StackBuddy

Privacy Policy

Last updated: January 21, 2025

1. Introduction

Patrick God ("we," "us," or "our") operates StackBuddy (the "Service"). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you provide directly to us, including:

• Account Information: Email address, display name, Substack handle, and profile details
• Content: Notes you create, scheduled content, and custom instructions for AI generation
• Writer Profile: Voice and style preferences, content categories, audience information
• Payment Information: Processed securely through Stripe (we do not store credit card details)
• Communications: Messages, feedback, and support requests you send to us

2.2 Information Collected Automatically

When you use the Service, we automatically collect certain information:

• Usage Data: Features you use, pages you visit, time spent on the Service
• Device Information: Browser type, operating system, IP address
• Cookies and Similar Technologies: Session cookies for authentication and preferences
• Time Zone Information: For accurate scheduling of notes

2.3 Information from Third Parties

• Substack: Your public Substack profile information (name, handle, publication details) when you connect your account
• Stripe: Payment confirmation and subscription status

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 To Provide the Service

• Create and manage your account
• Store and schedule your notes
• Generate AI-powered content based on your preferences
• Enable the browser extension to publish scheduled notes
• Process payments and manage subscriptions
• Facilitate collaboration features

3.2 To Improve the Service

• Analyze usage patterns to improve features
• Monitor and fix technical issues
• Develop new features and functionality
• Optimize AI generation quality

3.3 To Communicate With You

• Send authentication codes and security alerts
• Provide customer support
• Send important updates about the Service (with your consent)
• Respond to your inquiries and requests

3.4 For Legal and Security Purposes

• Comply with legal obligations
• Enforce our Terms of Service
• Protect against fraud and abuse
• Ensure the security of the Service

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who help us operate the Service:

• OpenAI: Your article text and custom instructions for AI generation (not permanently stored by them)
• Stripe: Payment information for subscription processing
• Azure/Microsoft: Hosting and database services

4.2 With Other Users

• Collaboration Features: Your public profile information (publication name, description, categories) is visible to other users when you enable collaboration features
• Public Directory: If you opt in, your publication details may appear in our collaborations directory

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities.

4.4 Business Transfers

If StackBuddy is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

5. Browser Extension and Local Processing

Our Chrome extension operates with a strong focus on privacy:

• Local Publishing: Note publishing happens entirely in your browser - we never access Substack on your behalf from our servers
• No Credential Storage: We do not store or transmit your Substack password or login credentials
• Session-Based: The extension uses your existing Substack session in Chrome
• Minimal Permissions: The extension only requests permissions necessary for its functionality

6. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes described in this policy:

• Account Data: Retained while your account is active
• Content: Stored until you delete it or close your account
• Usage Logs: Retained for up to 90 days for security and debugging purposes
• Payment Records: Retained as required by law for tax and accounting purposes

When you close your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.

7. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption of data in transit (HTTPS/TLS)
• Encryption of sensitive data at rest
• Regular security assessments
• Access controls and authentication
• Secure hosting with Microsoft Azure

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.

8. Your Rights and Choices

8.1 Access and Update

You can access and update your account information at any time through the Service settings.

8.2 Data Portability

You can export your notes and content from the Service at any time.

8.3 Deletion

You can delete individual notes or your entire account. Contact us at hello@stackbuddy.io to request account deletion.

8.4 Marketing Communications

You can opt out of marketing emails by following the unsubscribe link in any email we send. Note that we will still send you essential service-related emails.

8.5 Cookies

You can configure your browser to refuse cookies, but this may limit your ability to use certain features of the Service.

8.6 GDPR Rights (EU Users)

If you are in the European Union, you have additional rights under GDPR:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

To exercise these rights, contact us at hello@stackbuddy.io.

9. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately and we will delete such information.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to Germany and other countries where we operate.

For EU users, we ensure adequate protection through standard contractual clauses approved by the European Commission.

11. Third-Party Links

The Service may contain links to third-party websites or services (such as Substack). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

12. AI and Automated Processing

We use AI (provided by OpenAI) to generate content suggestions. This processing is based on:

• Your explicit request for AI generation
• The content you provide (articles, custom instructions)
• Your writer profile preferences

AI-generated content is not used to train OpenAI's models. You always have the option to not use AI features.

13. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know whether personal information is sold or disclosed
• Right to say no to the sale of personal information (we do not sell information)
• Right to access your personal information
• Right to equal service and price

To exercise these rights, contact us at hello@stackbuddy.io.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date
• Sending you an email notification (for significant changes)

Your continued use of the Service after changes become effective constitutes your acceptance of the revised policy.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: hello@stackbuddy.io
Address: Patrick God, Benzstra�e 8, 65779 Kelkheim, Germany

For GDPR-related inquiries, please include "GDPR Request" in your email subject line.

16. Data Protection Officer

For questions about data protection, you can contact:
Email: hello@stackbuddy.io