At SumoTrends ("we," "us," or "our"), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services (collectively, the "Services").
By accessing or using our Services, you agree to this Privacy Policy. If you do not agree with this policy, please do not access or use our Services.
Table of Contents
- Information We Collect
- How We Use Your Information
- Sharing and Disclosure
- Data Retention
- Data Security
- Your Privacy Rights
- Cookies and Tracking Technologies
- International Data Transfers
- Children's Privacy
- Third-Party Links
- California Privacy Rights (CCPA)
- European Privacy Rights (GDPR)
- Changes to This Policy
- Contact Us
1. Information We Collect
1.1 Information You Provide
When you create an account or make a purchase, we collect:
- Account Information: Name, email address, password (encrypted)
- Payment Information: Processed securely by third-party payment processors (Stripe, PayPal). We do not store full credit card numbers.
- Communication Data: When you contact us via email or support tickets
1.2 Automatically Collected Information
- Usage Data: Pages viewed, time spent, features used, search queries
- Device Information: IP address, browser type, operating system, device identifiers
- Log Data: Access times, error logs, performance metrics
- Cookies: See Section 7 for details on cookies and tracking
1.3 Third-Party Data
We collect publicly available data from AppSumo and other third-party sources to provide market intelligence. This data does not include personal information about our users.
2. How We Use Your Information
We use your information for the following purposes:
- Service Delivery: Provide access to our database, analytics, and features
- Account Management: Create and maintain your account, process payments
- Communication: Send transactional emails, updates, and customer support
- Improvement: Analyze usage patterns to improve our Services
- Security: Detect fraud, abuse, and protect against security threats
- Legal Compliance: Comply with legal obligations and enforce our Terms of Service
- Marketing: Send promotional emails (with your consent; you can opt-out anytime)
Legal Basis for Processing (GDPR Article 6)
- (a) Contract: Processing necessary for providing our Services to you
- (b) Legitimate Interests: Analytics, security, fraud prevention, improving our Services
- (c) Legal Compliance: Tax records, fraud prevention, legal requirements
- (d) Consent: Marketing emails (you can withdraw consent anytime)
4. Data Retention
We retain your personal information for as long as necessary to:
- Provide our Services and maintain your account
- Comply with legal, tax, and accounting obligations (typically 7 years)
- Resolve disputes and enforce our agreements
When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.
5. Data Security
We implement industry-standard security measures to protect your information:
- Encryption: HTTPS/TLS encryption for data in transit; AES-256 encryption at rest
- Access Controls: Role-based access and authentication
- Regular Audits: Security assessments and vulnerability scans
- Monitoring: 24/7 monitoring for suspicious activity
However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
6. Your Privacy Rights
You have the following rights regarding your personal information:
- Access: Request a copy of your personal data
- Correction: Update or correct inaccurate information
- Deletion: Request deletion of your account and data
- Portability: Receive your data in a structured, machine-readable format
- Opt-Out: Unsubscribe from marketing emails (link in every email)
- Object: Object to processing based on legitimate interests
- Restrict: Limit how we process your data
To exercise these rights, email us at privacy@sumotrends.com. We will respond within 30 days.
8. International Data Transfers
Our servers and service providers may be located in the United States or other countries. If you are accessing our Services from the European Economic Area (EEA) or other regions with data protection laws, your data may be transferred to countries that do not have equivalent data protection laws.
We rely on Standard Contractual Clauses (SCCs) approved by the European Commission to ensure your data receives adequate protection during international transfers.
9. Children's Privacy
Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us immediately, and we will take steps to delete such information.
10. Third-Party Links
Our Services may contain links to third-party websites (e.g., AppSumo, GitHub). We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies.
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: Request disclosure of personal information collected, used, and shared
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: We do not sell personal information. No opt-out required.
- Non-Discrimination: We will not discriminate against you for exercising your CCPA rights
To submit a CCPA request, email privacy@sumotrends.comwith "CCPA Request" in the subject line.
12. European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), UK, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):
- Right of Access: Obtain a copy of your personal data
- Right to Rectification: Correct inaccurate data
- Right to Erasure: Request deletion ("right to be forgotten")
- Right to Restrict Processing: Limit how we use your data
- Right to Data Portability: Receive data in a portable format
- Right to Object: Object to processing for direct marketing or legitimate interests
- Right to Withdraw Consent: Withdraw consent for consent-based processing
- Right to Lodge a Complaint: File a complaint with your local data protection authority
Data Controller: SumoTrends is the data controller for your personal information.
Processing Response Times:
- • Data Access Requests: Within 30 days
- • Data Deletion Requests: Within 30 days (may take up to 90 days for complete removal from backups)
- • Data Portability Requests: Within 30 days
To exercise your GDPR rights, contact privacy@sumotrends.com.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The "Last Updated" date at the top will reflect the most recent changes. Material changes will be communicated via email or a prominent notice on our website. Continued use of our Services after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
SumoTrends Privacy Team
Privacy Issues: privacy@sumotrends.com
General Support: support@sumotrends.com
Website: https://sumotrends.com
Response Time: We aim to respond to all inquiries within 30 days.
This Privacy Policy is designed to comply with GDPR (EU), CCPA (California), and other applicable data protection laws. By using SumoTrends, you acknowledge that you have read and understood this Privacy Policy.