Privacy Policy

Last Updated: January 2025

1. Introduction

Welcome to PopDash Analytics ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our data analytics and visualization service.

2. Information We Collect

2.1 Information You Provide to Us

Account Information:

Name
Email address
Password (encrypted)
Company name (optional)
Profile information

Uploaded Data:

Spreadsheets (Excel, CSV)
Google Sheets connections
Database connections
Any data you choose to upload for analysis

Dashboard Content:

Saved dashboards and visualizations
Custom charts and reports
Dashboard configurations

Payment Information:

Payment card details (processed securely through third-party payment processors)
Billing address
Purchase history

2.2 Information We Collect Automatically

Usage Data:

Pages visited and features used
Time spent on the Service
Click patterns and navigation paths
Device information (browser type, OS, IP address)

Session Data:

Streamlit session state
Temporary data processing information
Chart and visualization selections

Cookies and Similar Technologies:

Session cookies for authentication
Preference cookies for settings
Analytics cookies (if you consent)

2.3 Information from Third Parties

Third-Party Integrations:

Google Sheets data (with your permission)
OAuth authentication data
Third-party service connections you authorize

3. How We Use Your Information

We use your information for the following purposes:

3.1 To Provide the Service

Process and analyze your uploaded data
Generate visualizations and dashboards
Create AI-powered insights using OpenAI GPT
Store your saved dashboards
Enable data import from Google Sheets and other sources

3.2 To Maintain and Improve the Service

Monitor and analyze usage patterns
Identify and fix bugs
Improve features and user experience
Develop new features

3.3 To Communicate with You

Send service-related notifications
Respond to your inquiries
Send important updates about the Service
Send marketing communications (with your consent)

3.4 To Ensure Security

Detect and prevent fraud
Protect against security threats
Enforce our Terms of Service

3.5 For Legal Compliance

Comply with legal obligations
Respond to legal requests
Protect our rights and interests

4. How We Share Your Information

We do NOT sell your personal data. We may share your information in the following circumstances:

4.1 Third-Party Service Providers

OpenAI:

We send chart data to OpenAI GPT to generate AI insights and explanations
OpenAI processes this data according to their privacy policy
We do not send personally identifiable information to OpenAI

Cloud Infrastructure:

Hosting providers (for application infrastructure)
Data storage services (for saved dashboards)

Payment Processors:

Stripe or other payment processors (for subscription billing)
We do not store your complete payment card information

Analytics Services:

Usage analytics (if you consent)
Error monitoring and reporting

4.2 Legal Requirements

We may disclose your information if required by law or in response to:

Court orders or subpoenas
Government requests
Legal proceedings
To protect our rights or the rights of others

4.3 Business Transfers

If PopDash Analytics is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4.4 With Your Consent

We may share information with other parties when you give us explicit consent to do so.

5. Data Processing and Storage

5.1 Data Processing

In-Memory Processing: Most data analysis occurs in memory and is not permanently stored
Temporary Storage: Session data is stored temporarily during your session
Persistent Storage: Only saved dashboards and account information are stored permanently

5.2 Data Location

Our servers are located in [Your server location/region]
Third-party services may process data in different locations

5.3 Data Retention

Account Data: Retained while your account is active
Uploaded Data: Not permanently stored unless you save dashboards
Saved Dashboards: Retained until you delete them or close your account
Usage Logs: Retained for up to 90 days for security and debugging

6. Your Data Rights

Depending on your location, you may have the following rights:

6.1 Access and Portability

Right to Access: Request a copy of your personal data
Data Portability: Export your dashboards and data in a machine-readable format

6.2 Correction and Deletion

Right to Rectification: Correct inaccurate personal data
Right to Erasure: Request deletion of your personal data and account

6.3 Control and Objection

Right to Object: Object to certain processing of your data
Right to Restrict: Request restriction of processing
Withdraw Consent: Withdraw consent for marketing communications

6.4 How to Exercise Your Rights

7. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

7.1 Legal Basis for Processing

We process your data based on:

Contract Performance: To provide the Service you requested
Legitimate Interests: To improve and secure the Service
Consent: For marketing communications and optional features
Legal Obligations: To comply with laws

7.2 International Data Transfers

If we transfer your data outside the EEA, we ensure adequate protection through:

Standard contractual clauses
Adequacy decisions
Other approved mechanisms

7.3 Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at [DPO email]

8. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

8.1 Your CCPA Rights

Right to Know: What personal information we collect, use, and share
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt out of sale of personal information (we do not sell data)
Right to Non-Discrimination: Not be discriminated against for exercising your rights

8.2 Categories of Data Collected

Identifiers (name, email, IP address)
Commercial information (purchase history)
Internet activity (usage data)
Geolocation data (approximate location)

8.3 How to Exercise CCPA Rights

Submit a verifiable consumer request to [Your email]. We will respond within 45 days.

9. Children's Privacy

Our Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child, please contact us immediately.

10. Data Security

10.1 Security Measures

We implement industry-standard security measures including:

Encryption in transit (HTTPS/TLS)
Encrypted storage of sensitive data
Access controls and authentication
Regular security audits
Secure third-party service providers

10.2 Security Limitations

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

10.3 Your Responsibilities

Keep your password secure
Use strong, unique passwords
Log out after using shared devices
Report suspicious activity immediately

11. Cookies and Tracking Technologies

11.1 Types of Cookies We Use

Essential Cookies:

Session management
Authentication
Security features

Preference Cookies:

Theme settings
Dashboard layouts
User preferences

Analytics Cookies (Optional):

Usage patterns
Feature adoption
Performance monitoring

11.2 Managing Cookies

You can control cookies through:

Browser settings
Our cookie consent banner
Opt-out mechanisms

Note: Disabling essential cookies may affect Service functionality.

12. Third-Party Links and Services

Our Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. Please review their privacy policies.

13. AI and Machine Learning Disclosures

13.1 AI Processing

We use OpenAI's GPT models to generate insights and chart explanations
Chart data (without personal identifiers) is sent to OpenAI for processing
AI-generated content may contain errors or inaccuracies

13.2 Data Used for AI Training

We do NOT use your uploaded data to train our own AI models
OpenAI's data usage is governed by their privacy policy and terms
You can opt out of AI features if desired

14. Marketing Communications

14.1 Types of Communications

Product updates and new features
Tips and best practices
Promotional offers
Newsletter

14.2 Opt-Out

You can unsubscribe from marketing emails by:

Clicking "unsubscribe" in any email
Updating your email preferences in account settings
Contacting us at [Your email]

Note: You cannot opt out of essential service communications (e.g., security alerts, billing notifications).

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

Posting the new Privacy Policy in the app
Sending an email notification
Displaying an in-app notice

Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

16. International Users

If you are accessing the Service from outside [Your country], please be aware that your information may be transferred to, stored, and processed in [Your country] where our servers are located and our central database is operated.

17. Do Not Track Signals

Some browsers transmit "Do Not Track" signals. We currently do not respond to these signals, as there is no industry standard for how to respond to them.

18. Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:

Email: [Your support email]
Address: [Your business address]
Data Protection Officer: [DPO email] (for GDPR inquiries)
CCPA Contact: [CCPA email] (for California privacy rights)

Response Time: We aim to respond to all privacy inquiries within 30 days.

By using PopDash Analytics, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.