Privacy Policy
Last updated: November 2025
Your privacy matters to us. We're committed to protecting your data and being transparent about how we use it.
Information We Collect
We collect and process the following types of information to provide our services:
Account Information
- Email address (from Google OAuth)
- Name and profile picture
- Login timestamps and authentication tokens
Idea Content
- Startup ideas and descriptions you submit
- AI-generated analysis and reports
- Saved research results and annotations
Usage Data
- Number of idea validations performed
- Features accessed and frequency of use
- Browser type, device info, IP address
Billing Information
- Payment method details (tokenized by Stripe)
- Billing address and transaction history
- We never store full credit card numbers
How We Use Your Information
We use your information to provide, improve, and protect our services:
- Provide AI-powered startup validation services
- Process your idea submissions and generate analysis
- Enforce usage limits based on your subscription plan
- Process payments and manage subscriptions
- Send service updates and security alerts
- Improve our AI models and service quality
- Prevent fraud and maintain security
- Comply with legal obligations
Data Storage & Security
We implement industry-standard security measures to protect your data:
We use industry-standard security practices through our service providers:
- Google Firebase - Authentication and database (ISO 27001, SOC 2 certified)
- Stripe - Payment processing (PCI DSS Level 1)
- Google Cloud - AI processing
While we implement reasonable safeguards through these providers, no system is 100% secure.
Third-Party Services
We share your data with the following trusted service providers:
For processing your idea submissions and generating analysis. Google does not use your data for model training. Data Processing Agreement in place.
For payment processing and subscription management. PCI DSS Level 1 compliant.
For hosting and infrastructure services. SOC 2 Type II certified.
For authentication and database services.
We do NOT sell your personal data to third parties.
Cookies
We use cookies to provide and improve our services:
Strictly Necessary
Essential for the Service to function:
firebase_auth_token
Session
session_id
Session
Functionality
Remember your preferences:
theme_preference
1 year
onboarding_complete
1 year
Analytics Requires Consent
Help us understand usage patterns:
_ga
2 years
_gid
24 hours
Your Rights
You can:
- Access your data by contacting us
- Delete your account in settings
- Export your data by request
We aim to respond to requests within 30 days.
Contact: info@startupvision.ai
We are committed to data privacy and working toward GDPR alignment. California residents may have additional rights under CCPA.
Data Retention
We retain your data for the following periods:
| Data Type | Retention Period |
|---|---|
| Active Accounts | Indefinitely while account is active |
| Canceled Accounts | 90-day grace period, then deleted |
| Backups | 30 days for disaster recovery |
| API Logs | 30 days for security and debugging |
| Billing Records | 7 years as required by law |
Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover we have collected data from a child under 13, we will delete it immediately.
If you believe we have collected information from a child under 13, please contact us at info@startupvision.ai.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Sending an email to your registered email address at least 30 days before changes take effect
- Posting a notice in the Service
- Updating the "Last updated" date at the top of this policy
Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.
Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, please contact us: