Legal

Privacy Policy

Last updated: March 2026

DeckSight ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use our document analytics platform at decksight.io.

1. Information We Collect

  • Email addresses provided voluntarily by document viewers when email capture is enabled by the document owner.
  • Document view data: pages viewed, time spent on each page, total read time, user agent, and approximate IP address.
  • Account information for registered users: name, email address, and billing details for paid plans.
  • Usage data: pages visited on decksight.io, feature interactions, and session metadata for product improvement.

2. How We Use Your Information

  • To deliver document analytics to document owners (views, read time, engagement heatmaps).
  • To notify document owners when their documents are viewed.
  • To process payments and manage subscriptions via our payment processor (Stripe).
  • To improve the DeckSight platform through aggregated, anonymised analytics.
  • We do not sell or share your personal data with third parties for advertising purposes.

3. Document Storage

  • PDF documents uploaded to DeckSight are stored securely using Supabase Storage with server-side encryption at rest.
  • Documents are accessible only via unique, hard-to-guess slugs. Owners may enable password protection for additional security.
  • Documents are not indexed by search engines.

4. Cookies & Tracking

  • DeckSight uses essential cookies for authentication sessions only.
  • We do not use third-party advertising cookies or cross-site tracking technologies.
  • Vercel Analytics (privacy-friendly, no cookies) is used to measure landing page performance.

5. Data Retention

  • View analytics data is retained for as long as the associated document exists in your account.
  • Upon account deletion, all documents, views, and personal data are permanently deleted within 30 days.
  • You may request data deletion at any time by emailing hello@decksight.io.

6. Your Rights (GDPR)

  • If you are located in the European Economic Area, you have the right to access, rectify, or erase your personal data.
  • You may object to processing or request data portability at any time.
  • To exercise your rights, contact us at hello@decksight.io.

7. Security

  • All data is transmitted over HTTPS/TLS. Access to databases is restricted to authorised services only.
  • We use Row Level Security (RLS) to ensure users can only access their own data.
  • Despite our measures, no system is 100% secure. We encourage you to use strong, unique passwords.

8. Changes to This Policy

  • We may update this Privacy Policy periodically. Material changes will be notified via email to registered users.
  • Continued use of DeckSight after changes constitutes acceptance of the updated policy.

9. Contact

  • For any privacy-related questions, contact us at: hello@decksight.io