Legal

Privacy Policy

Last updated:

SimbaApps LLC ("SimbaApps," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, who we share it with, and what rights you have. We've written this in plain language — no legalese traps.

This policy applies to www.simbaapps.com and all products and services operated by SimbaApps LLC. For privacy policies specific to individual apps, please refer to each app's dedicated policy page.

1. Who We Are

SimbaApps LLC is a Delaware limited liability company that builds software products and services. We are the data controller for information collected through this website.

SimbaApps LLCDelaware, USA
Email: support@simbaapps.com
Website: https://www.simbaapps.com

2. What We Collect

2.1 Analytics Data

We use Plausible Analytics — a privacy-friendly, cookieless analytics tool. Plausible does not use cookies, does not collect personally identifiable information, and does not track visitors across websites or devices. It collects aggregate data only: page views, referrers, browser type, country, and device type.

2.2 Contact Form Data

When you contact us through our website forms, we collect your name, email address, and the contents of your message. We use this information solely to respond to your inquiry.

2.3 Account Data

If you create an account on one of our products, we collect your email address, chosen username (if applicable), and any profile information you voluntarily provide. Passwords are hashed and never stored in plain text.

2.4 Payment Data

Payments are processed by Stripe. We never see or store your full credit card number. Stripe provides us with a tokenized reference and billing information (name, email, last 4 digits of card, billing country) for receipt and support purposes. Stripe's privacy policy applies to payment data: stripe.com/privacy.

2.5 Notification Preferences

If you opt in to SMS or email notifications, we collect the phone number or email address you provide. Notifications are delivered via Twilio (for SMS). You can opt out at any time.

3. Cookies

We keep cookie usage minimal and purposeful:

  • Session cookies: Used to keep you logged in to our apps. These expire when you close your browser or log out.
  • Preference cookies: Used to remember user-selected settings (e.g., theme, language). Stored for up to 12 months.
  • No third-party tracking cookies. We do not use Google Analytics, Facebook Pixel, or any other cross-site tracking technology.

You can disable cookies in your browser settings. Disabling session cookies will require you to log in each visit.

4. How We Use Your Data

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Respond to your support requests and inquiries
  • Send transactional emails (receipts, password resets, service alerts)
  • Deliver notifications you've opted into
  • Detect and prevent fraud, abuse, and security incidents
  • Understand aggregate usage patterns to improve our products
  • Comply with legal obligations

We do not sell your personal data. We do not use your data to serve you targeted advertising.

5. Third-Party Services

We work with a small set of trusted vendors to operate our services. Each vendor processes data only as necessary for their service:

Vercel

Website and app hosting (CDN, edge compute)

Data shared: Server logs, IP addresses (anonymized)

Privacy Policy ↗
Supabase

Backend database and authentication

Data shared: Account data, app data you store in our products

Privacy Policy ↗
Stripe

Payment processing

Data shared: Payment card information, billing details

Privacy Policy ↗
Twilio

SMS and email notifications

Data shared: Phone numbers and email addresses of users who opt in

Privacy Policy ↗
Plausible Analytics

Cookieless, privacy-first website analytics

Data shared: Anonymized aggregate traffic data (no personal data)

Privacy Policy ↗

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are legally required to retain it (e.g., billing records for tax purposes, which we retain for 7 years).

Contact form inquiries are retained for up to 2 years for support history purposes.

7. Data Security

We implement industry-standard security measures: HTTPS/TLS encryption in transit, AES-256 encryption at rest, hashed passwords using bcrypt, and regular security reviews. We use Supabase's enterprise-grade database infrastructure with row-level security policies.

No system is 100% secure. If you discover a security vulnerability, please disclose it responsibly to support@simbaapps.com.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

GDPR Rights (EEA/UK Residents)

  • Right to access — request a copy of your data
  • Right to rectification — correct inaccurate data
  • Right to erasure — request deletion of your data
  • Right to restriction — limit how we process your data
  • Right to data portability — receive your data in a machine-readable format
  • Right to object — object to processing based on legitimate interests
  • Right to withdraw consent — where processing is based on consent

CCPA Rights (California Residents)

  • Right to know what personal information we collect and how it's used
  • Right to delete your personal information
  • Right to opt out of the sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising your privacy rights

To exercise any of these rights, email us at support@simbaapps.com with the subject line "Privacy Request." We will respond within 30 days. We may need to verify your identity before fulfilling the request.

9. Children's Privacy

Our services are not directed to children under 13 (or under 16 in the EEA). We do not knowingly collect personal information from children. If we learn that we have collected information from a child without parental consent, we will promptly delete it. Contact us at support@simbaapps.com if you believe we have inadvertently collected a child's data.

10. International Data Transfers

SimbaApps LLC is based in the United States. If you're located outside the US, your information will be transferred to and processed in the United States. We rely on Standard Contractual Clauses (SCCs) with our EU/UK users' data processors to ensure adequate protection under GDPR.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and notify you via email (if you have an account) or a prominent notice on our website at least 14 days before the change takes effect. Continued use of our services after the effective date constitutes acceptance of the updated policy.

12. Contact Us

Questions, concerns, or requests about this Privacy Policy? We're happy to help.

SimbaApps LLC
Privacy inquiries: support@simbaapps.com
Subject line: "Privacy Request"
Response time: within 30 days