Privacy Policy

1. Who we are

FAISEURDEREINE OÜ (“we”, “us”) operates the BusinessOS platform as data controller. Registry code: 16960162 · VAT: EE102883251 · Narva mnt 5, Kesklinna linnaosa, Tallinn, Harju maakond, 10117, Estonia. This policy explains how we collect, use, and protect personal data when you use the Service. Contact us at legal@faiseurderoi.com for legal / GDPR matters or support@faiseurderoi.com for support.

2. Data we collect

We collect the following categories of data:

• Account data — email address, display name, authentication tokens
• Company data — names, descriptions, AI-generated content, configurations you create
• Audience data — subscriber email addresses collected through your companies' opt-in forms
• Billing data — payment method details (processed by Stripe; we never store raw card numbers)
• Usage data — page views, feature interactions, error logs (via PostHog and Sentry)

3. How we use your data

• Provide and operate the Service
• Process payments and manage subscriptions
• Send transactional emails (sign-in links, billing receipts)
• Improve the platform through anonymised analytics
• Comply with legal obligations

We do not sell your personal data to third parties.

4. Legal basis (GDPR)

For users in the European Economic Area, we process your data on the following bases: contractual necessity (to provide the Service), legitimate interest (security, fraud prevention, service improvement), and your consent (optional analytics).

5. Sub-processors

We share data with the following trusted processors:

• Supabase — database hosting (EU region, Frankfurt)
• Vercel — application hosting
• Stripe — payment processing
• Resend — transactional email delivery
• Anthropic — AI content generation (prompts are processed but not used for training)
• Sentry — error monitoring
• PostHog (EU) — product analytics

6. Data retention

We retain your account data for as long as your account is active, plus 30 days after closure. Subscriber data in your audience lists is retained until you delete it or your account is closed. Billing records are kept for 7 years as required by Estonian law.

7. Your rights

Under GDPR, you have the right to access, rectify, erase, or port your personal data, and to object to or restrict processing. To exercise any of these rights, email legal@faiseurderoi.com. We will respond within 30 days. If you believe our processing is unlawful, you can lodge a complaint with the Andmekaitse Inspektsioon (Estonian Data Protection Inspectorate) or your local EU supervisory authority.

8. Cookies

We use only essential cookies (authentication session). We do not use advertising or tracking cookies. Analytics are collected via a self-hosted PostHog instance in the EU.

9. Security

All data is encrypted in transit (TLS) and at rest. We use row-level security on all database tables so each user can only access their own data. Access to production systems is restricted to authorised personnel only.

10. Changes

We may update this policy periodically. We will notify you by email before material changes take effect. The latest version is always available at this URL.