Privacy Policy

Last updated: January 5, 2026

Introduction

At Simpify ("we", "us", or "our"), we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (collectively, the "Services").

This policy complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable data protection laws. By using our Services, you agree to the collection and use of information in accordance with this policy.

Data Controller: Byte Rocket Ltd
Contact: support@byte-rocket.ai

Information We Collect

1. Information You Provide

Account Information: Name, email address, password, and profile details when you create an account
Payment Information: Billing address and payment details processed securely through our payment provider (Stripe)
Communications: Messages, feedback, and support requests you send to us
User Content: SEO data, website information, and analytics you input or generate using our Services

2. Automatically Collected Information

Device Information: IP address, browser type, operating system, device identifiers
Usage Data: Pages visited, features used, time spent, click patterns, and interaction data
Cookies and Tracking: Session cookies, preference cookies, analytics cookies (with your consent)
Location Data: Approximate location based on IP address

3. Information from Third Parties

Authentication Providers: Information from Clerk authentication services
Payment Processors: Transaction status and payment confirmations from Stripe
Analytics Services: Aggregated usage statistics (when you consent to analytics cookies)

How We Use Your Information

We process your personal data only when we have a valid legal basis under GDPR:

Service Delivery (Contract Performance)

Provide, maintain, and improve our Services
Process transactions and send purchase confirmations
Provide customer support and respond to inquiries
Authenticate users and prevent fraud

Legitimate Interests

Analyze usage patterns to improve user experience
Detect and prevent security threats and abuse
Comply with legal obligations and enforce our terms
Communicate important service updates

With Your Consent

Send marketing communications (you can opt-out anytime)
Use analytics cookies to understand website performance
Personalize content and recommendations
Display targeted advertisements

How We Share Your Information

We do not sell your personal data. We may share your information only in the following circumstances:

Service Providers

We share data with trusted third-party service providers who assist us in operating our Services:

Clerk: Authentication and user management
Convex: Database and backend services
Stripe: Payment processing
Vercel: Hosting and infrastructure

All service providers are contractually obligated to protect your data and use it only for specified purposes.

Legal Compliance

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety, or that of our users or the public.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We will notify you before your data is transferred and becomes subject to a different privacy policy.

Your Privacy Rights

Under GDPR and other privacy laws, you have the following rights regarding your personal data:

🔍 Right to Access

Request a copy of the personal data we hold about you

✏️ Right to Rectification

Correct inaccurate or incomplete personal data

🗑️ Right to Erasure

Request deletion of your personal data ("right to be forgotten")

⏸️ Right to Restriction

Limit how we use your personal data

📤 Right to Data Portability

Receive your data in a machine-readable format

🚫 Right to Object

Object to processing based on legitimate interests

To exercise your rights: Contact us at support@byte-rocket.ai. We will respond within 30 days as required by GDPR.

Data Security & Retention

Security Measures

We implement industry-standard security measures to protect your data:

End-to-end encryption for data in transit (TLS/SSL)
Encryption at rest for sensitive data
Regular security audits and vulnerability assessments
Access controls and authentication mechanisms
Secure backup and disaster recovery procedures

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law. When you delete your account, we will delete or anonymize your personal data within 90 days, except where we must retain it for legal or legitimate business purposes.

International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States and European Union. We ensure adequate protection through:

Standard Contractual Clauses (SCCs) approved by the European Commission
Service providers certified under the EU-U.S. Data Privacy Framework
Other legally approved transfer mechanisms under GDPR Article 46

Children's Privacy

Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately at support@byte-rocket.ai and we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide more prominent notice (such as email notification). Your continued use of the Services after changes constitutes acceptance of the updated policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: support@byte-rocket.ai

Data Protection Officer: Byte Rocket Ltd

We aim to respond to all legitimate requests within 30 days as required by GDPR.