Legal

Privacy Policy

Last updated June 2026.

This Privacy Policy explains how TariffLens, Inc. ("we", "us") collects, uses, and protects information in connection with Merrily, our customer intelligence platform. Merrily is built for B2B software teams and connects to the business tools you already run in order to produce account health insights.

Information we process

Merrily processes two broad categories of data: account information you provide when you sign up (such as your name, work email, and company), and connected source data that you authorize us to read from the tools you integrate (such as messaging, email, meeting notes, product analytics, billing, and CRM systems).

  • Account data: name, work email, company, role, and authentication details.
  • Connected source data: the customer conversations, meetings, product events, invoices, and contract records you explicitly connect, used to compute health scores and signals.
  • Usage data: how you interact with the product, collected to improve reliability and experience.

How we use data

We use connected source data solely to provide the service to you: to compute account health, surface risk and expansion signals, and present the analysis back to your team. We do not sell your data, and we do not use your connected customer data to train shared or third-party models.

Sharing and subprocessors

We rely on a small set of infrastructure and AI subprocessors to operate the service (for example, cloud hosting and model providers). These subprocessors are bound by contract to protect your data and to process it only on our instructions. A current list is available on request.

Data retention and deletion

You can disconnect any source at any time. When you disconnect a source or close your account, we delete or de-identify the associated connected data within a commercially reasonable period, except where retention is required to meet a legal obligation.

Security

We protect data in transit and at rest, scope access to connected sources to the minimum required, and maintain audit logging across the platform. No system is perfectly secure, but security is a first-order design constraint of the product.

Your choices

You control which sources are connected and can request access to, correction of, or deletion of your account data. To make a request, contact us at [email protected].

Changes to this policy

We may update this policy as the product evolves. Material changes will be reflected here with an updated date. Questions are welcome at [email protected].