Privacy Policy

1. Information We Collect

Information You Provide

• Account Information: Email address, username, and authentication credentials when you create an account
• GitHub Information: If you connect your GitHub account, we may access your public profile information and repository metadata
• Payment Information: For paid plans, billing details are processed by our payment provider (Stripe)
• Support Communications: Information you provide when contacting our support team

Information Collected Automatically

• Usage Data: API calls, search queries, skill installations, and feature usage
• Technical Data: IP address, browser type, operating system, and device information
• Log Data: Server logs including access times, pages viewed, and error reports
• Analytics Data: Anonymized usage patterns to improve our service

Information from Third Parties

• OAuth Providers: Profile information from GitHub or Google when you use social login
• Public Sources: Information about skills from public GitHub repositories

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve Skillsmith services
• Process transactions and manage your account
• Personalize skill recommendations based on your usage patterns
• Send important service updates and notifications
• Respond to your support requests and communications
• Enforce our Terms of Service and prevent abuse
• Analyze usage trends to improve user experience
• Comply with legal obligations

3. Data Storage and Security

Where We Store Your Data

Your data is stored on servers provided by our infrastructure partners, primarily located in the United States. We use Supabase for database hosting and Vercel for application hosting.

Security Measures

We implement industry-standard security measures including:

• Encryption of data in transit (TLS 1.3) and at rest (AES-256)
• Regular security audits and vulnerability assessments
• Access controls and authentication for internal systems
• Secure API key management and rotation policies
• Incident response procedures for security events

4. Third-Party Services

We use the following third-party services that may collect information:

5. Your Rights

Depending on your location, you may have the following rights:

To exercise any of these rights, please contact us using the information in the Contact section below.

6. Cookies and Tracking

We use the following types of cookies:

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our service.

7. Data Retention

We retain your data for the following periods:

• Account data: Until you delete your account, plus 30 days for backup recovery
• Usage logs: 90 days for operational purposes
• Analytics data: Aggregated and anonymized, retained indefinitely
• Billing records: 7 years for legal and tax compliance
• Inactive accounts: May be deleted after 2 years of inactivity (with prior notice)

8. Children's Privacy

Skillsmith is not intended for use by children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will take steps to delete such information.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we will send an email notification to registered users. Your continued use of Skillsmith after any changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: