Privacy Policy

We collect the following, only when you give it to us:

• Checkout data — handled entirely by Stripe. Publishd receives an email address, tier, and customer ID from Stripe’s webhook or dashboard. We never see your full card number.
• Chat transcripts — messages you type into the help bot are sent to Groq for generating the reply. Transcripts are stored in your browser (localStorage); if you opt in, a copy is forwarded to Daniel via email so we can continue the conversation.
• App materials — any URL, repository, file, asset, credential, or description you hand us during an engagement.
• Contact details — email, phone (if you share it), business name.

Optional analytics — if you click “Accept analytics” on the cookie banner, we load Segment (segment.com) in the browser for anonymous page views. That helps us understand which pages people use. We do not use advertising pixels or retargeting. If you choose “Essential only,” Segment is not loaded.

Post-purchase review invites — after a successful Stripe checkout, our server may send an Order Completed event to Segment so Trustpilot can email a review invitation. That is server-side (not a browser cookie) and uses the email you gave at checkout.

• To deliver the service you paid for (submission, rebuild, coaching, rescue).
• To handle billing and refunds via Stripe.
• To respond to support questions and kick off new engagements.

Short list:

• Stripe — for payment processing (stripe.com/privacy).
• Groq — for the help-bot replies (groq.com/privacy-policy). Groq states it does not retain prompts for model training.
• Cloudflare — hosts the site and routes email (cloudflare.com/privacypolicy).
• Segment — only if you accept analytics in the cookie banner: anonymous page analytics in the browser (segment.com/legal). Server-side events may still reach Segment for order flows as described above.
• Trustpilot — when you leave a review or receive an invite, their terms apply (trustpilot legal). Links to Trustpilot from publishd.app do not load their widget scripts unless we add them later with separate notice.
• Apple & Google — only the specific app materials and metadata required to submit your app to their platforms, under their terms.

We do not sell personal data. We do not share your source code, credentials, or business information with anyone beyond the scope above.

• Payment records: retained as required by Stripe and US tax law.
• App source code and credentials: retained only during the engagement plus 30 days for post-launch support, then deleted or returned to you.
• Chat transcripts on the server: not retained beyond the reply cycle unless you opt into email follow-up.

You can email daniel@publishd.app at any time to:

• See what we have on you.
• Correct or update any record.
• Delete your records (where not required to retain by law).
• Withdraw consent for any non-required processing.

Requests are actioned within 30 days.

Publishd is not designed for or directed at children under 13. We do not knowingly collect data from children. If you believe a child has submitted data, email us and we will delete it.

We store your cookie choice in localStorage (key publishd_consent_v1) as essential or analytics. You can reopen the banner anytime via Cookie settings in the site footer.

If you accept analytics, Segment may set cookies or use local storage as described in their policy. We do not run third-party advertising or retargeting pixels on publishd.app.

A future customer portal may use first-party session cookies; that will be listed here if it ships.

We may update this policy. The version in effect when you interact with us governs. Material changes get announced on this page with an updated date.

Privacy questions or requests: daniel@publishd.app.