PrivacyPact

Privacy Policy

Last updated: November 17, 2025

1. Introduction

PrivacyPact ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Password (hashed and encrypted)
  • Organization name and details
  • API keys (encrypted)

2.2 Usage Information

We collect information about how you use our Service:

  • API usage and request logs
  • Dashboard activity
  • Feature usage statistics
  • Error logs and performance data

2.3 Technical Information

We automatically collect certain technical information:

  • IP address
  • Browser type and version
  • Device information
  • Cookies and similar tracking technologies

2.4 End-User Data

When you use our Service to handle privacy requests from your end users, we process:

  • Privacy request submissions (access, deletion, portability, etc.)
  • Consent records and preferences
  • Opt-out requests

We act as a data processor for this information. You, as our customer, are the data controller and responsible for complying with applicable privacy laws.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Process and respond to your requests
  • Send you service-related communications
  • Monitor and analyze usage patterns
  • Detect, prevent, and address technical issues
  • Comply with legal obligations
  • Enforce our Terms of Service

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We use third-party service providers to operate our Service:

  • Neon - Database hosting (PostgreSQL)
  • Resend - Email delivery
  • Sentry - Error tracking and monitoring
  • Vercel - Hosting and CDN

These providers are contractually obligated to protect your information and only use it for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal requests.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of sensitive data at rest
  • Secure password hashing
  • Regular security assessments
  • Access controls and authentication

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access - Request a copy of your personal information
  • Rectification - Request correction of inaccurate information
  • Erasure - Request deletion of your personal information
  • Portability - Request transfer of your data
  • Objection - Object to processing of your information
  • Restriction - Request restriction of processing
  • Withdraw Consent - Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@privacy-pact.com.

7. Data Retention

We retain your personal information for as long as necessary to provide the Service and fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law.

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session
  • Remember your preferences
  • Analyze Service usage
  • Improve our Service

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features of the Service.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where applicable.

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@privacy-pact.com

Support: support@privacy-pact.com