Privio

Privacy Policy

Last updated: February 28, 2026

1. Introduction

Privio ("we", "our", "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

When you create an account, we collect your email address and password (hashed).

Business Information

During onboarding, you provide business-related information such as industry, revenue range, data types collected, consumer counts, and operating states. This information is used solely to generate your compliance analysis.

Usage Data

We automatically collect usage data including pages visited, features used, browser type, and device information through our analytics provider (PostHog). This data is used to improve the Service.

Payment Information

Payment processing is handled by Stripe. We do not store your credit card numbers; Stripe processes and secures this information directly.

3. How We Use Your Information

  • Generate personalized compliance analyses and checklists
  • Provide and maintain the Service
  • Process payments and manage subscriptions
  • Send important service-related communications
  • Analyze usage patterns to improve the Service
  • Monitor for errors and security issues

4. Data Sharing

We do not sell your personal data. We share data only with:

  • Supabase — Database and authentication hosting
  • Stripe — Payment processing
  • Vercel — Application hosting
  • PostHog — Product analytics
  • Sentry — Error monitoring

Each provider processes data in accordance with their own privacy policies and our data processing agreements.

5. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS), row-level security in our database, and secure authentication via Supabase Auth.

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data
  • Export your data in a portable format
  • Opt out of analytics tracking
  • Withdraw consent for data processing

To exercise any of these rights, contact us at privacy@privio.app.

8. Cookies and Tracking

We use essential cookies for authentication and session management. Our analytics provider (PostHog) may set cookies for usage tracking. You can disable non-essential cookies through your browser settings.

9. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date.

11. Contact

Questions about this Privacy Policy? Contact us at privacy@privio.app.

Terms of Service · Back to Home