What we collect, why we collect it, and how we protect it — in human‑readable form.
Your privacy matters. This Privacy Notice explains what personal data we collect, why we collect it, how we use and share it, and the choices and rights available to you. Capitalized terms have the meaning in the Terms of Service unless defined here.
Where required by law (e.g., GDPR/UK GDPR), we rely on one or more lawful bases: performance of a contract; legitimate interests (such as security, fraud prevention, and service improvement); compliance with legal obligations; consent (where obtained); and in limited cases vital interests.
We collect data directly from you, automatically from your device when you use the Services, and from third parties (e.g., payment processors, anti‑abuse providers) where permitted.
We share personal data with vendors and service providers who process it for us under appropriate contracts, with affiliates where permitted, for legal reasons (e.g., compliance, law enforcement requests), in connection with a business transfer, or with your direction/consent. We do not sell personal data.
We use privacy‑respecting analytics to understand product usage and reliability. Where ad or cross‑context behavioral signals are used, we offer opt‑outs and respect legal requirements (e.g., Do Not Sell/Share under CPRA). See our Cookies Policy for details.
We implement technical and organizational measures including encryption in transit, access controls, monitoring, rate‑limiting, and secure development practices. No system is perfectly secure; report issues via our security page.
We retain personal data only as long as needed for the purposes described, including provision of the Services, security, compliance with law, and dispute resolution. See our Data Retention Policy for typical periods.
Where personal data is transferred internationally, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) and supplemental measures as needed. Details are provided in our DPA.
Our Services are not directed to children where local law requires parental consent. We do not knowingly collect personal data from children without appropriate consent. If you believe a child provided us data, contact us to request deletion.
Depending on your location, you may have rights to access, correct, delete, restrict, object, port, or withdraw consent. Submit requests via the Privacy channels in our help center. We may verify identity and use authorized agents where permitted.
We take reasonable steps to verify your identity before fulfilling requests. Where local law permits, you may use an authorized agent with written authorization and verification steps. We may deny requests we cannot reasonably verify.
If we decline your request, you may appeal using the process described in the response. We review appeals independently and will notify you of the outcome and your options to contact a regulator where applicable.
We may create de‑identified or aggregated data for analytics, research, and product improvement. We maintain safeguards to prevent re‑identification and prohibit attempts to re‑identify such data.
Unless stated otherwise, we do not use your personal data to train generalized AI models. We may use de‑identified or aggregated data to improve detection systems (e.g., fraud/abuse) and product reliability, consistent with this Notice.
We engage vetted vendors to help provide the Services under written agreements. See our Data Sub‑processors page for categories and change notifications.
We aim to publish aggregate metrics about privacy requests, government requests, and incident notifications without compromising safety. See Privacy Transparency.
We do not engage in solely automated decisions with legal or similarly significant effects without appropriate safeguards or your consent where required by law.
We use essential cookies and limited analytics cookies. Manage choices via the cookie banner or in‑product settings. See the Cookies Policy for details on types and retention.
We may update this Privacy Notice to reflect operational or legal changes. Material updates will be highlighted in the Changelog or via in‑product notice where required.
Use the contact form for privacy inquiries, stating your region and the rights you wish to exercise. If you are in the EU/UK/SG/IN, you may also contact your supervisory authority.
