Privacy Policy

Last updated: March 30, 2026

1. Information We Collect

We collect information you provide directly: your name, email address, and organization details when you create an account. We also collect usage data such as room activity, voting history, and feature usage to improve our service.

2. How We Use Your Information

• Provide and maintain the Fibo service
• Process payments and manage subscriptions via Stripe
• Send transactional emails (account confirmation, payment receipts)
• Improve and optimize the service

3. Data Storage & Security

Your data is stored securely on Supabase (PostgreSQL) with row-level security policies. Passwords are hashed using bcrypt. Payment information is processed and stored exclusively by Stripe — we never store card details.

4. Third-Party Services

• Supabase — Authentication and database
• Stripe — Payment processing
• Anthropic — AI estimation features (story data sent for analysis)
• Sentry — Error monitoring
• Vercel — Hosting and deployment

5. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking or advertising cookies.

6. Your Rights (GDPR / CCPA)

You have the right to:

• Access your personal data
• Request correction or deletion of your data
• Export your data in a portable format
• Withdraw consent at any time

To exercise these rights, contact us at privacy@planningpoker.app.

7. Data Retention

We retain your data for as long as your account is active. Upon account deletion, your personal data is removed within 30 days. Anonymized usage statistics may be retained indefinitely.

8. Changes

We may update this policy from time to time. We will notify you of material changes via email or in-app notification.

9. Contact

Questions? Contact us at privacy@planningpoker.app.