Privacy Policy

ShowroomOS ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our template management platform and services.

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly to us, including:

• Account Information: Name, email address, company name, password
• Profile Information: Display name, profile picture, role (Platform Owner, Tenant Admin)
• Template Data: HTML, CSS, JSON configurations you create or upload
• Tenant Customizations: Content overrides, branding settings, logo uploads
• Payment Information: Billing address, payment method (processed by third-party payment providers)
• Communication Data: Messages, support tickets, feedback you send us

1.2 Information Collected Automatically

When you use our services, we automatically collect:

• Usage Data: Pages viewed, features used, time spent, click patterns
• Device Information: Browser type, operating system, IP address, device identifiers
• Log Data: Access times, error logs, API requests
• Cookies: Session cookies, preference cookies, analytics cookies (see Cookie Policy)

2. How We Use Your Information

We use your information to:

• Provide Services: Deliver, maintain, and improve our template management platform
• Account Management: Create and manage your account, authenticate users
• Template Operations: Store, process, and render your templates and customizations
• Billing: Process payments, send invoices, manage subscriptions
• Communications: Send service updates, security alerts, support responses
• Analytics: Understand usage patterns, improve features, optimize performance
• Security: Detect and prevent fraud, abuse, and security incidents
• Compliance: Meet legal obligations, enforce our Terms of Service

3. How We Share Your Information

We do not sell your personal information. We may share your information with:

• Service Providers: Cloud hosting (Cloudflare), payment processing (Stripe), analytics (pending)
• Within Your Organization: Other users in your workspace can access shared templates and settings
• Legal Requirements: When required by law, court order, or government request
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• With Your Consent: When you explicitly authorize us to share your information

4. Data Security

We implement industry-standard security measures to protect your data:

• Encryption: Data encrypted in transit (TLS 1.3) and at rest
• Access Controls: Role-based access, multi-factor authentication support
• Monitoring: Continuous security monitoring and audit logs
• Isolated Storage: Tenant data stored in isolated database records
• Regular Audits: Security assessments and vulnerability testing

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Specific retention periods:

• Account Data: Retained until account deletion + 30 days
• Template Data: Retained until manually deleted by user
• Audit Logs: 90 days (Pro), 1 year (Enterprise)
• Billing Records: 7 years (legal requirement)
• Analytics Data: Aggregated, anonymized data retained indefinitely

6. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data ("right to be forgotten")
• Portability: Export your data in a machine-readable format
• Objection: Object to certain processing activities
• Restriction: Request restriction of data processing
• Withdraw Consent: Withdraw consent for optional data processing

To exercise these rights, contact us at privacy@showroomos.io.

7. Cookies and Tracking

We use cookies and similar technologies to:

• Essential Cookies: Required for authentication, security, session management
• Preference Cookies: Remember your settings and customizations
• Analytics Cookies: Understand how you use our services (planned)

You can control cookies through your browser settings. Disabling essential cookies may affect functionality.

8. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) with service providers
• Data Processing Agreements (DPAs) for enterprise customers
• Compliance with GDPR, CCPA, and other privacy regulations

9. Children's Privacy

ShowroomOS is not intended for children under 16. We do not knowingly collect personal information from children. If you believe we have collected data from a child, contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date
• Sending email notifications for significant changes

Your continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us:

Email: privacy@showroomos.io
Address: [PLACEHOLDER - Your company address]
Data Protection Officer: [PLACEHOLDER - If applicable]

Last updated: January 2025