CopyCoder LogoCopyCoder

Privacy Policy

Last updated: February 12, 2025

This Privacy Policy describes how CopyCoder collects, uses, and shares information about you when you use our website copycoder.ai and related services.

1. Information We Collect

1.1 Authentication Data

We use Supabase, a secure authentication and database service, to manage user accounts. When you use our Services, we collect:

  • Email address for authentication purposes
  • OTP (One-Time Password) verification status
  • Authentication timestamps
  • Session data

1.2 Account Information

When you create an account through our OTP verification system:

  • Email address for sending verification codes
  • Account creation date
  • Last login information
  • Session tokens

2. How We Use Your Information

We use your information to:

  • Send one-time verification codes via email
  • Verify your identity through secure OTP verification
  • Provide access to our Services
  • Maintain account security
  • Send necessary service emails (including verification codes)
  • Monitor and prevent fraud or abuse
  • Improve our Services
  • Comply with legal obligations

3. Email Communications Specific Practices

3.1 Email Collection and Usage

  • We only send emails to users who have explicitly signed up for our service
  • Email addresses are collected solely through our authentication process
  • We do not purchase email lists or collect emails from third parties
  • All emails are strictly for account verification and service functionality
  • Verification codes are temporary and expire after a short period

3.2 Email Opt-Out Rights

  • Users can deactivate their accounts at any time
  • We send essential service-related emails necessary for verification
  • We my send occasional marketing or promotional emails

3.3 Email Service Providers

We use Mailgun as our email service provider to send verification codes. Mailgun processes this information in accordance with their privacy policy and security standards. We use Loops to send onboarding emails.

4. Data Storage and Processing

4.1 Data Storage

  • User data is stored securely in Supabase's infrastructure
  • All data is encrypted at rest and in transit
  • Authentication data is handled through Supabase's secure authentication system

4.2 Security Measures

We implement comprehensive security measures including:

  • Secure OTP generation and validation
  • Regular security audits
  • Access controls and monitoring
  • Session management and timeout policies

5. Information Sharing

We share your information only in limited circumstances:

  • With Supabase for authentication and data storage
  • With email service providers to send verification codes
  • When required by law or to protect rights
  • With your explicit consent

We do not sell your personal information to third parties.

6. Your Rights and Choices

You have the right to:

  • Access your personal information
  • Request deletion of your account
  • Opt out of non-essential communications
  • Update your email address
  • Request your data export

7. Data Retention

  • Authentication logs are retained for security purposes for 30 days
  • Account information is retained while your account is active
  • Deleted account data is permanently removed within 30 days
  • Session data is automatically cleared after expiration

8. Children's Privacy

Our Services are not intended for children under 13. We do not knowingly collect information from children under 13.

9. Updates to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our Services.

10. Contact Us

For privacy-related questions:

11. International Data Transfers

Your data may be processed in countries where Supabase operates. We ensure appropriate safeguards are in place for international data transfers.

12. Legal Basis for Processing

We process your data based on:

  • Contract fulfillment (providing our Services)
  • Legal obligations
  • Legitimate business interests
  • Your consent (for optional features)

13. Cookie Policy

We use essential cookies for:

  • Session management
  • Authentication status
  • Security purposes
  • Service functionality

14. Data Protection Rights

Under data protection laws, you have rights to:

  • Access your data
  • Correct your data
  • Delete your data
  • Object to processing
  • Data portability
  • Withdraw consent

15. Third-Party Services

Our Services use:

  • Supabase for authentication and data storage
  • Mailgun for sending verification codes
  • Analytics tools for service improvement

Each third-party service has its own privacy policy and data handling practices.

16. Security Measures

We maintain appropriate security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include:

16.1 Technical Safeguards

  • Encryption of data in transit and at rest
  • Secure access controls
  • Regular security updates
  • Intrusion detection systems
  • Firewalls and network security

16.2 Administrative Safeguards

  • Regular security assessments
  • Employee access controls
  • Security training and policies
  • Incident response planning
  • Regular system backups

16.3 Physical Safeguards

  • Secure data centers
  • Access restrictions
  • Environmental controls
  • Backup power systems
  • Disaster recovery procedures

17. Compliance

We comply with applicable data protection laws and regulations, including:

  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • Other applicable privacy laws

For any questions about this Privacy Policy, please contact us at [email protected]