Privacy Policy

1. Introduction

Welcome to Potkasts ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using Potkasts, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our service.

2. Information We Collect

2.1 Personal Information

We collect the following personal information:

• Email address and username (for account creation)
• Full name (optional)
• Payment information (processed securely through Stripe)
• Google account information (if using Google OAuth)
• API keys (ElevenLabs, stored encrypted)

2.2 Usage Information

• Podcasts you create and their metadata
• URLs and content you submit for processing
• Usage statistics and interaction patterns
• Device information and IP addresses
• Browser type and operating system

3. How We Use Your Information

We use collected information for:

• Providing and maintaining our service
• Processing podcast generation requests
• Managing your account and subscriptions
• Processing payments through Stripe
• Sending service-related emails (verification, receipts)
• Improving our AI models and service quality
• Preventing fraud and ensuring security
• Complying with legal obligations

4. Data Sharing and Disclosure

We share your information with:

• Anthropic (Claude AI): Content submitted for podcast generation
• TTS Providers: Scripts for voice synthesis (Google Cloud, ElevenLabs, OpenAI)
• Stripe: Payment processing information
• Google: OAuth authentication (if used)

We do not sell your personal information to third parties. We only share data necessary for service operation with trusted partners who comply with privacy regulations.

5. Data Security

We implement industry-standard security measures to protect your data:

• All data transmitted over HTTPS/TLS encryption
• Database encryption at rest
• API keys stored with encryption
• Regular security audits and updates
• Access controls and authentication
• Non-root container execution in production

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services:

• Account data: Until account deletion
• Podcasts: Until you delete them or close your account
• Payment records: 7 years (legal requirement)
• Usage logs: 90 days

7. Your Rights (GDPR)

Under GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data
• Portability: Receive your data in a portable format
• Objection: Object to processing of your data
• Withdrawal: Withdraw consent at any time

8. Cookies and Tracking

We use essential cookies for:

• Authentication and session management
• Remembering your preferences
• Security and fraud prevention

We do not use third-party advertising or tracking cookies.

9. Children's Privacy

Potkasts is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will delete it immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a prominent notice on our service. Continued use of Potkasts after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us: