Privacy Policy

Toolhaus is a searchable directory of AI tools. For the purposes of EU data-protection law (the GDPR), Toolhaus is the data controller for the personal data described in this policy. You can reach us about anything privacy-related at hello@toolhaus.ai.

We collect only what we need to run the service:

• Account information. When you sign up we store your email address, and optionally a display name. Sign-up and sign-in are handled by our authentication provider (email and password, magic link, or Google sign-in). We never see or store your password.
• Age-related preferences. If you choose to view age-restricted listings, we store your birth year and your content-filter preference so we can apply the right filter. This is optional and filtering is on by default.
• Vendor & listing data. If you claim or submit a tool, we store your business or product details, your verification status, any team-member email addresses you invite, and the change requests you make to a listing.
• Billing data. If you buy a paid plan, payment is handled by our payment provider (acting as merchant of record). We do not see or store your card details. We keep a record of your orders and subscriptions, the amounts, and their status.
• Search queries.The words you type into search are processed to return relevant results, including being sent to an AI provider to interpret what you’re looking for. We don’t use your searches to build a profile of you.
• Usage & device data. Like most websites, we and our analytics provider automatically collect information such as the pages you view, your approximate location, your IP address, and basic device and browser details.

On our production website we use Google Analytics to understand how the site is used so we can improve it. This involves a small number of cookies, including ones that mark whether you’re a returning visitor, that briefly record a sign-up or sign-in event, and that hold an anonymous analytics identifier.

We do not use cookies for third-party advertising and we don’t sell your data. You can block or delete cookies in your browser settings, and you can opt out of Google Analytics using Google’s opt-out browser add-on.

Under the GDPR we rely on the following legal bases:

• To create your account, provide the directory, and process your purchases — because it’s necessary to perform our contract with you.
• To keep the service secure, prevent abuse and fraud, moderate listings, and understand and improve how the site is used — based on our legitimate interests in running a reliable, trustworthy product.
• To send optional analytics cookies and any marketing communications — based on your consent, which you can withdraw at any time.
• To keep records we’re required to keep, such as for tax and accounting — to meet a legal obligation.

We don’t sell your personal data. We share it only with the service providers (“processors”) that help us run Toolhaus, and only as far as each one needs:

• Hosting, database & authentication— our infrastructure provider stores your account data and powers sign-in.
• Payments— our payment provider processes purchases and issues invoices as merchant of record.
• AI processing— an AI provider helps interpret search queries and enrich catalog entries.
• Email— an email provider delivers account and transactional messages.
• Analytics— Google Analytics measures site usage.

We may also disclose data if the law requires it, or to protect our rights, our users, or the public.

Some of our providers are located outside the European Economic Area, for example in the United States. Where data is transferred outside the EEA, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision.

We keep your account data for as long as your account is active. If you close your account or ask us to delete your data, we’ll do so, except where we’re required to keep certain records (such as billing records for tax purposes) or need them to resolve disputes or enforce our agreements.

Under the GDPR you have the right to:

• access the personal data we hold about you;
• have inaccurate data corrected;
• have your data deleted;
• restrict or object to how we use it;
• receive your data in a portable format;
• withdraw consent at any time, where we rely on consent.

To exercise any of these, email hello@toolhaus.ai. You also have the right to lodge a complaint with your local data-protection supervisory authority if you think we’ve handled your data wrongly.

We use reasonable technical and organisational measures to protect your data, and we work with established providers that maintain their own security standards. No method of transmission or storage is ever completely secure, so we can’t guarantee absolute security.

Toolhaus isn’t directed at children. You must be at least 16 years old to create an account. If you’re younger than the age of digital consent in your country, please don’t use Toolhaus without a parent or guardian’s involvement.

We may update this policy from time to time. When we make material changes, we’ll update the “last updated” date above and, where appropriate, let you know.

Questions about your privacy or this policy? Email us at hello@toolhaus.ai. To request removal of a listing, use our takedown page.