1. Data We Collect
- Account data: email, name, hashed password (or OAuth identifier).
- Configuration data: domain names, hostnames, and sending IPs you enter.
- Billing data: payment metadata processed by our payment provider (we never see card numbers).
- Usage logs: timestamps, IP, and pages visited for security and debugging.
2. What We Do NOT Store
- VPS root passwords or SSH private keys — these never leave your browser.
- Email content sent through your servers.
- Your subscribers' or recipients' personal data.
3. How We Use Data
To provide the Service, process payments, prevent abuse, and communicate important updates.
4. Sharing
We share data only with sub-processors required to operate the Service (hosting, payments, email). We never sell personal data.
5. Your Rights (GDPR / CCPA)
You may request access, correction, export, or deletion of your personal data by contacting us. We respond within 30 days.
6. Cookies
We use only essential cookies for authentication and session management.
7. Security
Data is encrypted in transit (TLS) and at rest. Access is restricted on a need-to-know basis.
8. Retention
We keep account data while your account is active and for up to 12 months after deletion for legal compliance.
9. Contact
For privacy requests, use the contact page.