TermSignalsTermSignals
Sign in
Privacy Policy

Your data, your control

Effective date: January 27, 2026. This policy explains what data TermSignals collects, how we use it, and the rights you have over your information.

Last updated Jan 27, 2026GDPR & CCPA compliant

Transparency

Know exactly what data we collect and why.

Control

Accept or reject analytics cookies at any time.

Security

Your data is encrypted and protected by industry standards.

Section 1

Information we collect

We collect information you provide when creating an account (name, email, password), contract data you enter (vendor names, renewal dates, costs, notes, uploaded files), and payment information processed securely through Stripe. We also collect technical data such as IP address, browser type, and device information through server logs.

Section 2

How we use your data

We use your data to provide and improve TermSignals: delivering contract renewal reminders via email, generating reports and exports, processing payments through Stripe, and analyzing aggregate usage patterns to improve the service. We do not sell your personal data to third parties.

Section 4

Cookies and tracking

We use essential cookies for authentication (Supabase session tokens) and local storage for UI preferences such as theme and demo mode settings. With your consent, we use PostHog for product analytics to understand how the service is used. You can accept or reject analytics cookies via the cookie consent banner. No tracking occurs without your explicit consent.

Section 5

Third-party services

TermSignals relies on trusted third-party providers: Supabase (database, authentication, file storage), Stripe (payment processing — we never store your card details), PostHog (opt-in product analytics), and Resend (transactional email delivery). Each provider has their own privacy policy and data processing agreements. We encourage you to review their policies.

Section 6

Data retention

Your data is retained for as long as your account is active. When you delete your account, all associated data (contracts, files, profile information) is permanently deleted. Database backups containing deleted data are purged within 30 days. Payment records may be retained longer as required by law.

Section 7

Your rights

Under GDPR, you have the right to access, rectify, erase, and port your data, as well as withdraw consent and object to processing. Under CCPA, California residents have the right to know what data is collected, request deletion, and opt out of the sale of personal information — we do not sell personal data. To exercise any of these rights, contact support@termsignals.com.

Section 8

Data security

We take security seriously. All data is transmitted over TLS encryption. Database access is protected by Supabase Row Level Security (RLS) policies. Passwords are hashed and never stored in plain text. Payment processing is handled by Stripe, which is PCI DSS compliant. We conduct regular security reviews of our infrastructure.

Section 9

International transfers

Your data is processed on servers located in the United States. If you are accessing TermSignals from outside the US, your data will be transferred to and processed in the US. We rely on standard contractual clauses and other lawful transfer mechanisms to ensure your data is protected in accordance with applicable data protection laws.

Section 10

Changes and contact

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the service. Continued use of TermSignals after changes constitutes acceptance of the updated policy. For questions or concerns about your privacy, contact us at support@termsignals.com.

Questions?

Email support@termsignals.com or return to the homepage for product details.

Start free demoBack to home