FOLLOWLOOP

Privacy Policy

Last updated: April 2026

1. What We Collect

We collect: your email address and password (for account creation); payment information processed by Stripe (we do not store card details); usage data including pages visited and features used; IP address (hashed for compliance logging); disclosure acceptance records (timestamp and hashed IP only).

2. What We Do Not Collect

We do not collect: the content of your AI conversations; documents or files you share with your AI; sensitive personal information beyond what is listed above; data from minors (the service is not intended for users under 18).

3. How We Use Your Data

We use your data to: provide and improve the service; process payments; send transactional emails (welcome, billing, product updates); comply with legal obligations; detect and prevent fraud and abuse.

4. Data Storage

Your data is stored in Supabase (Singapore region). Payment data is processed and stored by Stripe. We do not sell your personal data to third parties.

5. Cookies

We use essential cookies for authentication and session management. We do not use tracking or advertising cookies. A cookie consent notice is displayed on first visit.

6. Third Party Services

We use: Stripe for payment processing (stripe.com/privacy); Supabase for database and authentication; Anthropic API for content safety classification; Inngest for background job processing. Each third party has its own privacy policy.

7. Your Rights (GDPR / Australian Privacy Act)

You have the right to: access the personal data we hold about you; correct inaccurate data; request deletion of your data; object to processing; data portability. To exercise these rights, email [email protected].

8. Data Retention

We retain your data for as long as your account is active. Upon account deletion, personal data is deleted within 30 days. Anonymised usage data may be retained indefinitely.

9. Security

We implement industry-standard security measures including encryption in transit (HTTPS), row-level security on our database, and hashed storage of sensitive identifiers. No system is perfectly secure — please use a strong, unique password.

10. Changes to This Policy

We may update this policy at any time. We will notify you of material changes by email. Continued use of the service after changes constitutes acceptance.

11. Contact

For privacy-related questions or to exercise your rights, contact [email protected].