Privacy Policy

1. Introduction

LilyPadLabs (“we”, “us”, “our”) operates YourPond, a personal contact relationship manager. This Privacy Policy explains how we collect, use, store, and protect your information when you use our Service. We are committed to protecting your privacy and handling your data with transparency.

2. Information We Collect

Account Information. When you create an account, we collect your email address and authentication credentials through our authentication provider (Clerk). We do not store your password directly.

Contact Data. You voluntarily enter information about the people in your life, including names, locations, jobs, birthdays, relationships, and other personal details. This data belongs to you.

Usage Data. We collect basic analytics data about how you interact with the Service, including page views and feature usage, through Vercel Analytics. This data is anonymized and aggregated.

Device Information. We may collect basic device information such as browser type, operating system, and screen resolution to ensure compatibility and improve the user experience.

3. How We Use Your Information

We use your information solely to:

• Provide, maintain, and improve the Service
• Authenticate your identity and secure your account
• Display your contact data back to you within the application
• Generate insights and visualizations from your data (e.g., network graphs, completeness scores)
• Send essential service communications (e.g., security alerts, account notifications)

We will never use your data for advertising, sell it to third parties, or use it to train machine learning models.

4. Data Storage and Security

Storage. Your data is stored in a PostgreSQL database hosted on Railway. All data is associated with your user account and isolated from other users.

Encryption. All data in transit is encrypted using TLS/HTTPS. We use industry-standard security practices to protect your data at rest.

Access Controls. Access to production databases is restricted to authorized personnel only. We use JWT-based authentication to ensure that you can only access your own data.

5. Third-Party Services

We use the following third-party services to operate YourPond:

• Clerk — Authentication and user management
• Railway — Backend hosting and database
• Vercel — Frontend hosting and anonymized analytics
• Google Places API — Location autocomplete (optional; queries are sent to Google when you search for a city)

Each third-party service has its own privacy policy. We do not share your contact data with any of these services beyond what is necessary to operate the Service.

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete all associated data within 30 days. Anonymized, aggregated analytics data may be retained indefinitely.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access — Request a copy of the data we hold about you
• Correction — Request correction of inaccurate data
• Deletion — Request deletion of your data and account
• Portability — Export your data in a standard format
• Objection — Object to specific processing of your data

To exercise any of these rights, contact us at hello@yourpond.io.

8. Children's Privacy

YourPond is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will delete it promptly.

9. International Data Transfers

Your data may be processed and stored in the United States, regardless of your location. By using the Service, you consent to the transfer of your data to the United States. We will take appropriate measures to ensure your data is treated securely and in accordance with this Privacy Policy.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the effective date. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact

If you have any questions about this Privacy Policy, please contact us at hello@yourpond.io.

This content is for informational purposes and should be reviewed by a qualified attorney before production use.