Privacy Policy
Last updated: May 2026
1. What We Collect
We collect: your full legal name, email address, phone number, password (hashed — never stored in plain text), any bio or profile information you choose to add, posts and comments you create, and technical data such as IP address and browser type for security and abuse prevention.
2. Verification Data
If you request a verified badge, you may submit identity documents or professional credentials. These are reviewed manually and not stored beyond what is necessary to complete verification. We use Stripe Identity for identity verification — their privacy policy governs how they handle document data.
3. How We Use Your Data
We use your data to: operate your account, send email and SMS verification codes, send notifications you have opted into, enforce our Terms of Service, and improve the platform. We do not sell your data to third parties.
4. Public Information
Your name and any posts you set to PUBLIC are visible to anyone. Posts set to FOLLOWERS are visible to users who follow you. Posts set to CLIENTS are visible only to members of your client group. If you hide your profile, your name is not shown publicly — but you may not interact with content.
5. Third-Party Services
We use Twilio for SMS verification, SendGrid for email delivery, and PostgreSQL for data storage. These services have their own privacy policies. We share only the minimum data necessary for each service to function.
6. Data Retention
We retain your data for as long as your account is active. You may request account deletion by emailing support@profeed.io. Upon deletion, your posts, comments, and personal data will be removed within 30 days.
7. Security
Passwords are hashed using bcrypt. Authentication uses secure, httpOnly cookies. We take reasonable technical measures to protect your data, but no system is completely secure.
8. Your Rights
You have the right to access, correct, or delete your personal data. Contact us at support@profeed.io to exercise these rights.