Privacy Policy

Last updated: February 2026

1. Information We Collect

When you sign in with Google, we collect your email address and name. When you use the Service, we store the URLs you submit and the PDFs we generate. We also collect usage data (import counts) to enforce plan limits.

2. How We Use Your Information

We use your information to provide the Service, manage your account, process payments through Stripe, and enforce usage limits. We do not sell your personal data to third parties.

3. Data Storage

Your account data is stored in a PostgreSQL database hosted on Railway. Generated PDFs are stored on Cloudflare R2. Payment information is handled entirely by Stripe — we never store your credit card details.

4. Guest Usage

If you use PostToSource without an account, we track your IP address solely to enforce the one free import limit. We do not store IP addresses permanently or use them for any other purpose.

5. Third-Party Services

We use Google OAuth for authentication, Stripe for payments, Cloudflare R2 for file storage, Railway for hosting, and Vercel for the frontend. Each service has its own privacy policy.

6. Data Deletion

You can delete your account from the Settings page. This permanently removes your account data and import history. Generated PDFs may remain on our storage for up to 30 days before automatic deletion.

7. Cookies

We use essential cookies for authentication (NextAuth session cookie). We do not use tracking or advertising cookies.

8. Contact

Privacy questions? Email us at hello@posttosource.com.