Legal

Privacy Policy

Effective · Effective date: [EFFECTIVE_DATE]
This privacy policy is a draft and should be reviewed by legal counsel before production launch.

1. Introduction

This Privacy Policy explains how [COMPANY_LEGAL_NAME] ("we") collects and uses information when you use StacksMesh OS.

2. Who We Are

[COMPANY_LEGAL_NAME], located at [COMPANY_ADDRESS]. Data protection contact: [DPO_CONTACT].

3. Scope of Policy

This policy covers information collected via the StacksMesh OS website, application, and related services.

4. Information We Collect

  • Name, email, company name
  • Workspace details and team member data
  • Client contact data and leads you add
  • Proposals, documents, and project data
  • Payment records
  • Support tickets
  • Usage logs, device and browser data

5. Information You Provide

Account details, workspace content, and any information you or your clients submit through the Service.

6. Workspace and Business Data

Data added to your workspace is controlled by the workspace owner and admins.

7. Client Portal Data

Client users see only data explicitly shared with them. The workspace controls that scope.

8. Payment and Billing Data

Billing details are handled by our payment processor. We store transaction metadata for accounting.

9. Automatically Collected Data

Usage metrics, error logs, IP address, and browser information for security and product improvement.

10. Cookies and Similar Technologies

See our Cookie Policy for details.

11. How We Use Information

  • Provide and improve the Service
  • Authenticate users and protect accounts
  • Send transactional notifications
  • Support customer requests

[LEGAL_BASES_PLACEHOLDER — contract performance, legitimate interests, consent where required].

13. How We Share Information

We share data with service providers strictly to operate the Service, and where required by law.

14. Third-Party Service Providers

Hosting, authentication, payment processing, email delivery, and analytics providers under data-processing agreements.

15. AI Processing

AI features may send content you author to AI providers to generate outputs. Do not include sensitive personal data in AI prompts unless permitted.

16. Data Retention

We retain data for as long as your workspace is active and for a reasonable period after cancellation, unless a longer retention is required by law.

17. Data Security

Workspace isolation, role-based access, encrypted storage, and audit logging.

18. International Data Transfers

[INTERNATIONAL_TRANSFERS_PLACEHOLDER — describe transfer mechanisms].

19. Your Privacy Rights

We aim to support privacy rights requests (access, correction, deletion, portability) where applicable.

20. Access, Correction, Deletion Requests

Contact [SUPPORT_EMAIL] to submit a request.

21. Marketing Communications

You can unsubscribe from marketing email at any time.

22. Children's Privacy

The Service is not directed to children under 16.

23. Changes to This Policy

We may update this policy. Material changes will be communicated.

24. Contact Information

[SUPPORT_EMAIL] · [COMPANY_ADDRESS]

Questions about this document?

Our team is happy to walk you through it. We usually respond within one business day.

Contact us