Privacy Policy
Last updated: March 2026
1. Information We Collect
We collect information you provide when creating an account (name, email, password), information generated by using our service (product URLs, keywords, curation results), and technical information (IP address for security, browser type).
2. How We Use Your Information
We use your information to: provide and improve our service, process payments, send transactional emails (verification, receipts, curation results), detect and prevent fraud, and comply with legal obligations.
3. Data Storage & Security
Your data is stored on secure servers hosted by Supabase (PostgreSQL) in the EU/US. Sensitive fields such as payment information are encrypted. Passwords are hashed using bcrypt. We implement industry-standard security measures.
4. Payment Information
We do not store your credit card details. All payment processing is handled by Stripe, which is PCI-DSS compliant. We store only a Stripe customer reference ID, encrypted at rest.
5. Data Sharing
We do not sell your personal data. We share data only with: Stripe (payment processing), Resend (email delivery), Sentry (error monitoring), and PostHog (analytics). All third parties are contractually obligated to protect your data.
6. Your Rights (GDPR)
You have the right to: access your data, correct inaccurate data, delete your account and data, export your data, and opt out of non-essential communications. To exercise these rights, contact privacy@publishroad.com.
7. Cookies
We use only essential cookies for session management and authentication. We use PostHog for analytics, which may set cookies. You can opt out of analytics tracking in your profile settings.
8. Data Retention
We retain your account data for as long as your account is active. Upon account deletion, your personal data is removed within 30 days. Anonymized usage data may be retained for analytics purposes.
9. Contact
For privacy questions or data requests, contact us at privacy@publishroad.com.