Privacy Policy
Last updated: April 24, 2026
This is a wireframe placeholder. Final policy will be reviewed by counsel before launch.
1. What we collect
Account data (name, email, password hash, company), data you connect via integrations (orders, ad spend, customer events), and product usage data (which pages you visit, which actions you take). We use cookies to keep you signed in.
2. What we do with it
We process the data you connect solely to operate the Service for you. We do not sell, rent, or share customer data with third parties. We do not use your data to train AI models — yours or anyone else's. Aggregated, fully anonymized usage statistics may inform product decisions.
3. Subprocessors
We use a small set of subprocessors to operate the Service:
- Hostinger / Bare metal — application hosting
- Authorize.Net — payment processing (PCI-compliant)
- Cloudflare — DNS + edge caching
- Let's Encrypt — TLS certificate issuance
- Postmark / SendGrid — transactional email
A current subprocessor list is available on request.
4. Data retention
Active workspaces retain all connected data for as long as your subscription is active. Cancellations get a 60-day grace window, after which we permanently delete everything.
5. Your rights
You can access, export, or delete your workspace data at any time. EU/UK customers retain all rights under GDPR; California customers retain all rights under CCPA. Email privacy@metrixstack.io.
6. Security
Data in transit is TLS 1.2+. Data at rest is encrypted via underlying volume encryption. Passwords are bcrypt-hashed (cost 12). Payment cards never touch our servers — they're tokenized by Authorize.Net.
7. Contact
Questions: privacy@metrixstack.io