SubvisorySubvisory

Privacy Policy

Last updated: March 4, 2026

1. Introduction

Subvisory ("we", "us", or "our") operates the website at https://www.subvisory.com. This Privacy Policy explains how we collect, use, and protect your information when you use our service.

2. Information We Collect

We collect only the information necessary to provide our service:

  • Account information: email address, name, and password (or Google OAuth credentials) when you register.
  • Subscription data: the subscription details you manually enter, including service names, costs, billing cycles, and categories.
  • Usage data: basic analytics such as pages visited and feature usage to improve our service.
  • API keys: if you generate API keys, we store a hashed version for authentication.

3. What We Do Not Collect

Subvisory is privacy-first. We do not:

  • Connect to your bank accounts or financial institutions.
  • Access your payment card numbers or bank credentials.
  • Sell, rent, or share your personal data with third parties for marketing purposes.
  • Use tracking cookies for advertising.

4. How We Use Your Information

  • To provide, maintain, and improve our subscription tracking service.
  • To send transactional emails (verification, password reset, payment reminders, trial alerts).
  • To process payments through our payment provider (Polar.sh) for paid plans.
  • To respond to support requests.

5. Data Storage and Security

Your data is stored on secure, encrypted databases (Neon PostgreSQL) with automatic backups. All connections use TLS encryption. We follow industry-standard security practices to protect your information from unauthorized access, alteration, or destruction.

6. Third-Party Services

We use a limited number of third-party services:

  • Neon: database hosting and authentication.
  • Vercel: application hosting.
  • Resend: transactional email delivery.
  • Polar.sh: subscription billing and payment processing.

Each provider processes data only as necessary to deliver their service and is bound by their own privacy policies.

7. Data Retention

We retain your data for as long as your account is active. Workspace activity logs are retained for 30 days. If you delete your account, all associated data is permanently removed within 30 days.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your account and all associated data.
  • Export your subscription data (Business plan).

To exercise any of these rights, contact us at hello@subvisory.com.

9. Cookies

We use essential cookies only for authentication and session management. We do not use advertising or third-party tracking cookies.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at hello@subvisory.com.