Basecamp

Basecamp

US·basecamp.com
View Policy Full Report
72
Privacy Score
Data Collection20%
50/100
Data Sharing25%
70/100
Tracking20%
55/100
Transparency20%
90/100
User Rights15%
100/100
AI Risk
55/100

Analysis Findings

Data Collection
-50 pts28 Types
Data Sharing
-25 pts3 Issues
Tracking
-45 pts3 Trackers
Transparency
+40 ptsGood
User Rights
+55 ptsComprehensive
AI Practices
-85 pts55/100

Top Vendors

View all 7
VendorCategoryPurposeCountry
G
Google
Advertising and CookiesAdvertising platform for running ads and evaluating effectiveness.US
G
Google
When we access or disclose your informationIntegration with Gmail for email services in HEY.US
P
Payment Processor
Billing informationProcessing credit card payments.US
C
CAPTCHA Service
Anti-bot assessmentsAnti-bot assessments, spam protection, mitigating brute force logins.US
A
Ad Network
Advertising and CookiesEvaluation of ad effectiveness.US
Collected Data Types
Name
identityRequired
Email Address
identityRequired
Company Name
identity
Profile Picture
identity
Payment Information (Credit Card)
financialRequired
View all 28 items
Cookies & Tracking
No data available
Doing Well
  • Subprocessor list published
  • Privacy policy published
  • Comprehensive policy sections
  • Specific data retention periods
  • Data processing purposes stated
  • Readable policy length
Concerns
  • Tracks behavioral data
  • Collects browsing history
  • Collects location data
  • Collects financial data
  • Collects 28 data types
  • Shares data with advertisers
Privacy Summary
37signals collects personal data like your name, email, billing information, IP address, browsing activity, and the content you create or receive in their products. They never sell your data but share it with third-party partners essential for operating their services or when legally required. You can request data deletion or exercise other privacy rights by contacting `privacy@37signals.com` or managing your account settings, with full data removal typically completed within 60-90 days after account cancellation or content deletion.
AI-generated summary based on policy analysis dated Apr 11, 2026
Quick Facts
Legal Name37signals LLC
HeadquartersUS
Data DeletionModerate (4/10)
Vendors7 third parties
Data Types28 types collected
Last AnalyzedApr 11, 2026
Compliance
GDPRYes
CCPAYes
Data Request FormNo
Recent BreachNo
Data BrokerNo
Policy Documents
Privacy PolicyTerms of Service
AI Risk
  • AI usage only partially disclosed
  • Hidden AI usage detected
  • High user impact from AI usage
  • Automated decision-making risk