Privacy Policy for PebbleBill

Last Updated: November 16, 2024

1. Introduction

PebbleBill ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our subscription management application.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, and password
  • Authentication Data: OAuth tokens when using social sign-in (Google, Apple)

2.2 Financial Information via Plaid

We use Plaid Technologies, Inc. ("Plaid") to connect your bank accounts. When you link your bank account:

  • Plaid collects your banking credentials and transaction data
  • We receive transaction data, account balances, and account metadata from Plaid
  • We do NOT store your bank login credentials
  • For more information, see Plaid's Privacy Policy at https://plaid.com/legal/

2.3 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on the application
  • Device Information: Browser type, operating system, IP address
  • Cookies: Session cookies for authentication and functionality

3. How We Use Your Information

We use your information to:

  • Provide subscription tracking and management services
  • Detect and analyze recurring subscription payments
  • Send notifications about upcoming payments and subscription changes
  • Improve our service and develop new features
  • Communicate with you about your account
  • Comply with legal obligations

4. Data Sharing and Disclosure

4.1 We DO NOT Sell Your Data

We do not sell, rent, or trade your personal or financial information to third parties.

4.2 Service Providers

We share information with trusted service providers:

  • Plaid: For secure bank account connectivity
  • AWS: For hosting and infrastructure (encrypted storage)
  • Better Auth: For authentication services

4.3 Legal Requirements

We may disclose information if required by law, court order, or government request.

5. Data Security

We implement industry-standard security measures:

  • Encryption in Transit: All data transmitted using TLS 1.2 or higher
  • Encryption at Rest: Database encryption via AWS RDS
  • Access Controls: Role-based access with multi-factor authentication
  • Secure Authentication: JWT tokens with Better Auth
  • Infrastructure Security: AWS managed services with automatic security patches

6. Data Retention and Deletion

6.1 Retention Period

  • Active Accounts: We retain your data while your account is active
  • Transaction History: Retained for subscription tracking purposes
  • Deleted Accounts: Data is deleted within 30 days of account deletion

6.2 Your Right to Delete

You can request deletion of your account and all associated data at any time through your account settings or by contacting us.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and data
  • Data Portability: Request a copy of your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, contact us at og8studios@gmail.com.

8. Children's Privacy

PebbleBill is not intended for users under 18. We do not knowingly collect information from children under 18. If you believe a child has provided us with personal information, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and stored on servers located in the United States. By using PebbleBill, you consent to such transfers.

10. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

11. Cookies and Tracking

We use cookies for:

  • Essential Cookies: Authentication and session management (required)
  • Analytics: Understanding how users interact with our service (optional)

You can control cookies through your browser settings, but disabling essential cookies may limit functionality.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

  • Posting the updated policy with a new "Last Updated" date
  • Sending an email notification (for significant changes)

13. Contact Us

If you have questions about this Privacy Policy or our privacy practices:

Email: og8studios@gmail.com Website: https://pebblebill.com

14. Data Protection Officer

For privacy-related inquiries or to exercise your rights, contact our Data Protection Officer at og8studios@gmail.com.

← Back to Home