Subtrack Privacy Policy

1. Overview

This Privacy Policy explains how Subtrack, Inc. ("Subtrack", "we", "us", or "our") collects, uses, stores, shares, and protects your information when you use our Services. By using Subtrack, you consent to the practices outlined in this Privacy Policy.

Subtrack is committed to safeguarding the privacy of its users while providing intelligent SaaS spend analysis and optimization tools. We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date.

2. Information We Collect

We collect the following categories of data:

• Personal Identifiers: Name, email address, organization details
• Financial Information: Bank account and transaction data via Plaid
• Usage Data: Chrome extension activity including app domains visited, session durations, team identifiers, usage frequency
• Device and Technical Info: IP address, browser type, operating system, cookies, referring URLs
• Communications: Support messages, onboarding feedback, and user survey responses

3. How We Use Your Information

We use the information we collect to:

• Deliver and improve Subtrack's core services
• Provide dashboards, reports, and alerts on SaaS usage and spend
• Customize your experience and surface personalized recommendations
• Notify you of account activity, service changes, or policy updates
• Debug issues, enhance security, and monitor performance
• Comply with legal requirements and regulatory obligations

4. Sharing of Information

We do not sell your personal data. We share your information only as necessary with:

• Service Providers: Such as Plaid (financial data), Stripe (payments), and hosting or analytics partners
• Your Organization: If you are part of a team account, designated admins may access your usage data
• Regulators or Legal Authorities: As required by law, subpoena, or court order

5. Cookies and Tracking Technologies

Subtrack uses cookies and similar technologies to:

• Authenticate users and maintain sessions
• Analyze traffic and usage patterns
• Serve targeted ads on third-party platforms (e.g., LinkedIn, Meta, Google Ads)

You may opt out of non-essential cookies via browser settings or cookie consent tools.

6. Data Retention

We retain personal and usage data for as long as necessary to fulfill the purposes described in this Policy, or as required by law. By default, usage data is stored for 24 months unless otherwise requested.

7. Data Security

Subtrack applies industry-standard technical and organizational measures, including:

• End-to-end encryption of data in transit and at rest
• Least-privilege access controls and staff training
• Regular third-party security reviews and penetration testing

However, no method of transmission or storage is 100% secure. Users access Subtrack at their own risk.

8. Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Rectification: Correct inaccurate or incomplete information
• Erasure: Request deletion of your account and data
• Opt-out: Unsubscribe from marketing communications
• Data Portability: Export a machine-readable copy of your data

To exercise any of these rights, email us at privacy@subtrack.xyz. We may verify your identity before fulfilling your request.

9. International Data Transfers

Subtrack is based in the United States. If you are located outside the U.S., your information will be transferred to and processed in the U.S. By using our Services, you acknowledge and consent to this transfer.

10. Children's Privacy

Subtrack is a B2B product not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

11. Third-Party Links

Our dashboard may link to third-party sites (e.g., SaaS vendor billing pages). We are not responsible for their privacy practices. We encourage users to review third-party policies.

12. Changes to This Policy

We may periodically update this Privacy Policy. If material changes are made, we will notify users via email or app notification. Continued use of Subtrack indicates acceptance of the updated terms.

13. Contact

For any privacy-related inquiries or complaints, contact: