Privacy Policy

Introduction

Sympose ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our analytics platform for creators. Please read this policy carefully. By using Sympose, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

When you create an account, we collect:

• Email address
• Name (optional)
• Account preferences and settings

Platform Connection Data (Gumroad & Patreon)

When you connect your Gumroad or Patreon account via OAuth, we collect and store:

• OAuth tokens: Encrypted access and refresh tokens to maintain your connection
• Account identifiers: Your platform account ID and display name
• Product information: Names, types, and pricing of your products or tiers
• Revenue metrics: Daily revenue figures, customer counts, and subscription data
• Sales data: Aggregated transaction information for analytics purposes

Important: We only access the data necessary to provide analytics insights. We do not access or store your customers' personal information (such as their email addresses, payment details, or physical addresses) from these platforms.

Payment Information

Payment processing is handled entirely by Stripe. We do not store your credit card numbers, bank account details, or other sensitive payment information on our servers. We only store:

• Your Stripe customer ID (to manage your subscription)
• Subscription status and plan type
• Billing history references

Usage Data

We automatically collect certain information when you use our service, including:

• Log data (IP address, browser type, pages visited)
• Device information
• Interaction data with our platform features

How We Use Your Information

Analytics and Insights

Your connected platform data is used to:

• Generate daily metric snapshots and trend analysis
• Create unified dashboards across your connected platforms
• Track product performance over time
• Calculate revenue, customer, and subscription metrics

AI-Powered Insights

For Starter and Pro plan users, we use artificial intelligence to analyze your metrics and generate insights:

• Your aggregated revenue and customer data is processed by our AI system
• AI generates plain-English summaries, identifies trends, and suggests actions
• Generated insights are stored and may be delivered via email (Pro plan)
• We use OpenAI's API for insight generation; your data is subject to their privacy policy

Note: We only send aggregated, anonymized metrics to AI services—never raw customer data or personally identifiable information about your customers.

Service Operations

We also use your information to:

• Provide, maintain, and improve our services
• Process transactions and send billing notifications
• Send weekly email reports (Pro plan, with your consent)
• Respond to your inquiries and provide customer support
• Detect and prevent fraud or abuse

Data Storage and Security

We take the security of your data seriously:

• Encryption: OAuth tokens are encrypted before storage. All data is encrypted in transit using TLS.
• Infrastructure: We use industry-leading cloud providers with SOC 2 compliance.
• Access control: Access to user data is strictly limited and logged.
• Data isolation: Each user's data is logically separated from other users.

While we implement robust security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Data Sharing and Third Parties

We do not sell your personal information. We share data only with:

• Stripe: For payment processing
• OpenAI: For AI insight generation (aggregated metrics only)
• Email providers: To send transactional and report emails
• Infrastructure providers: For hosting and data storage

We may also disclose information if required by law, to protect our rights, or in connection with a merger, acquisition, or sale of assets.

Data Retention

We retain your data for as long as your account is active or as needed to provide services. Metric snapshots and historical data are retained to enable trend analysis and year-over-year comparisons. When you delete your account, we will delete or anonymize your data within 30 days, except where retention is required by law (e.g., billing records).

Your Rights

You have the following rights regarding your data:

• Access: Request a copy of the personal data we hold about you.
• Export: Download your data in a portable format from your account settings.
• Correction: Update or correct inaccurate information in your account.
• Deletion: Request deletion of your account and associated data.
• Disconnect: Revoke platform connections at any time from your settings.
• Opt-out: Unsubscribe from marketing emails or weekly reports.

To exercise these rights, visit your account settings or contact us at privacy@sympose.io.

Cookies and Tracking

We use essential cookies to maintain your session and remember your preferences. We may use analytics cookies to understand how our service is used. You can control cookie preferences through your browser settings.

Children's Privacy

Sympose is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at: