Privacy Policy

Effective Date: February 6, 2026

Introduction

Welcome to ShipPolicy. Signal26 ("we," "our," or "us") operates the ShipPolicy website and service at shippolicy.app. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and document generation service.

By using ShipPolicy, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Information You Provide

  • Email Address: Required when you purchase and receive your generated documents.
  • Form Responses: Information about your app (name, permissions, SDKs used) that you enter into our questionnaire to generate your legal documents.
  • Payment Information: Processed securely by Stripe. We do not store your full credit card number, CVV, or other sensitive payment details on our servers.

Information Collected Automatically

  • Usage Data: We may collect information about how you access and use ShipPolicy, including your browser type, pages visited, time spent, and referring URL.
  • Device Information: Information about the device you use to access our service, including device type, operating system, and browser.
  • Cookies: We use essential cookies to maintain your session. We do not use advertising or tracking cookies.

How We Use Your Information

We use the information we collect to:

  • Generate and deliver your customized legal documents
  • Process your payment through Stripe
  • Send you your documents and purchase confirmation via email
  • Host your documents at your custom subdomain
  • Provide customer support when you reach out
  • Improve and optimize our service
  • Detect and prevent fraud or abuse

Third-Party Services

Stripe (Payment Processing)

We use Stripe to process payments. When you make a purchase, your payment information is sent directly to Stripe's secure servers. Stripe's use of your information is governed by their Privacy Policy.

Hosting Provider

Our website and your generated documents are hosted on secure cloud infrastructure. Your documents are stored securely and accessible via HTTPS at your custom subdomain.

How We Share Your Information

We may share your information in the following situations:

  • Service Providers: With Stripe for payment processing and our hosting provider for document delivery.
  • Legal Requirements: If required by law or in response to valid legal requests by public authorities.
  • Business Transfers: If Signal26 is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

We do not sell your personal information to third parties. Ever.

Data Retention

  • Generated Documents: Hosted for 1 year from purchase. After that, you can renew hosting or download and self-host.
  • Form Responses: Retained for 30 days after document generation to allow for support inquiries, then deleted.
  • Email Address: Retained for customer communication and to deliver your documents.
  • Payment Records: Retained as required for legal and accounting purposes (typically 7 years).

Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you.
  • Deletion: Request deletion of your personal information (subject to legal retention requirements).
  • Download: Download your generated documents at any time during your hosting period.
  • Correction: Request correction of inaccurate personal information.

To exercise any of these rights, please contact us at privacy@shippolicy.app.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • The right to know what personal information we collect, use, and share
  • The right to delete your personal information
  • The right to opt-out of the sale of personal information (we do not sell your data)
  • The right to non-discrimination for exercising your privacy rights

European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

Our legal basis for processing your data is contract performance (to deliver the service you purchased) and legitimate interest (to improve our service and prevent fraud).

Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. All data is transmitted over HTTPS, and sensitive payment data is handled by Stripe, a PCI-DSS compliant payment processor.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Children's Privacy

ShipPolicy is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete it.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top. For significant changes, we may also notify you by email.

Contact Us

If you have any questions about this Privacy Policy, please contact us:

This Privacy Policy was last updated on February 6, 2026.