Privacy Policy
Effective Date: March 20, 2026 · Last Updated: March 20, 2026
This Privacy Policy explains how VesperOps ("we," "us," or "our") collects, uses, stores, and protects your personal information when you use our website (vesperops.com), products, and services. We respect your privacy and are committed to handling your data responsibly.
1. Information We Collect
1.1 Information You Provide
- Account information: Name, email address, and password when you create an account
- Business profile data: Business name, industry, website URL, and other details you enter during onboarding or product setup
- Payment information: Billing details processed securely through Stripe — we do not store your full credit card number on our servers
- Communications: Messages you send us via email or support channels
- Content you create: Landing pages, email sequences, CRM entries, and other content generated through our tools
1.2 Information Collected Automatically
- Usage data: Pages visited, features used, click patterns, session duration, and interaction data
- Device information: Browser type, operating system, screen resolution, and device identifiers
- Log data: IP address, access times, referring URLs, and error logs
- Cookies and similar technologies: Used for authentication, preferences, and analytics (see Section 6)
1.3 Information from Third Parties
- OAuth providers: If you connect Google, Facebook, or other accounts, we receive basic profile information as authorized by you
- Payment processor: Stripe shares transaction status and billing information necessary to manage your subscription
2. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Providing and operating our products | Account info, business profile, content |
| Processing payments and subscriptions | Payment info (via Stripe) |
| Sending transactional emails (receipts, alerts, updates) | Email address |
| Improving our products and user experience | Usage data, device info |
| Customer support | Account info, communications |
| AI-powered features (recommendations, content generation) | Business profile, usage patterns |
| Preventing fraud and abuse | Log data, IP address, usage patterns |
We do not sell your personal information. We do not use your data to train general-purpose AI models.
3. How We Share Your Information
We only share your data with third parties when necessary to provide our services:
- Stripe: Payment processing — governed by Stripe's Privacy Policy
- Supabase: Database hosting and authentication — governed by Supabase's Privacy Policy
- Vercel: Application hosting — governed by Vercel's Privacy Policy
- Cloudflare: Website hosting and CDN — governed by Cloudflare's Privacy Policy
- Resend: Transactional email delivery
- OpenAI: AI features (content generation, recommendations) — business data may be sent to OpenAI's API for processing; it is not used for model training per our agreement
We may also disclose information if required by law, court order, or to protect the rights and safety of VesperOps, our users, or the public.
4. Data Storage and Security
Your data is stored on servers in the United States via Supabase (AWS infrastructure) and Vercel. We implement industry-standard security measures including:
- Encryption in transit (TLS/HTTPS on all connections)
- Encryption at rest for database storage
- Row-level security (RLS) policies on database tables
- Secure authentication with hashed passwords
- Regular security reviews of our codebase
No system is 100% secure. While we take reasonable precautions, we cannot guarantee absolute security of your data.
5. Data Retention
We retain your data for as long as your account is active or as needed to provide our services. After account deletion:
- Account and profile data is deleted within 30 days
- Content you created may be retained in anonymized form for analytics
- Billing records are retained as required by tax and accounting laws (typically 7 years)
- Backups containing your data are purged within 90 days
6. Cookies and Tracking
We use cookies and similar technologies for:
- Essential cookies: Authentication, session management, security — required for our products to function
- Analytics cookies: Understanding how users interact with our site to improve the experience
- Preference cookies: Remembering your settings and customizations
We do not use third-party advertising cookies. You can manage cookies through your browser settings, though disabling essential cookies may prevent our products from functioning properly.
7. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your personal data (subject to legal retention requirements)
- Portability: Request your data in a structured, machine-readable format
- Opt-out: Unsubscribe from marketing emails at any time via the link in each email
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
8. California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to know what personal information we collect, use, and share
- Right to delete your personal information
- Right to opt out of the "sale" of personal information — we do not sell your personal information
- Right to non-discrimination for exercising your privacy rights
9. Children's Privacy
Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly.
10. International Users
Our services are primarily operated in the United States. If you access our services from outside the US, your data will be transferred to and processed in the United States. By using our services, you consent to this transfer.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on our website. The "Last Updated" date at the top reflects the most recent revision.
12. Contact Us
For privacy-related questions or requests:
VesperOps
Email: [email protected]
Web: vesperops.com