BoutiquePad logo iconBoutiquePad

Privacy Policy

Last updated: April 29, 2026

This Privacy Policy explains how Tractionify ("we", "us", "our") collects, uses, and protects information when you use BoutiquePad (the "Service").

1. What we collect

  • Account information. Your name, email address, and password (stored hashed by Supabase Auth).
  • Payment information. Billing handled by Stripe. We receive a Stripe customer ID and subscription status; we do not see or store your full card details.
  • Service usage data. Saved lists, workbook entries, notes, tags, and any preferences you set.
  • Server logs. Standard request metadata (IP, user agent, timestamp) for security and abuse-prevention purposes.

2. How we use your data

  • To operate the Service and personalize your experience.
  • To process payments and manage your subscription.
  • To send transactional email (account confirmation, password reset, billing receipts).
  • To prevent abuse and secure the Service.
  • To comply with legal obligations and respond to lawful requests.

We do not sell your personal data. We do not use your workbook entries or saved data to train machine learning models or share them with other users.

3. Third-party processors

We rely on a small set of vetted vendors to operate the Service:

  • Supabase — database, authentication, file storage.
  • Stripe — subscription billing and payment processing.
  • Vercel (or our hosting provider) — application hosting.

Each vendor processes data only as needed to provide their service to us.

4. Cookies

We use first-party cookies for essential session management (keeping you logged in) and to remember UI preferences (e.g., sidebar state). We don't use third-party advertising or tracking cookies.

5. Data retention

We keep your account data for as long as your account is active. If you cancel, we retain billing records as required by law and delete other personal data within 30 days unless retention is necessary for legitimate operational reasons (fraud prevention, dispute resolution).

6. Your rights

Depending on where you live (e.g., EU/UK under GDPR, California under CCPA), you may have rights to access, correct, export, or delete your personal data. To exercise these rights, email support@tractionify.com from the address on your account. We respond within 30 days.

7. Children

The Service is not directed to children under 18, and we do not knowingly collect data from minors.

8. International transfers

Our processors operate globally, including in the United States. By using the Service you consent to your data being processed in those locations subject to standard contractual safeguards.

9. Changes to this Policy

We'll update the "Last updated" date above when we change this Policy. Material changes will be communicated via email or in-app notice.

10. Contact

Questions, requests, or complaints? support@tractionify.com.