Privacy Policy

• ▸Account: email address, name (from GitHub OAuth or entered by you)
• ▸Purchases: app IDs, license keys, transaction timestamps (no card data)
• ▸Usage: pages visited, search queries (anonymized), download counts
• ▸Developer data: GitHub repository URLs, app submission details
• ▸Technical: IP address, browser type, OS type (for security purposes)

• ▸Authenticate your account and protect against fraud
• ▸Process purchases and deliver license keys
• ▸Send transactional emails (purchase confirmation, license delivery)
• ▸Show personalized recommendations (based on purchase history)
• ▸Provide developers with aggregate analytics (downloads, revenue)
• ▸Comply with legal obligations

We do not sell your personal data. We share data only with: (a) Whop, to process payments — subject to Whop's own privacy policy; (b) Supabase, our database provider — data is stored in their infrastructure; (c) Law enforcement, when required by applicable law.

We use session cookies necessary for authentication and a locale preference cookie. We do not use third-party tracking cookies or advertising pixels. For more details, see our Cookie Settings page.

• ▸Account data: retained while your account is active
• ▸Purchase records: retained for 7 years (legal requirement)
• ▸Usage logs: anonymized after 90 days, deleted after 12 months
• ▸Deleted accounts: data removed within 30 days of deletion request

• ▸Access: request a copy of your personal data
• ▸Correction: update incorrect information in your account
• ▸Deletion: request deletion of your account and associated data
• ▸Portability: receive your data in a machine-readable format
• ▸Objection: opt out of non-essential data processing

For privacy requests or questions, email privacy@arara.app. For GDPR-related requests, include "GDPR Request" in the subject line. We respond within 30 days.