← Back to GhostSub

Privacy Policy

Last updated: June 30, 2026

1. What We Collect

We collect: your Google account email and profile picture (via OAuth), your phone number (only if you choose to add it for alerts), subscription data you manually enter (name, cost, renewal date), and alert history. We do not collect payment card details — those are handled by Stripe.

2. How We Use Your Data

We use your data solely to provide the Service: to send you WhatsApp/SMS renewal alerts, to display your subscriptions on your dashboard, and to process payments via Stripe. We do not sell your data to third parties.

3. Data Storage

Your data is stored in Supabase (PostgreSQL), hosted on AWS infrastructure in the EU region. Data is encrypted at rest and in transit.

4. Third-Party Services

We use the following third-party services: Supabase (database and auth), Stripe (payment processing), Twilio (WhatsApp/SMS delivery), and Vercel (hosting). Each has its own privacy policy governing their handling of data.

5. Phone Number

Your phone number is stored only to send you alerts you have explicitly requested. It is never shared with third parties beyond Twilio for message delivery. You can remove it at any time in Settings.

6. Cookies

We use session cookies to keep you logged in. We do not use tracking or advertising cookies.

7. Your Rights

You have the right to access, correct, or delete your data at any time. You can delete your account from the Settings page, which removes all your data. For data export or other requests, email us at support@ghostsub.cloud.

8. Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data is permanently deleted within 30 days.

9. Contact

Privacy questions? Email us at support@ghostsub.cloud