Privacy Policy
Privacy Policy
Last updated: 02/01/2026
1. Introduction
Privacy Policy ("we," "our," or "us") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
2. Information We Collect
2.1 Information You Provide
Account Information:
- Email address (required)
- Full name (optional)
- Password (hashed, we cannot read it)
Preferences:
- Notification settings
- Monitored document selections
Communications:
- Support requests
- Feedback submissions
2.2 Information Collected Automatically
Usage Data:
- Pages visited
- Features used
- Time spent on pages
- Actions taken
Technical Data:
- Browser type
- Device type
- IP address (anonymized)
- Operating system
Cookies:
- Authentication cookies (required)
- Preference cookies (optional)
- Analytics cookies (optional)
3. How We Use Your Information
We use your information to:
| Purpose | Legal Basis |
|---|---|
| Provide the Service | Contract performance |
| Send notifications about policy changes | Contract performance |
| Send service updates and announcements | Legitimate interest |
| Improve the Service | Legitimate interest |
| Respond to support requests | Contract performance |
| Prevent fraud and abuse | Legitimate interest |
| Comply with legal obligations | Legal requirement |
We do NOT:
- Sell your personal information
- Share your data with advertisers
- Use your data for unrelated marketing
4. Information Sharing
We may share your information only in these circumstances:
4.1 Service Providers
We use trusted third-party services:
| Provider | Purpose | Data Shared |
|---|---|---|
| Supabase | Database & Auth | Email, encrypted data |
| Resend | Email delivery | Email address |
| Vercel | Hosting | Anonymous analytics |
| Sentry | Error tracking | Anonymous error data |
| Stripe | Payments | Payment info (they handle it) |
All providers are contractually bound to protect your data.
4.2 Legal Requirements
We may disclose information if required by:
- Law or legal process
- Government request
- Protection of our rights
- Emergency situations
4.3 Business Transfers
If we are acquired or merged, your information may be transferred. We will notify you before this happens.
5. Data Security
We implement appropriate security measures:
Technical Measures:
- Encryption in transit (HTTPS/TLS)
- Encryption at rest (AES-256)
- Secure password hashing (Argon2)
- Regular security audits
Organizational Measures:
- Limited data access
- Employee training
- Incident response procedures
However, no system is 100% secure. We cannot guarantee absolute security.
6. Data Retention
We retain your data:
| Data Type | Retention Period |
|---|---|
| Account data | Until account deletion |
| Usage analytics | 12 months |
| Support communications | 24 months |
| Notification logs | 6 months |
| Deleted account data | 30 days (then permanently deleted) |
7. Your Rights
Depending on your location, you may have the right to:
7.1 Access
Request a copy of your personal data.
7.2 Correction
Request correction of inaccurate data.
7.3 Deletion
Request deletion of your data ("right to be forgotten").
7.4 Portability
Request your data in a machine-readable format.
7.5 Objection
Object to certain processing of your data.
7.6 Restriction
Request restriction of processing.
To exercise these rights, contact us at privacy@PrivacyPolicy.com.
We will respond within 30 days.
8. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights:
- Right to Know: What personal information we collect
- Right to Delete: Request deletion of your information
- Right to Opt-Out: Of sale of personal information (we don't sell)
- Right to Non-Discrimination: For exercising your rights
Categories of information we collect:
- Identifiers (email, name)
- Internet activity (usage data)
- Inferences (preferences)
We do NOT sell personal information.
9. International Data Transfers
Your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer.
We ensure appropriate safeguards for international transfers, including:
- Standard Contractual Clauses
- Privacy Shield certification (where applicable)
10. Children's Privacy
The Service is not intended for children under 18. We do not knowingly collect information from children. If we discover we have collected information from a child, we will delete it promptly.
11. Cookies Policy
11.1 Essential Cookies
Required for the Service to function:
- Authentication session
- Security tokens
- User preferences
11.2 Analytics Cookies
Help us understand Service usage:
- Page views
- Feature usage
- Performance metrics
You can disable analytics cookies in your browser or account settings.
11.3 Managing Cookies
Most browsers allow you to:
- View cookies
- Delete cookies
- Block cookies
Note: Blocking essential cookies may prevent the Service from working.
12. Third-Party Links
The Service may contain links to third-party websites (e.g., Stripe, PayPal). We are not responsible for their privacy practices. Please review their privacy policies.
13. Changes to This Policy
We may update this Privacy Policy. We will notify you of material changes via:
- Email notification
- In-app notification
- Updated "Last updated" date
Continued use after changes constitutes acceptance.
14. Contact Us
For privacy-related questions or requests:
Email: privacy@PrivacyPolicy.com
Mailing Address: Privacy Policy [Address] United States
Data Protection Officer: [If applicable]
15. Supervisory Authority
If you are in the EU/EEA, you have the right to lodge a complaint with your local data protection authority.
By using Privacy Policy, you acknowledge that you have read and understood this Privacy Policy.