Legal
Privacy Policy
Effective May 1, 2026
Spanda, LLC ("Spanda," "we," "us") respects your privacy. This Policy explains what information we collect when you use our software products, what we do with it, and the choices you have.
Plain-English summary: we collect what we need to run the service, charge you fairly, and keep things working. We don't sell your personal information. You can email us at hello@spanda.llc with any privacy question or to ask us to delete your data.
What we collect01
Account and billing information
When you create an account or make a purchase, we collect the information you give us directly. This typically includes your name, email address, password (stored as a one-way hash), and billing details. Billing details are entered into Stripe and we receive only what Stripe shares back with us, including the last four digits of the card, the brand, and the country of issue. We do not store full card numbers on our servers.
Usage and device data
When you use one of our products, we automatically collect technical data about how you interact with it. This includes the pages or features you visit, the actions you take, error and performance metrics, your IP address, browser type, operating system, and approximate location derived from the IP address. We use this data to operate the service, debug issues, prevent abuse, and improve our products.
Your content
If a product lets you upload, create, or store content, we hold that content on your behalf to provide the service. We treat your content as confidential.
Communications
If you email us or fill out a form, we keep a record so we can respond and follow up.
Cookies and similar technologies
We use cookies and equivalent technologies (local storage, server-set tokens) to keep you signed in, remember your preferences, and understand how the service is used in aggregate. You can control cookies through your browser settings; some parts of the service may not work without them.
How we use it02
We use the information we collect to:
- Provide, operate, secure, and improve our products.
- Process payments, send invoices, and prevent fraud.
- Communicate with you about your account, billing, security, and material product changes. These messages are operational and you can't opt out of them while you have an active account.
- Send occasional product updates and announcements, which you can unsubscribe from at any time.
- Comply with legal obligations and respond to lawful requests.
- Develop new features and improve existing ones, including by analyzing data in aggregated or de-identified form.
Sharing03
We don't sell your personal information.
We share information with the following categories of recipients, only as needed to operate the service or comply with the law:
Service providers
We use a small set of third-party providers to host, secure, and operate our products. They process data on our behalf under written agreements that limit them to performing services for us. These currently include:
- Stripe, Inc. for payment processing.
- Cloud infrastructure and hosting providers.
- Email-delivery and customer-support tools.
- Error-monitoring and analytics tools.
We review providers before adopting them and update this list as it changes.
Legal authorities
We may disclose information if we're required to by law, subpoena, court order, or other legal process, or where we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
Business transfers
If Spanda is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction. We'll notify you and provide choices where required by law.
Data retention04
We keep account data for as long as your account is active and for a reasonable period after to comply with legal, accounting, and operational obligations (typically up to seven years for billing records). Backups are rotated on a regular schedule and content in backups is overwritten in due course after deletion. You can request deletion of your account and associated personal data by emailing hello@spanda.llc; we'll honor the request unless we're legally required to keep specific records.
Your rights05
Depending on where you live, you may have the right to:
- Access the personal data we hold about you.
- Correct inaccurate data.
- Delete your data.
- Receive a copy of your data in a portable format.
- Object to or restrict certain processing.
- Withdraw consent where we rely on consent as the legal basis.
To exercise any of these rights, email hello@spanda.llc. We may need to verify your identity before acting on the request. We won't discriminate against you for exercising these rights.
If you're in the European Economic Area, the United Kingdom, or another region with similar laws, the legal bases on which we process your data are: performance of a contract (to deliver the service), legitimate interests (to operate, secure, and improve the service), legal obligation (tax, accounting, fraud prevention), and consent where required.
Security06
We use reasonable technical and organizational measures to protect data we hold, including encryption in transit, access controls, and routine review of systems and practices. No system is perfectly secure; we can't guarantee absolute security and we don't promise that any specific incident will be prevented. If we become aware of a breach affecting your personal data, we'll notify you and any required authorities without undue delay, as required by applicable law.
International transfers07
Spanda is based in the United States and our infrastructure is located in the United States. If you use our services from outside the U.S., your data will be transferred to and processed in the U.S., where data-protection laws may differ from those of your home country. By using the service, you consent to that transfer.
Children08
Our services are not directed at children under 13 (or 16 where applicable local law sets a higher age). We do not knowingly collect personal data from children under that age. If you believe we have, contact us and we'll delete it.
Changes to this Policy09
We may update this Policy from time to time. We'll post the updated version with a new effective date and, for material changes, notify you by email or through the service before the changes take effect.
Contact10
For privacy questions, requests, or concerns, email hello@spanda.llc. The data controller is Spanda, LLC, Connecticut, United States.