Privacy Policy

This policy describes how the yournextsaas demo application processes information when you use the hosted boilerplate. Replace this document with counsel-reviewed text before you onboard paying customers.

What we collect

• Account data: name, email, and authentication identifiers required to sign in and recover access.
• Workspace data: organization names, slugs, roles, and billing metadata needed to run multi-tenant features.
• Technical data: standard server logs, session tokens, and product analytics events you opt into emitting from the starter.

How we use data

We use the above categories to operate authentication, enforce access controls, bill workspaces through Stripe, and improve reliability. We do not sell personal data. Subprocessors (for example your database host or Stripe) process data under their own agreements.

Retention

Sessions expire according to your auth configuration. You can delete test accounts during development. Production retention schedules should be documented here once finalized.

Your choices

Users may request export or deletion where applicable law requires it. Wire a privacy inbox before publishing this route publicly.

Contact

For privacy questions, contact the team operating this deployment and list a monitored address in production.