Last updated: 2026-04-20

Privacy Policy

Placeholder text — replace before going live. Starter template only. Review with legal counsel for GDPR / CCPA / HIPAA or any other regime that applies to your users before launch.

1. What we collect

• Account data: teacher email, studio name, billing contact details, Stripe customer ID.
• Roster data: student names, contact emails/phones, parent/guardian info, lesson notes, attendance.
• Payment data: we never see or store card numbers — Stripe handles them. We store payment amounts, methods, and Stripe reference IDs.
• Operational logs: HTTP request metadata, audit log entries, delivery logs for outbound webhooks and emails.

2. Why we process it

To provide the Service (scheduling, billing, reminders), to prevent fraud and abuse, to comply with tax/accounting obligations, and to improve the product.

3. Who we share it with

• Stripe — for payment processing and subscription billing.
• Your email/SMS providers — only when you configure SMTP/Twilio credentials.
• Outbound webhook targets you configure (Zapier, etc.) — only the event payloads you permit.
• We do not sell your data or use it for advertising.

4. Your rights

You can export your data from Settings → Backup at any time. To request deletion, email privacy@example.com; we’ll purge identifiable data within 30 days unless we’re required to retain it for tax or legal reasons.

5. Retention

Active accounts: for as long as you use the Service. Financial records (invoices, payments) are retained for 7 years for tax compliance, even after account closure.

6. Security

Segnoly uses HTTPS everywhere, hashes passwords with bcrypt, verifies Stripe webhook signatures, and keeps an audit log of write actions. Report vulnerabilities to security@example.com.

7. Changes

We’ll notify you by email and in-app at least 14 days before material changes.