Privacy Policy

1. Information We Collect

When you create an account, we collect your email address and password (stored securely hashed). When you use our service, we also collect:

• Project data — project names, settings, and widget configurations you create.
• Testimonial data — testimonials submitted to your projects via forms or API, including the submitter's name, email, photo, rating, and text content.
• Payment data — processed securely by Stripe. We store your Stripe customer ID and subscription status but never your card details.
• Usage data — IP addresses (for rate limiting and abuse prevention), pages visited, and browser type.

2. How We Use Your Information

• To provide and maintain the CleanUGC service.
• To process payments and manage subscriptions.
• To send transactional emails (password resets, billing receipts).
• To prevent abuse and enforce rate limits.

We do not sell your personal information to third parties.

3. Testimonial Data

Testimonials submitted to your projects are stored on our servers and served via embeddable widgets. As the project owner, you control which testimonials are approved and publicly displayed. You can delete any testimonial at any time.

4. Data Sharing

We share data only with:

• Stripe — for payment processing.
• Email provider — for sending transactional emails.

We do not use analytics tracking or advertising services.

5. Data Retention

Your account data and project data are retained as long as your account is active. When you delete a project, all associated testimonials and widget data are permanently removed. When you delete your account, all your data is permanently removed.

6. Your Rights

You can:

• Access, update, or delete your account data at any time.
• Export your testimonial data.
• Delete individual testimonials or entire projects.
• Request complete account deletion by contacting us.

7. Security

We use HTTPS encryption, secure password hashing, CSRF protection, and rate limiting to protect your data. API tokens are generated using cryptographically secure random values.

8. Changes

We may update this policy from time to time. Significant changes will be communicated via email to registered users.

9. Contact

Questions about this policy? Contact us.