Privacy Policy

Last updated: May 2026

1. Data We Collect

When you create a Compatify account we collect:

  • Email address
  • Company or project name (optional)
  • UTM attribution parameters (source, medium, campaign) from signup URL
  • Terms of service acceptance timestamp and version

When you use the API we log:

  • Endpoint called, category, response time, HTTP status code
  • API key prefix (never the full key or hash)
  • Timestamp (UTC)

We do not log the device or accessory strings you query. We do not store API keys in plaintext — all keys are stored as SHA-256 one-way hashes.

2. Third-Party Services

  • Supabase — Database hosting in US East. Supabase Privacy Policy: https://supabase.com/privacy
  • Stripe — Payment processing. Stripe stores your payment method. We store only your Stripe customer ID. Stripe Privacy Policy: https://stripe.com/privacy
  • Google Analytics 4 — Site analytics. GA4 fires only after CookieYes consent is granted. Data is anonymized. Google Privacy Policy: https://policies.google.com/privacy
  • Resend — Transactional email delivery. Resend Privacy Policy: https://resend.com/legal/privacy-policy
  • Netlify — Frontend hosting. Netlify Privacy Policy: https://www.netlify.com/privacy/
  • Google Cloud Run — API hosting. Google Privacy Policy: https://policies.google.com/privacy

3. How We Use Your Data

  • To send your API keys and onboarding emails
  • To track usage against your plan limit
  • To process subscription billing via Stripe
  • To send product updates (you can unsubscribe at any time)

4. GDPR Rights

If you are in the European Economic Area, you have the right to:

  • Access all personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and all associated data
  • Object to processing
  • Receive your data in a portable format

To exercise any of these rights, email support@compatify.io. We will respond within 30 days.

5. CCPA Rights

California residents have the right to know what personal information we collect, to request deletion, and to opt out of the sale of personal information. We do not sell personal information. Contact support@compatify.io to exercise these rights.

6. Data Retention

Account data is retained for as long as your account is active. Usage logs are retained for 12 months. On account deletion, all personal data is permanently deleted within 30 days.

7. Contact

Questions about this policy: support@compatify.io