Privacy Policy
Effective date: July 5, 2026
This Privacy Policy explains how Briefing Bites, Inc. (“we,” “us”) collects, uses, and shares information in connection with the briefingbites service at briefingbites.com. Our customers are firms; we intentionally hold no data about firms’ end clients.
1. Data we collect
- Account data: your name, email address, and password hash (managed by our authentication provider, Supabase).
- Firm branding assets: your firm name, logo, brand colors, website, footer/disclaimer text, tone preferences, and topic selections — everything needed to produce your briefings.
- Billing data: handled by Dodo Payments, our merchant of record. Card details never touch our servers. We store only your Dodo Payments customer and subscription identifiers, your plan, and your billing email.
- Usage logs: standard server logs and an application audit log (sign-ins, edits, approvals, deliveries) used for security and support.
We do not collect data about your clients. Briefings are delivered to you; you distribute them yourself.
2. How we use data
- To produce, deliver, and support your briefings;
- To bill your subscription and prevent fraud;
- To send transactional email (issue-ready notices, billing notices, account email);
- To secure and improve the Service.
We do not sell personal information and we do not use advertising trackers.
3. Processors we use
We share data with a small set of processors, each only as needed:
- Dodo Payments — payments, tax handling, and subscription management (merchant of record);
- Supabase — database, authentication, and file storage (logos, rendered issues);
- Vercel — application hosting;
- Zoho Mail — transactional and delivery email;
- Google (Gemini API) — AI drafting. Article text from public news sources and your firm profile (name, tone, audience description, topics) are processed by the AI provider to draft issues. Your clients’ data is never involved because we never hold it.
4. Cookies
We use session cookies for sign-in and our payment provider’s cookies during checkout. No advertising or cross-site tracking cookies.
5. Retention
- Account and firm data: kept while your account exists, and deleted within 90 days after account deletion.
- Issue archive: kept while you subscribe and readable for 90 days after cancellation, after which it may be deleted.
- Ingested news articles: purged after 120 days unless referenced by a produced issue.
- Billing records: retained as required by tax and accounting law.
6. Your rights
You may request access to, export of, or deletion of your personal data by emailing support@briefingbites.com. We respond within 30 days. Depending on your location, you may have additional rights under laws such as the GDPR or CCPA, including the right to complain to a supervisory authority.
7. Security
Data is encrypted in transit; database access is restricted with row-level security; secrets are held server-side only. No method of storage is 100% secure, and we will notify affected users of any breach as required by law.
8. Changes
We will notify account holders by email of material changes to this policy before they take effect.
9. Contact
Briefing Bites, Inc. · support@briefingbites.com
Template for review by qualified counsel; not yet reviewed.