We collect information that you provide directly to us when you:

• Create an account and register for our services
• Use our application and interact with features
• Contact us for support or inquiries
• Subscribe to our newsletters or marketing communications
• Participate in surveys, contests, or promotions

This information may include:

• Account Information: Name, email address, password, and profile information
• Payment Information: Credit card details and billing address (processed securely through Stripe)
• Usage Data: Information about how you use our services, including pages visited, features used, and actions taken
• Device Information: IP address, browser type, operating system, and device identifiers
• Communications: Messages, feedback, and support requests you send to us

We use the information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve our services
• Account Management: To create and manage your account, process payments, and handle subscriptions
• Communication: To send you service updates, security alerts, and administrative messages
• Customer Support: To respond to your inquiries and provide technical assistance
• Personalization: To customize your experience and provide relevant content
• Analytics: To understand how users interact with our services and improve functionality
• Security: To protect against fraud, abuse, and unauthorized access
• Legal Compliance: To comply with legal obligations and enforce our terms of service
• Marketing: With your consent, to send promotional materials and special offers

We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:

• Service Providers: We work with trusted third-party service providers who assist us in operating our platform, such as:
  • Payment processing (Stripe)
  • Email delivery (SMTP providers)
  • SMS messaging (Twilio)
  • Cloud storage (AWS S3)
  • Analytics and monitoring services
• Legal Requirements: When required by law, court order, or governmental authority
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Protection: To protect the rights, property, or safety of our company, users, or others
• With Your Consent: When you explicitly authorize us to share information

We take the security of your personal information seriously and implement appropriate technical and organizational measures to protect it:

• Encryption: All data transmitted to and from our servers is encrypted using industry-standard SSL/TLS protocols
• Password Protection: User passwords are hashed using bcrypt with strong salting
• Access Controls: Access to personal information is restricted to authorized personnel only
• Regular Security Audits: We conduct regular security assessments and vulnerability scans
• Secure Storage: Data is stored in secure, access-controlled facilities
• Monitoring: We maintain comprehensive error tracking and security monitoring systems

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

We use cookies and similar tracking technologies to enhance your experience:

• Essential Cookies: Required for authentication and core functionality
• Performance Cookies: Help us understand how users interact with our services
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Provide insights into usage patterns and service improvements

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our services.

We also use session-based authentication tokens to keep you logged in securely.

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Update or correct inaccurate information through your account settings
• Deletion: Request deletion of your personal information (subject to legal obligations)
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to certain processing activities
• Restriction: Request that we limit how we use your information
• Opt-Out: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at privacy@startsaas.app. We will respond to your request within 30 days.

You can also manage your account settings, update your profile information, and control notification preferences directly through your account dashboard.

Our services integrate with third-party providers for enhanced functionality:

• OAuth Providers: Google, GitHub, Meta (Facebook), and Apple for social sign-in
• Payment Processing: Stripe for secure payment transactions
• Communication Services: SMTP providers and Twilio for email and SMS delivery
• LLM Providers: OpenAI, Anthropic, OpenRouter, Groq, and Cerebras for AI features
• Cloud Storage: AWS S3 for file storage and backups

These third parties have their own privacy policies and terms of service. We encourage you to review their policies:

• Stripe Privacy Policy
• Twilio Privacy Policy
• AWS Privacy Policy
• OpenAI Privacy Policy
• Anthropic Privacy Policy

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

• Account Data: Retained while your account is active and for a reasonable period after deletion
• Payment Records: Retained for accounting and tax purposes (typically 7 years)
• Communications: Support tickets and correspondence retained for quality assurance and legal compliance
• Usage Logs: Typically retained for 90 days for security and debugging purposes
• Backup Data: May persist in backup systems for up to 30 days after deletion

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 13, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@startsaas.app.

Your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws. When we transfer your information internationally, we ensure appropriate safeguards are in place to protect your data in accordance with this privacy policy and applicable laws.

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:

• Posting the updated policy on our website
• Updating the "Last Updated" date at the top of this page
• Sending you an email notification (for significant changes)

Your continued use of our services after any changes indicates your acceptance of the updated policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We aim to respond to all privacy-related inquiries within 30 days.