Privacy Policy

Last updated: March 2026

1. Introduction

SaaSy Solutions LLC ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use SaaSy ("the Service"), our intelligent business operating system that helps entrepreneurs manage formation, compliance, CRM, finances, and operations with intelligent guidance.

By using the Service, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not use the Service.

2. Information We Collect

We collect the following categories of information:

Account Information

When you create an account, we collect your name, email address, company name, and role. This information is necessary to provide the Service and manage your account.

Usage Data

We automatically collect information about how you interact with the Service, including feature usage patterns, login times and frequency, pages visited, actions taken, and browser type and device information.

Payment Information

Payment processing is handled entirely by Stripe. We do not store credit card numbers, CVVs, or other sensitive payment details on our servers. We retain only a reference to your Stripe customer ID, plan type, and billing status.

3. How We Use Your Data

We use the information we collect for the following purposes:

  • Provide and maintain the Service — delivering compliance tracking, CRM, intelligent guidance, proactive alerts, and business operations management
  • Send transactional emails — account confirmations, billing receipts, security alerts, and service notifications
  • Analyze usage patterns — to improve the Service, identify bugs, and optimize performance
  • Prevent fraud and abuse — to protect the security of your account and the integrity of the Service

We do not sell your personal information to third parties. We do not use your Customer Data to train machine learning models for purposes outside of providing the Service to you.

4. Storage & Security

We take the security of your data seriously and implement industry-standard measures to protect it:

  • Encryption at rest — all data stored in our databases is encrypted using AES-256
  • Encryption in transit — all data transmitted between your browser and our servers is encrypted using TLS 1.2 or higher
  • SOC 2 compliance — our infrastructure and processes are audited against SOC 2 Type II controls
  • Access controls — internal access to production systems is restricted to authorized personnel with multi-factor authentication
  • Regular security audits — we conduct periodic security assessments and penetration testing to identify and address vulnerabilities

5. Third-Party Processors

We use the following third-party service providers to operate the Service. Each processor is contractually obligated to protect your data:

Stripe

Payment processing

Neon

PostgreSQL database hosting

Fly.io

Application hosting and compute

Vercel

Frontend hosting and CDN

6. Your Rights (GDPR & CCPA)

Regardless of your location, we extend the following rights to all users:

  • Right to Access — request a copy of the personal data we hold about you
  • Right to Correction — request that we correct any inaccurate personal data
  • Right to Deletion — request that we delete your personal data, subject to legal retention obligations
  • Right to Export — receive your data in a structured, machine-readable format (CSV, JSON)
  • Right to Opt Out — opt out of non-essential data processing and analytics cookies

To exercise any of these rights, contact us at privacy@hellosaasy.ai. We will respond to your request within 30 days.

7. Cookies & Tracking

We use cookies to provide and secure the Service:

  • Session cookies — required for authentication and maintaining your logged-in state. These are essential cookies and cannot be disabled.
  • Analytics cookies — optional cookies that help us understand how the Service is used. You can opt out of analytics cookies at any time through your account settings.

We do not use third-party advertising cookies or tracking pixels for advertising purposes.

8. Data Retention

Active Accounts

Data is retained for as long as your account remains active and the Service is in use.

Deleted Accounts

All Customer Data is permanently purged within 30 days of account deletion.

Backups

Backup copies containing deleted account data are purged within 90 days of account deletion.

9. Children's Privacy

The Service is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at privacy@hellosaasy.ai.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email at least 30 days before the changes take effect. Non-material changes may be made without advance notice but will be reflected in an updated "Last updated" date on this page.

11. Contact

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

privacy@hellosaasy.ai