Privacy Policy

Last updated: June 2025

Introduction

At POD Product Assistant, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, including our website and platform for launching designs on multiple products. By using our services, you agree to the terms of this Privacy Policy.

Information We Collect

We collect information to provide and improve our services. This includes:

  • Personal Information: When you sign up or use our platform, we may collect your name, email address, billing information (such as payment method details, billing address), and other details necessary for account creation, payment processing, and service provision. If you choose to use features that require it, we may also collect information you provide for identity verification.
  • Transaction Data: When you make payments or subscribe to our services, our payment processor, Stripe, will collect transaction data. This may include your name, email address, billing and shipping address, payment method information (like credit or debit card number, bank account details), merchant and location details, amount and date of purchase. We receive some of this transaction data from Stripe to manage your account and subscription.
  • Usage Data: We collect data on how you interact with our services, such as IP addresses, browser type, pages visited, and time spent on our platform, to analyze trends and improve user experience.
  • Cookies and Similar Technologies: We use cookies for authentication and session management through our backend provider, Supabase. These are essential for the functionality of our service. Additionally, if analytics are enabled (e.g., through Vercel Analytics), we may use cookies or similar technologies to track user behavior. You will be prompted to consent to non-essential cookies upon visiting our site.
  • Local Storage: We use local storage to save functional preferences, such as your theme choice (light/dark mode), to enhance your user experience.

How We Use Your Information

  • To provide, maintain, and improve our services, including personalizing your experience.
  • To process payments and manage subscriptions through our third-party payment processor, Stripe, Inc. ("Stripe"). This includes creating and managing your Stripe customer account.
  • To communicate with you about updates, promotions, or support issues.
  • To analyze usage patterns and ensure the security of our platform.
  • For fraud detection and loss prevention, in conjunction with services provided by Stripe.
  • To comply with legal obligations and enforce our terms.

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process personal data under the following legal bases:

  • Consent: For non-essential cookies and marketing communications, we rely on your explicit consent.
  • Contractual Necessity: For providing our core services, processing payments via Stripe, and managing your account.
  • Legitimate Interests: For analytics, security, fraud prevention, and improving our services, where these interests do not override your rights.

Data Sharing and Third Parties

We do not sell your personal information. We share data with trusted third-party providers who assist us in operating our services, and as necessary to provide our services to you. These include:

  • Stripe, Inc.: Our payment processing provider. We share personal and transaction data with Stripe to process payments, manage subscriptions, prevent fraud, and for other related services. Stripe acts as a data controller and/or processor for this data. You can learn more about Stripe's privacy practices at Stripe's Privacy Policy.
  • Supabase: For authentication and data storage.
  • Vercel: For hosting and potentially analytics.

These providers are contractually obligated to protect your data and comply with applicable privacy laws, including GDPR. We may also share your information if required by law, to protect our rights, or in connection with a merger or acquisition.

Your Rights

Under GDPR and other applicable laws, you have the following rights regarding your personal data:

  • Access: Request a copy of the data we hold about you.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data (right to be forgotten).
  • Restriction: Limit how we process your data.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Data Portability: Receive your data in a structured, commonly used format.
  • Withdraw Consent: Withdraw consent at any time for non-essential data processing, such as marketing or analytics cookies.

To exercise these rights, please contact us at privacy@podproductassistant.com. Please note that for data processed by Stripe as a data controller, you may need to contact Stripe directly to exercise some of your rights.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, provide our services, or as required by law (e.g., for tax and accounting purposes). For example, account data is kept while your account is active, and transaction data related to payments processed by Stripe will be retained in accordance with Stripe's policies and legal obligations. Once data is no longer needed, it is securely deleted or anonymized.

Data Security

We implement technical and organizational measures to protect your data from unauthorized access, loss, or alteration. When you provide payment information, it is processed directly by Stripe, which maintains its own robust security measures (PCI-DSS compliance). However, no system is completely secure, and we cannot guarantee absolute security.

International Data Transfers

As a US-based company, your data may be transferred to and processed in the United States or other countries where our service providers, including Stripe, operate. We ensure that such transfers comply with GDPR and other applicable data protection laws, often through mechanisms like Standard Contractual Clauses or adequacy decisions. For more information on Stripe's data transfer practices, please refer to their Privacy Policy.

Cookie Policy

We use cookies for essential functions like authentication. For non-essential cookies (e.g., analytics), we will request your consent via a cookie banner upon your first visit. You can manage your cookie preferences at any time through our cookie settings. Stripe may also use cookies when you interact with their payment forms; please refer to Stripe's Cookie Policy for more details.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in legal requirements or our practices. We will notify you of significant updates via email or a notice on our website. Please review this policy regularly.

Contact Us

If you have questions, concerns, or complaints about how we handle your data, or if you wish to exercise your rights, please contact us at:

Email: privacy@podproductassistant.com
Address: POD Product Assistant, 2501 Chatham Rd #4714, Springfield, IL, 62704, USA

For EEA users, you also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.