StandslyBack

Privacy Policy

Last updated: April 22, 2026

This page explains what Standsly collects, what we do with it, and what rights you have. We run a tool for logging your own work, not an ad network — our goals and yours are aligned.

The short version

  • We only collect data we need to run the product.
  • We do not sell your data. Ever.
  • We do not run ads or third-party marketing trackers.
  • Your log entries are sent to Anthropic (Claude) when you click “Generate summary” — and only then.
  • You can export everything as CSV or delete your account any time, no questions.

What we collect

Account data

  • Email address (required for login)
  • Full name and avatar URL (optional, from signup or Google OAuth)
  • Timezone (for correct daily rollover of entries)
  • Reminder preferences (time and whether enabled)

Work log data

  • Log entries: the text, duration, category, and timestamp you provide
  • Derived metadata: project tags and ticket keys parsed from entry text
  • Soft-deleted entries (we never hard-delete — kept in case you undo)
  • AI summaries you generate

Billing data

Payments go through Lemon Squeezy (our Merchant of Record). We receive a customer id and subscription status from them; we never see or store your card number. See Lemon Squeezy's privacy policy.

Who else touches your data

We use a small number of third-party services to run the product. Each one is scoped to a specific job:

  • Supabase — hosts the database and handles authentication. Your data lives here.
  • Anthropic (Claude) — when you generate an AI summary, the relevant log entries are sent to Anthropic's API to produce the summary. Per Anthropic's published policy, API inputs are not used to train their models.
  • Resend — sends transactional email (sign-in links, reminders, weekly teasers).
  • Inngest — runs the scheduled jobs behind reminders and summaries.
  • Lemon Squeezy — processes payments and collects regional taxes as Merchant of Record.
  • Vercel — hosts the application and serves traffic.

We do not sell, rent, or share your data with any party that is not directly required to deliver the product.

Cookies and tracking

We use a session cookie (from Supabase) to keep you signed in. That is the only cookie we set. We do not use Google Analytics, Facebook Pixel, Segment, or any other behavioral tracking.

How long we keep it

  • Active account data is retained for as long as your account exists.
  • If you delete your account, your profile and all associated log entries, summaries, and preferences are removed within 30 days. Billing records required for accounting may be retained for up to 7 years as required by applicable tax law.
  • Soft-deleted entries are kept indefinitely while your account is active, so you can restore them.

Your rights

Regardless of where you live, you can:

  • Export — download all your entries as CSV from Settings → Categories → Export.
  • Correct — edit any log entry directly, or update your profile in Settings.
  • Delete — remove your account and all associated data from Settings → Danger Zone.
  • Object — email us at standslyai@gmail.com if you want us to stop processing your data for any other reason.

Users in the EU, UK, and California have additional rights under GDPR, UK-GDPR, and CCPA respectively. Email us and we'll respond within 30 days.

Security

All traffic is served over HTTPS. Data at rest is encrypted at the database level by Supabase. Access to production data is restricted to the smallest set of operators necessary to keep the service running.

No system is perfectly secure. If you discover a vulnerability, please report it to standslyai@gmail.com and we'll acknowledge within 2 business days.

Children

Standsly is not intended for anyone under 16. We do not knowingly collect data from children.

Changes to this policy

If we make a material change to this policy, we will email all active users at least 14 days before it takes effect. Minor edits (typos, reformatting) will be reflected by updating the “Last updated” date above.

Contact

Questions, complaints, or data requests: standslyai@gmail.com.