CertFusion

Privacy Policy

Last updated: 23 April 2026

At CertFusion, we are committed to protecting your personal information and your right to privacy. This Privacy Policy outlines how we collect, use, and safeguard your information when you visit our website, use our services, or connect CertFusion to a third-party application such as the CertFusion ChatGPT app.

Information We Collect

We may collect personal information such as your name, email address, and any other details you provide when you:

  • Register for an account
  • Use our certificate services (including creating certificate templates, adding recipients, and issuing certificates)
  • Contact our support team
  • Authorise a third-party application to access your CertFusion account

Additionally, we may collect non-personal information like browser type, operating system, and website usage data to improve our services.

How We Use Your Information

Your information is used to:

  • Provide and manage our services
  • Communicate with you about your account or services
  • Improve our website and services
  • Ensure compliance with legal obligations

Data Sharing and Disclosure

We do not sell or rent your personal information. We may share your information with third-party service providers who assist us in operating our website and services, subject to strict confidentiality agreements.

ChatGPT App / Model Context Protocol integration

If you connect your CertFusion account to the CertFusion app on ChatGPT (via the OpenAI Apps SDK and the Model Context Protocol), CertFusion exchanges a limited set of data with ChatGPT solely to fulfil the requests you make inside ChatGPT. An OAuth access token is stored on our servers to authenticate those requests and can be revoked at any time from your CertFusion dashboard.

Data returned to ChatGPT by CertFusion tools:

  • Your account name and email (when you invoke the account/quota tool)
  • Your monthly certificate quota (used, limit, remaining)
  • The names of your certificate templates and their recipient lists (including a count of recipients and any template custom-field names)
  • The names, email addresses, statuses, and certificate-issuance timestamps of recipients you look up, create, or issue certificates for
  • A public URL to a template screenshot, when one exists

Data that is not sent to ChatGPT: your password, billing information, IP address logs, internal database identifiers (such as per-recipient verification UUIDs), or any data belonging to other CertFusion users.

ChatGPT conversations are governed by OpenAI's privacy policy. CertFusion does not receive or store ChatGPT conversation content; we only receive the structured parameters required to run each tool you invoke.

Certificate recipient data

When a certificate recipient views or downloads their certificate via a CertFusion verification link, we log the IP address, user-agent string, and referring URL of the request. This information is used for fraud prevention, abuse detection, and aggregate analytics for the account that issued the certificate. These activity logs are retained for 12 months and then deleted.

Data retention

  • Account profile data is retained for the life of your account. If you delete your account, we delete or anonymise your personal data within 30 days, except where we are legally required to retain it longer.
  • OAuth access tokens issued to third-party apps (including the ChatGPT app) remain valid until you revoke them from your CertFusion dashboard.
  • Certificate activity logs (see above) are retained for 12 months.

Your Rights

Depending on your location, you may have rights under data protection laws, including:

  • Accessing the personal data we hold about you
  • Requesting correction or deletion of your data
  • Objecting to or restricting certain data processing activities
  • Withdrawing consent where processing is based on consent

To exercise these rights, please contact us at hi@certfusion.com.

Security Measures

We implement appropriate security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is entirely secure.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date.

Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at: hi@certfusion.com