Back to home

Privacy Policy

Last updated: April 2026

1. Information We Collect

We collect information you provide through Google OAuth (name, email, profile picture), experiment data you create (hypotheses, target audiences, value propositions), payment information processed by Stripe (we do not store card numbers), and usage data (pages visited, features used, landing page views).

2. How We Use Your Data

We use your data to provide and improve the Platform, generate AI-powered landing pages and validation reports, process payments, send service-related communications (experiment completion, billing), display public experiment results in the community feed (if you choose public visibility), and generate aggregated market insights.

3. Data Sharing

We do not sell your personal data. We share data with Stripe for payment processing, Azure/OpenAI for AI content generation (experiment details only, anonymized when possible), and analytics providers for Platform improvement. Public experiments display results in the community feed, visible to other users.

4. Cookies and Tracking

We use essential cookies for authentication (JWT token), preference cookies for language selection (locale), and analytics cookies for understanding Platform usage (Vercel Analytics). You can control cookie preferences through your browser settings.

5. Data Security

We implement industry-standard security measures including encrypted data transmission (HTTPS/TLS), secure authentication via Google OAuth, rate limiting and CORS protection, regular security audits, and encrypted database connections. No system is 100% secure, but we take reasonable measures to protect your data.

6. Your Rights

You have the right to access all your data (Settings > Export Data), correct your information (Profile page), delete your account and all data (Settings > Delete Account), and opt out of public experiment visibility. For GDPR/LGPD requests, contact support@signaltest.io.

7. Data Retention

We retain your data for as long as your account is active. Deleted accounts have their data removed within 30 days. Payment records are retained for 7 years as required by financial regulations. Anonymized aggregate data may be retained indefinitely for market analysis.

8. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email. The 'last updated' date at the top of this page indicates the most recent revision.

9. Contact

For privacy-related questions, contact our data protection team at support@signaltest.io.