Legal

Privacy Policy

Last updated: March 2026

1. Information We Collect

We collect: account info (name, email), usage data (pages visited, features used), project data (project names, files, messages, invoices), and client names/emails you enter.

2. How We Use Your Information

To provide and improve the service, send transactional emails (invoice notifications, approvals), and respond to support requests. We do not use your data for advertising.

3. Data Storage

Data is stored on Supabase infrastructure (PostgreSQL database, file storage). Servers are located in the EU and US.

4. Third-Party Services

We use: Paddle (payment processing), Resend (transactional email), Supabase (database and storage), Vercel (hosting). Each has their own privacy policy.

5. Client Portal Data

When you create a project, your clients' names and messages are stored and associated with your account. Clients access data via unique portal links you share.

6. Cookies

We use minimal cookies — only what's required for authentication sessions. No advertising or tracking cookies.

7. Data Retention

Your data is retained while your account is active. Upon account deletion, data is permanently removed within 30 days.

8. Your Rights

You can export or delete your data at any time from your account settings. To request full data deletion, email privacy@handoffs.app.

9. Children's Privacy

Handoffs is not intended for users under 16. We do not knowingly collect data from minors.

10. Changes to This Policy

We'll notify you via email if we make significant changes to this policy.

11. Contact

Privacy questions: privacy@handoffs.app