Privacy Policy

Effective date: June 11, 2026

1. Information we collect

We collect account identifiers (email and auth metadata), billing metadata from Dodo Payments or Google Play, saved content you explicitly add to your vault (links, categories, notes, collections, timestamps, and related post metadata), support and feedback requests you submit, screenshots attached to feedback, browser-extension session metadata, and product analytics events such as sign-in, save attempts, save results, feed-button settings, and extension button interactions. We do not collect passwords, private messages, keystrokes, or your full browsing history.

2. How we use information

We use data to provide the service, authenticate users, enforce plan limits and abuse protections, process subscription access, troubleshoot incidents, and improve product reliability.

3. Payments

Web payments are processed by Dodo Payments, and Android purchases may be processed by Google Play. We do not store raw card numbers. We only store customer, purchase, and subscription references needed for billing access, verification, and plan enforcement.

4. Sharing and subprocessors

We share data with core infrastructure providers (e.g., Supabase and Dodo Payments or Google Play) and product analytics providers (e.g., PostHog) only as needed to operate, secure, and improve SavePosts. We do not sell personal data.

5. Public feedback board

Valid feedback submissions, including request text and submitted screenshots, appear on the public Feedback & Roadmap page. Do not submit secrets or private personal data. Account email, user identifiers, IP hashes, and abuse-prevention metadata are not displayed publicly.

6. Data retention

We retain account and saved-link data while your account is active or as required for legal or security obligations. Account deletion removes account-owned vault data and its planning-file and feedback-image attachments from active storage. Billing-provider records, security logs, support correspondence, aggregated analytics, and backups may remain for their applicable retention periods. You can delete your account from the mobile app Account screen or request deletion from the account deletion page.

7. Security

We apply access controls, webhook signature verification, rate limits, and other operational safeguards, but no online service can guarantee absolute security.

8. Your rights

Depending on your jurisdiction, you may have rights to access, correction, deletion, and portability of personal data. Contact support to exercise these rights.

9. Contact

For privacy questions or requests, contact: support@mail.saveposts.xyz.