Privacy Policy

LaunchLog ("LaunchLog", "we", "us") operates launchlog.ai, a curated directory for indie makers, SaaS founders and tech launches. This policy explains what personal data we process, why, on what legal basis, and the choices you have.

We keep data collection deliberately narrow. We are a directory, not an advertising network — we do not buy, sell or rent personal data, and we do not build advertising profiles.

Information you provide

• Account data: email address and authentication identifier when you sign in (handled by Firebase Authentication).
• Listing data: the product URL, name, tagline, description, category and contact email you submit or edit for a listing or free preview.
• Billing data: name and billing details required to process a subscription. Card numbers are entered directly with Stripe and never reach our servers.
• Correspondence: messages you send to our support, legal or DMCA addresses.

Information collected automatically

• Public metadata fetched from the URL you submit (title, meta description, OpenGraph data, favicon, screenshot) to build your listing preview.
• Aggregate, privacy-first analytics about page visits via Plausible. Plausible does not use cookies and does not collect personal data.
• Server and security logs (IP address, user agent, timestamps) retained briefly for abuse prevention and reliability.

• To create, enrich, publish and moderate listings and previews.
• To authenticate you and protect your account.
• To process subscriptions, issue receipts and handle refunds under our 7-day guarantee.
• To respond to support, legal and takedown requests.
• To keep the service secure, prevent spam and abuse, and improve the product.
• To send essential transactional email (e.g. receipts, security and listing status). Marketing email, if any, is opt-in.

Where the GDPR applies, we rely on the following legal bases:

• Contract — to provide listings, accounts and paid subscriptions you request.
• Legitimate interests — to secure the service, prevent abuse and maintain a useful, spam-free directory, balanced against your rights.
• Legal obligation — to keep transaction and tax records.
• Consent — where required, for any optional communications, which you can withdraw at any time.

We share data only with vetted service providers who process it on our behalf under data-processing terms. We do not sell personal data. Current processors include:

• Stripe — payments and subscription billing.
• Firebase Authentication (Google) — sign-in and identity.
• Railway — application hosting and the PostgreSQL database.
• Cloudflare — DNS, CDN, asset storage (R2) and security.
• Microlink — website screenshot and metadata capture for previews.
• Plausible — cookieless, aggregate analytics.
• Resend — transactional email delivery.

We may also disclose information where required by law or to protect our rights, our users and the safety of the service.

• Free previews are private, excluded from search, and expire automatically after 7 days.
• Published listing content remains while your listing is active and may persist in caches and AI/search indexes outside our control after removal.
• Account and billing records are kept for the life of the account and for the period required by tax and accounting law thereafter.
• Security logs are retained for a short period for abuse prevention, then deleted or anonymised.

Depending on your location, you may have the right to access, correct, delete, export or restrict processing of your personal data, and to object to certain processing. To exercise any right, email [email protected]. We will respond within the timeframe required by applicable law. You may also lodge a complaint with your local data protection authority.

Our providers may process data in the United States and the European Union. Where data leaves the EEA, transfers are covered by appropriate safeguards such as Standard Contractual Clauses.

We protect data with encryption in transit, scoped access, and reputable infrastructure providers. No method of transmission or storage is perfectly secure, but we work to protect your information and limit what we collect.

LaunchLog is not directed to children under 16 and we do not knowingly collect their data. If you believe a child has provided us data, contact us and we will remove it.

We may update this policy as the product evolves. Material changes will be reflected by the "Last updated" date above, and significant changes will be communicated where appropriate.