Back to Home

Privacy Policy

Last Updated: December 14, 2025

1. Introduction

Proofa ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our authentication, session management, and licensing platform.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, and profile picture from OAuth providers (Google, GitHub, etc.)
  • Project Data: Project names, app configurations, and team member information
  • Payment Information: Billing details processed through third-party payment processors (we do not store credit card numbers)

2.2 Automatically Collected Information

  • Usage Data: API calls, authentication events, session activity
  • Technical Data: IP addresses, browser type, device information, referring URLs
  • Audit Logs: Actions performed within your account for security and compliance

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process authentication and manage user sessions
  • Send transactional emails and service notifications
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations and enforce our terms
  • Analyze usage patterns to improve our platform

4. Information Sharing

We do not sell your personal information. We may share your information with:

  • Service Providers: Infrastructure providers (Vercel, Upstash, Turso), email services (Resend), and payment processors
  • OAuth Providers: When you authenticate through Google, GitHub, etc.
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

5. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS/SSL) and at rest
  • Secure session management with configurable TTLs
  • Rate limiting and DDoS protection
  • Regular security audits and penetration testing
  • Access controls and audit logging

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. When you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal information
  • Correction: Update inaccurate or incomplete information
  • Deletion: Request deletion of your account and data
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to certain processing activities

To exercise these rights, contact us at privacy@proofa.com.

8. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential Cookies: Session management and authentication (required)
  • Analytics: Understanding usage patterns (Vercel Analytics)
  • Security: Fraud detection and rate limiting

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers.

10. Children's Privacy

Our services are not intended for users under 13 years of age. We do not knowingly collect information from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through our platform. Continued use after changes constitutes acceptance.

12. Contact Us

If you have questions about this Privacy Policy, please contact us at: