cloudflare may process request metadata as part of infrastructure operation. See Cloudflare's privacy policy.
We do not sell, rent, or share your data with any other parties.
How long we keep your data
Data Retention Email address (payment confirmation) 24 hours in temporary storage, then deleted automatically Brief content (organisation name, answers) Not stored by us — processed in real time and immediately discarded Anthropic API logs Up to 30 days per Anthropic's safety policy, then deleted by Anthropic Payment records Retained by Stripe per their legal obligations Server logs Up to 30 days for security purposes
We do not maintain a database of your answers or brief content. Once your brief is generated, we do not retain the input on our systems.
Your rights under GDPR
You have the right to:
Access — request a copy of personal data we hold about you
Rectification — request correction of inaccurate data
Erasure — request deletion of your data
Restriction — request that we limit processing
Portability — receive your data in a structured, machine-readable format
Object — object to processing based on legitimate interest
To exercise any of these rights, contact sofusmidtgaard@gmail.com. We will respond within 30 days.
If you believe your data has been processed unlawfully, you may lodge a complaint with the Danish Data Protection Authority: Datatilsynet · datatilsynet.dk · +45 33 19 32 00
Cookies and tracking
This tool does not use cookies, advertising networks, analytics platforms, or social media pixels. Session data is stored locally in your browser only and cleared when your session ends.
Changes to this policy
If we make material changes, we will update this page and revise the date above. Continued use after changes are posted constitutes acceptance.
Contact
Sofus Midtgaard · sofusmidtgaard@gmail.com · +45 30 220 111 · linkedin.com/in/sofus