Privacy Policy

4Degrees is the relationship intelligence and deal flow platform used by private-markets teams to source, drive, and close more deals. This page covers what happens to your data when your firm connects 4Degrees to an external AI client.

Effective April 27, 2026

Scope #

This policy specifically covers the 4Degrees AI Connector — the Model Context Protocol (MCP) server hosted at https://mcp.4degrees.ai/mcp that lets AI assistants such as Anthropic’s Claude (claude.ai, Claude Desktop, Claude Code) and OpenAI’s ChatGPT (chatgpt.com) query your 4Degrees data on your behalf.

It supplements, but does not replace, our master 4Degrees Privacy Policy, which governs your firm’s overall use of the 4Degrees platform.

What the connector exposes #

Read-only access to data your seat in 4Degrees already has permission to view, scoped to your user account and your firm’s organization. Specifically:

Contacts (name, title, company, email, phone, location, tags, custom fields, relationship strength signals)
Companies (name, domain, location, employee count, deal count, custom fields)
Deals (name, pipeline, stage, owner, value, contacts, tags, custom fields)
Interaction metadata — subject, sender / recipient names, date, type (email / meeting / note)
Custom field definitions, pipeline definitions, team membership
Portfolio dashboards (triage, warmest leads, recent news, job changes, reminders)
Introduction paths — teammates with the strongest relationship to a contact or company

What is never exposed #

Encrypted email and meeting bodies (only metadata is queryable, as above).
Passwords, API keys, billing data, and admin settings.
Data belonging to other firms, or to teammates whose contacts you do not have permission to view.
Anything your firm’s administrator has scoped behind permissions you do not hold.

How data flows #

You ask your AI assistant a question — for example, “Who’s my warmest path to the new CTO at Stripe?”
The assistant calls one of the connector’s MCP tools (discover, query, or compare) using your authenticated bearer token.
The connector verifies the token, queries your 4Degrees data, and returns the result to the assistant.
The assistant renders the result back to you in the conversation.

Per their respective connector terms, neither Anthropic (per Anthropic’s Connector Terms) nor OpenAI (per the OpenAI Apps SDK terms) trains its models on data returned by third-party connectors. 4Degrees does not share connector data with any other third party.

What 4Degrees stores #

For the connector specifically, we log the following per request for audit, rate-limiting, and debugging purposes:

User ID and organization ID (numeric)
Request ID, HTTP method, path, status code, duration
Token type (PAT vs OAuth) and its hashed identifier
Timestamp

We do not store:

The text of your conversation with Claude or ChatGPT
The arguments passed to MCP tools
The CRM data returned by tools

Tokens are stored as SHA-256 hashes; the original token value is never persisted server-side. All traffic between AI assistants and the connector is encrypted in transit using TLS. Standard 4Degrees database backup, retention, and deletion policies (see our master Privacy Policy) apply to the audit log.

Authorization & revocation #

The connector uses OAuth 2.1 with Dynamic Client Registration (RFC 7591) and PKCE (S256). Each member of your team explicitly authorizes their AI assistant during setup, and that authorization can be revoked at any time:

From Claude: Settings → Connectors → 4Degrees → Disconnect.
From ChatGPT: Apps → 4Degrees → Disconnect.
From 4Degrees: revoke the access token from your account settings.
From your firm’s administrator: disabling the AI Connector feature in workspace settings immediately invalidates every token issued to org members across both Claude and ChatGPT.

Revocation is effective immediately on the next request.

Children #

The 4Degrees platform is not intended for use by anyone under the age of 18.

Changes to this policy #

We may update this connector-specific policy from time to time. The “Effective” date at the top of this page reflects the most recent change. Material changes will also be reflected in our master Privacy Policy.

Contact #

Questions about how the connector handles your firm’s data: privacy@4degrees.ai.
Security disclosures: security@4degrees.ai.
General support: support@4degrees.ai.