Privacy Policy
Last updated: July 8, 2026
This Privacy Policy describes how Fieldwork ("we," "us," "our"), operating the Humanform API and related services (collectively, "Humanform," the "Service"), collects, uses, and protects your information when you use humanform.app, dashboard.humanform.app, api.humanform.app, and any related applications, including the Humanform MCP server and CLI tools (together, the "Site").
1. Who We Are
Humanform is a product of Fieldwork, a London-based product design studio. If you have questions about this policy, contact us at hello@fieldwork.design.
2. Information We Collect
Account information
When you create a Humanform account, we collect the information you provide through our authentication provider (Clerk), including your name, email address, and, if you sign in via a third-party provider (currently Google), basic profile information from that provider.
Payment information
When you purchase credits, payment is processed directly by Stripe, our payment processor. We do not receive or store your full card details. We retain a record of the transaction (amount, date, and a reference ID) for billing and support purposes.
API usage data
When you use the Humanform API (directly, via our dashboard, or via the Humanform MCP server), we log:
- The endpoint called and measurement/parameters requested
- Timestamp and response latency
- Which API key was used
- Credits consumed per call
We do not log the underlying purpose for which you use a prediction, only the request parameters and outcome.
Automatically collected information
Our hosting provider (Vercel) may automatically log standard technical information such as IP address, browser type, and request timestamps for security and reliability purposes.
3. How We Use Your Information
We use the information described above to:
- Provide, operate, and maintain the Service
- Process payments and manage your credit balance
- Monitor usage for rate limiting, abuse prevention, and free tier enforcement
- Communicate with you about your account, billing, or service changes
- Improve the reliability and performance of the Service
- Comply with legal obligations
We do not sell your personal information.
We do not use API request data (the measurement parameters you submit, such as age, gender, country, and percentile) to train or improve our prediction models.
4. Third-Party Service Providers
We rely on the following third-party providers to operate Humanform. Each processes a defined subset of your information as described above, under their own privacy policies:
| Provider | Purpose |
|---|---|
| Clerk | Authentication and account management |
| Stripe | Payment processing |
| Neon | Database hosting |
| Vercel | Application hosting and infrastructure |
| Cloudflare | DNS and object storage |
5. Data Retention
We retain account information for as long as your account is active. Usage logs and billing records are retained as needed for support, fraud prevention, and legal/accounting obligations. If you delete your account, your account record and associated API keys are deactivated; some usage and billing records may be retained where required by law or legitimate business need (e.g., financial recordkeeping).
6. International Data Transfers
Humanform is used globally. Your information may be processed in countries other than your own, including the United States and United Kingdom, by us and by the third-party providers listed above. Where required, we rely on appropriate safeguards for such transfers.
7. Your Rights
Depending on your location, you may have rights to access, correct, delete, or export your personal information, and to object to or restrict certain processing. To exercise these rights, contact us at hello@fieldwork.design. You can also directly delete your account and associated data via your dashboard account settings.
8. Security
We take reasonable technical measures to protect your information, including hashing API keys (we never store plaintext keys), encrypting data in transit, and relying on providers with strong security practices. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
9. Children's Privacy
Humanform is a business/developer tool not directed at children. We do not knowingly collect personal information from anyone under 16.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will post the updated version on this page with a revised "Last updated" date. Continued use of the Service after changes constitutes acceptance of the updated policy.
11. Contact Us
Questions about this policy or your data can be sent to hello@fieldwork.design.
This document is a template reflecting Humanform's actual data practices as of the date above. It has not been reviewed by a lawyer and should not be treated as legal advice. We recommend legal review before relying on this document, particularly regarding regulatory obligations (e.g., GDPR, CCPA) applicable to your specific circumstances.