Privacy Policy

1.1 Account Information

When you create an account, we collect:

• Email address (required for account creation and login)
• Name (if provided through Google OAuth)
• Account creation date
• Subscription tier (Free or Pro)

1.2 Commission Data

When you use the Service, you provide:

• Commission titles
• Client names
• Client contact information (email or phone numbers you enter)
• Pricing information (commission prices and deposit amounts)
• Due dates
• Notes and descriptions
• Commission status and history

1.3 Usage Information

We automatically collect:

• Login activity (when you access your account)
• Feature usage (which parts of the app you use)
• Browser information (browser type, version)
• Device information (operating system, device type)
• IP address
• Cookies and similar technologies (for authentication and functionality)

1.4 Payment Information

If you subscribe to the Pro plan:

• Payment processing is handled entirely by Paddle
• We do NOT store your credit card information
• We receive only: subscription status, customer ID, and transaction confirmation
• All payment data is subject to Paddle's privacy policy

2.1 To Provide the Service

• Create and manage your account
• Store and display your commission data
• Enable kanban board functionality
• Generate statistics and reports
• Process your subscription (if applicable)
• Provide customer support

2.2 To Communicate With You

• Send important service updates
• Notify you of subscription changes
• Respond to your inquiries
• Send Pro plan launch notifications (if you joined the waitlist)

2.3 To Improve the Service

• Analyze usage patterns to improve features
• Identify and fix bugs
• Develop new features
• Monitor service performance

2.4 Legal Compliance

• Comply with applicable laws and regulations
• Respond to legal requests
• Enforce our Terms of Service
• Protect our rights and the rights of others

3.1 We DO NOT Sell Your Data

We will never sell, rent, or trade your personal information or commission data to third parties for marketing purposes.

3.2 Service Providers

We share information with trusted third-party services that help us operate:

3.3 Legal Requirements

We may disclose your information if required by law or if we believe such action is necessary to:

• Comply with legal obligations or court orders
• Protect our rights, property, or safety
• Prevent fraud or illegal activity
• Protect the rights and safety of our users

3.4 Business Transfers

If ArtTrackr is acquired or merged with another company, your information may be transferred to the new owner. You will be notified of any such change.

4.1 Security Measures

We implement reasonable security measures to protect your data:

• Encryption in transit (HTTPS/TLS)
• Encryption at rest (database encryption via Supabase)
• Secure authentication (password hashing, OAuth)
• Access controls (data isolation between users)
• Regular security updates

4.2 No Guarantee

While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

4.3 Your Responsibility

• Keep your password secure
• Do not share your account credentials
• Log out from shared devices
• Report any suspected security breaches immediately

5.1 Access Your Data

You can access all your commission data at any time through the application.

5.2 Export Your Data

You can export your commission data at any time (feature available in account settings).

5.3 Correct Your Data

You can edit any of your commission data directly through the application.

5.4 Delete Your Data

• You can delete individual commissions at any time
• You can delete your entire account through account settings
• Upon account deletion, all your data is permanently removed
• Account deletion is irreversible

5.5 Opt-Out of Communications

• You can unsubscribe from promotional emails using the unsubscribe link
• Service-related emails (security, billing) cannot be opted out while you have an account

5.6 Do Not Track

Our Service does not currently respond to "Do Not Track" browser signals.

6.1 Essential Cookies

We use cookies that are strictly necessary for the Service to function:

• Authentication cookies (keep you logged in)
• Session cookies (maintain your session state)

6.2 No Third-Party Tracking

We do not use third-party advertising cookies or tracking pixels.

6.3 Managing Cookies

You can configure your browser to refuse cookies, but this will prevent you from using the Service.

7.1 Active Accounts

• We retain your data for as long as your account is active
• Commission data is retained until you archive or delete it
• Archived commissions remain accessible until you delete them

7.2 Deleted Accounts

• When you delete your account, all data is permanently removed within 30 days
• Backups may retain data for up to 90 days for disaster recovery purposes
• After 90 days, all traces of your data are removed

7.3 Legal Obligations

We may retain certain information if required by law or to resolve disputes.

9.1 Data Location

Your data is stored on servers located in the United States (via Supabase and Vercel).

9.2 International Users

If you access the Service from outside the United States:

• Your information will be transferred to and stored in the United States
• By using the Service, you consent to this transfer
• The United States may have different data protection laws than your country

9.3 European Users (GDPR)

If you are in the European Economic Area (EEA):

• You have additional rights under GDPR
• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to data portability (export your data)
• Right to object to processing
• Right to withdraw consent at any time

To exercise these rights, contact us at privacy@arttrackr.app.

11.1 Updates

• We may update this Privacy Policy from time to time
• Material changes will be notified via email or in-app notification
• The "Last Updated" date will reflect when changes were made
• Continued use after changes constitutes acceptance

11.2 Review Regularly

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.