Privacy Policy

Last updated: March 15, 2026

1. What We Collect

We collect only the information necessary to provide the Service:

Data Purpose
Email addressAccount identification, service communications
UsernameAccount identification, ntfy channel assignment
Password (hashed)Account authentication — we never store plaintext passwords
Payment informationProcessed by Square — we do not store card numbers
Subscription statusManaging your access to the Service

2. What We Don't Collect

  • We use Google Analytics to understand site traffic and improve the service. Google Analytics collects anonymous usage data (pages visited, referral source, device type). No personally identifiable information is shared.
  • We do not collect device fingerprints or precise location data.
  • We do not use cookies for advertising or sell data to advertisers.

3. How We Use Your Data

Your information is used exclusively to:

  • Provide and maintain your subscription and notification service.
  • Send push notifications about product availability via ntfy.
  • Communicate important service updates (e.g., billing changes, outages).

4. Third-Party Services

We use the following third-party services:

  • Square — payment processing. Square handles all payment data under their own privacy policy.
  • ntfy — push notification delivery. Notifications are sent to your personal ntfy topic. ntfy is an open-source service; no personal data beyond the notification content is shared with it.
  • Cloudflare — DDoS protection, SSL, and Turnstile bot verification on the signup form.

5. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. We will only disclose information if required by law.

6. Data Retention

  • Account data is retained for as long as your account is active.
  • If you cancel your subscription, your account data is retained for 90 days in case you wish to resubscribe, then permanently deleted.
  • You may request immediate deletion at any time (see below).

7. Data Deletion

You can request complete deletion of your account and all associated data by contacting us on X (@bujusjujus). We will process deletion requests within 30 days.

8. Security

We take reasonable measures to protect your data, including:

  • Passwords are hashed using industry-standard algorithms — never stored in plaintext.
  • Payment processing is handled entirely by Square's PCI-compliant infrastructure.
  • Access to server infrastructure is restricted and authenticated.
  • All connections are encrypted via HTTPS/TLS.

9. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect information from minors.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated to subscribers via email or push notification. The "Last updated" date at the top reflects the most recent revision.

11. Contact

Privacy questions or data requests? Reach us on X (@bujusjujus).