Privacy Policy

Introduction

Welcome to GiftList. We are committed to protecting your privacy and ensuring you have a positive experience using our service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application.

By using GiftList, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Information You Provide

When you use GiftList, we collect:

• Account Information: Email address, name, and profile picture (when signing in with Google)
• Content You Create: Names of people, gift ideas, birthdays, anniversaries, and any other information you voluntarily provide

Automatically Collected Information

• Usage Information: Pages you visit, features you use, time and date of visits
• Technical Information: IP address, browser type, device type, error logs

How We Use Your Information

We use the information we collect to:

• Provide and maintain the service
• Store and display your gift lists
• Improve user experience and develop new features
• Send authentication emails
• Ensure security and prevent fraud

We will never:

• Sell your personal information to third parties
• Send you marketing emails without your consent
• Share your gift lists with anyone else

Data Storage and Security

Your data is stored securely using:

• Supabase (our database provider) - SOC 2 compliant
• Vercel (our hosting provider) - industry-standard security

We implement appropriate security measures including encryption in transit (HTTPS/SSL), encryption at rest, and Row Level Security to ensure users can only access their own data.

Your Data Rights

You have the following rights:

• Access: View all your data at any time by logging in
• Correction: Edit or update your information directly in the app
• Deletion: Delete individual items or your entire account
• Export: Request a copy of your data

To delete your account or export your data, please contact us at hello@gift-list.app.

Third-Party Services

We use the following third-party services:

• Google OAuth: For sign-in (name, email, profile picture)
• Supabase: Database storage
• Vercel: Web hosting and analytics

Cookies and Tracking

We use essential cookies for authentication and session management, plus analytics cookies to understand usage patterns. You can control cookies through your browser settings.

Children's Privacy

GiftList is not intended for children under 13. We do not knowingly collect information from children under 13.

Data Retention

We retain your data while your account is active. When you delete your account, all data is permanently deleted within 30 days.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of changes by updating the "Last Updated" date and displaying a notice within the app for significant changes.

GDPR Compliance (For EU Users)

If you are located in the European Economic Area, you have additional rights under GDPR including:

• Right to access your data
• Right to rectification
• Right to erasure ("right to be forgotten")
• Right to data portability
• Right to object to processing

To exercise these rights, contact us at hello@gift-list.app.

Contact Us

If you have questions about this Privacy Policy, please contact us:

Email: hello@gift-list.app
Website: gift-list.app