Privacy Policy

Yo Licenses - WebP Conversion Licensing Platform

Effective Date: January 1, 2024

Introduction

Welcome to Yo Licenses. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we handle your personal data when you use our services.

Information We Collect

1. Account Information

• License Key/Email: When activating a Pro or Enterprise license, you provide your email address as your license key
• Payment Information: Processed securely by Paddle (our payment processor) - we do not store credit card information

2 Automatically Collected Information

• Usage Statistics: For free tier users, we track daily conversion counts locally to enforce rate limits
• License Validation Data: When online, we verify license status with our servers
• Error Logs: Anonymous error information may be collected to improve the Extension

3 Information We Do NOT Collect

• Image Content: Your images are processed entirely locally on your machine
• File Names or Paths: We do not track what files you convert
• Personal Browsing Data: We do not track your VS Code usage beyond Extension-specific actions

How We Use Your Information

We use your personal data to:

• Verify license validity and tier access
• Enforce rate limits on free tier accounts
• Process payments and manage subscriptions
• Provide customer support
• Improve the Extension
• Comply with legal obligations

Data Sharing

We do not sell your personal data. We may share your information with:

• Paddle: For payment processing
• Supabase: For secure data storage and authentication
• Service Providers: Who assist us in operating our service

Data Storage and Security

We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

1 Local Storage

• Usage statistics and cached license data are stored locally in VS Code's global state
• This data is not transmitted unless you explicitly activate a license

2 Cloud Storage

• License information is stored in Supabase (PostgreSQL database)
• All data is encrypted in transit using HTTPS/TLS
• Database access is restricted to authorized services only

3 Payment Processing

• Payment information is handled entirely by Paddle
• We never have access to your full credit card information
• Paddle is PCI DSS compliant

Your Rights (GDPR/CCPA Compliance)

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Object to processing of your data
• Request data portability
• Withdraw consent

1 Access

Request a copy of your personal data we hold

2 Correction

Request correction of inaccurate personal data

3 Deletion

Request deletion of your personal data ("right to be forgotten")

4 Data Portability

Receive your data in a machine-readable format

5 Opt-Out

Opt out of data collection (note: may limit functionality)

6 Do Not Sell

We do not sell personal information (CCPA compliance)

Data Retention

• License Data: Retained while subscription is active plus 30 days after cancellation
• Usage Statistics: Reset daily, historical data not retained
• Audit Logs: Retained for 90 days
• Deleted Accounts: Data permanently deleted within 30 days of account deletion

Cookies and Tracking

The Extension does not use cookies or third-party tracking. License validation uses secure HTTPS requests to our API.

Children's Privacy

The Extension is not intended for users under 13 years of age. We do not knowingly collect information from children.

International Data Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place for international transfers.

Third-Party Services

1 Supabase

• Privacy Policy: https://supabase.com/privacy
• Used for: License database and Edge Functions
• Location: Configurable regions

2 Paddle

• Privacy Policy: https://www.paddle.com/legal/privacy
• Used for: Payment processing
• Location: EU and US data centers

Changes to Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through:

• Extension update notes
• Email notification to license holders
• Notice in the Extension UI

Your Consent

By using the Extension, you consent to this Privacy Policy.

Contact Us

For privacy-related questions or to exercise your rights:

• Email: yo.licenses@gmail.com
• Open Ticket: https://yo-license.pro/dashboard/tickets
• Data Requests: Please allow up to 30 days for processing

Specific Regional Rights

European Union (GDPR)

• Legal basis for processing: Contractual necessity and legitimate interest
• Data Protection Officer: [Contact if applicable]
• Right to lodge complaint with supervisory authority

California (CCPA)

• Categories of data collected: See Section 2
• Business purpose: Service provision and improvement
• No sale of personal information
• Right to non-discrimination

Other Jurisdictions

We comply with applicable data protection laws in your region. Contact us for specific information.

Security Measures

We implement industry-standard security measures:

• HMAC signature verification for license data
• Encrypted data transmission (TLS/HTTPS)
• Secure database access controls
• Regular security audits
• Rate limiting to prevent abuse

Breach Notification

In the event of a data breach affecting your personal information, we will notify you within 72 hours as required by applicable law.

Contact Us

If you have any questions about this Privacy Policy, please contact us through our official channels.

Last Updated: January 1, 2024