Skip to content
Podswift

Privacy Policy

Last updated: June 5, 2026

How Podswift handles data across accounts, product workflows, and connected integrations.

Effective date: May 2026

1. What Podswift Is Today

Podswift provides a public marketing site, legal pages, account and dashboard features, Etsy integration, AI-assisted listing workflows, and product communications.

2. Product Update Data

When you request product updates or contact us, we collect:

  • Email address.
  • Optional Etsy shop URL.
  • Optional note about your workflow pain point.
  • IP address and user-agent for rate limiting, abuse prevention, and diagnostics.

Product update and contact data is retained only as long as needed to respond, send requested updates, prevent abuse, and meet legal obligations.

3. Account Data

When you create an account, we may process:

  • Email address and authentication records handled by Supabase Auth.
  • Profile data such as full name, avatar URL, onboarding status, and preferences.
  • Subscription status and safe shop metadata used by connected workflows.

4. Integrations

When Etsy or Pinterest integrations are used, we request explicit OAuth consent and only the minimum scopes needed for the feature you use. OAuth tokens will be stored encrypted server-side and will never be exposed to the browser.

Pinterest data will not be stored beyond what Pinterest terms allow. Etsy data is cached only as needed to provide Podswift functionality and maintain expected display freshness.

5. AI and Uploaded Designs

We do not use uploaded designs to train public AI models. When AI features process your designs or listing content, they are used to provide the requested Podswift workflow unless we clearly ask for separate consent.

6. Sharing

We do not sell personal information. We do not share data with advertisers. We use service providers only to operate the product, including hosting, authentication, database, storage, analytics, payments, and approved API integrations.

7. Security

We use HTTPS, Supabase Auth, row-level security, service-role isolation for sensitive server operations, and encrypted storage for integration credentials. No system is perfectly secure, but we design Podswift to avoid exposing secrets or OAuth tokens to client-side code.

8. Your Rights

You can request access, correction, or deletion of your personal data by contacting privacy@podswift.app. Deleted accounts are intended to be purged within 30 days once account deletion is implemented.

9. Cookies

Podswift uses essential cookies for authentication and security. We do not use third-party advertising cookies.

10. Contact

Questions about privacy can be sent to privacy@podswift.app.