Privacy Policy

1. What we collect

We collect the following data when you use Profitti:

• Account information: name, email address, password (hashed)
• Business profile: business name, type, location, team size
• Financial data: revenue, cost and analysis data you enter
• Usage data: pages visited, features used (via Vercel Analytics — anonymised)

2. How we use your data

We use your data only to:

• Provide and improve the Profitti service
• Generate your profit analyses and history
• Send transactional emails (account confirmation, password reset)
• Understand how people use the product (anonymised analytics only)

We do not use your financial data for advertising, benchmarking reports, or any purpose beyond delivering the service to you.

3. Data storage and security

Your data is stored on Supabase (PostgreSQL) hosted in the EU. We use row-level security to ensure you can only access your own data. All data is encrypted in transit (HTTPS) and at rest.

4. Data sharing

We do not sell your data. We share data with the following third parties only as necessary to provide the service:

• Supabase — database and authentication
• Vercel — hosting and edge infrastructure

No financial data is shared with any third party beyond what is required to store and serve it back to you.

5. Your rights

You have the right to:

• Access the data we hold about you
• Correct inaccurate data
• Delete your account and all associated data
• Export your analysis history

To exercise any of these rights, email hello@profitti.io or delete your account from Settings.

6. Cookies

Profitti uses only essential cookies required for authentication (session token). We do not use advertising or tracking cookies.

7. Data retention

We retain your data for as long as your account is active. When you delete your account, all personal data and financial data is permanently deleted within 30 days.

8. Contact

Privacy questions or requests: hello@profitti.io