Privacy Policy
Last updated: 2025-11-30
This Privacy Policy explains how OpenDeveloperStudio ("ODS", "we", "us") collects, uses, stores, and shares information when you access our platform, including live sessions, recorded episodes, subscription and enterprise features, and related APIs.
1. Information We Collect
Account & Authentication
We collect your email address to create and authenticate your account using passwordless magic links. We store verification tokens and session events to maintain security and audit sign-ins.
Billing
Payment and subscription data (e.g. Stripe customer/subscription IDs, plan codes, status, period end) are received from Stripe. We do not store full card numbers; Stripe acts as our payment processor.
Usage & Interaction
We may log requests (timestamp, IP-derived region, user/anon identifier), actions within episodes or chats (for moderation and feature improvement), and aggregated performance metrics.
Content Contributions
Messages, questions, highlights, and other contributions you make may be stored to provide replay, search, and educational features. Do not post confidential or proprietary code.
Derived & Analytics Data
We may use privacy-conscious analytics (e.g. self-hosted or cookieless tooling) to understand feature usage. Data is aggregated whenever feasible.
2. How We Use Information
- Authenticate and authorize access.
- Deliver live and recorded content.
- Process subscriptions and enterprise seat management.
- Improve platform reliability, security, and user experience.
- Send transactional emails (magic links, billing notices).
- Respond to support requests.
3. Legal Bases (If Applicable)
Where required (e.g. GDPR), processing is based on performance of a contract, legitimate interests (improving and securing the platform), and consent (optional communications if introduced later).
5. Data Retention
Account and subscription records are retained while your account is active and for a reasonable period thereafter for compliance and auditing. Authentication tokens expire on schedule. We periodically review and delete stale or unnecessary logs.
6. Security
We employ industry-standard measures (transport encryption, scoped secrets, access controls). No system is perfectly secure. Promptly notify us of any suspected vulnerability or compromise.
7. Your Choices & Rights
You can request deletion of your account, update your profile name, and cancel subscriptions. Where applicable by law you may request access, correction, deletion, restriction, or portability of personal data. Contact support to exercise these rights.
8. International Transfers
Data may be processed in the region where our infrastructure or providers operate. We take steps to use reputable providers with appropriate safeguards.
9. Children
The Service is not directed to children under 16. If we learn we inadvertently collected data from a child below the minimum age, we will delete it.
10. Changes to This Policy
We may update this Policy to reflect new features or legal requirements. Material changes will be communicated (e.g. in-app or email). Continued use after changes constitutes acceptance.
11. Contact
For privacy inquiries or rights requests contact matt.vegas@inference-stack.com.
12. Summary Table
| Data Category | Examples | Purpose | Retention |
|---|---|---|---|
| Account | Email, verification status, name | Authenticate, personalize | Life of account + short audit period |
| Billing | Stripe IDs, plan code, status | Process payments, entitlement | Legal/accounting minimums |
| Usage Logs | Request metadata, session events | Security, performance, analytics | Rotated periodically |
| Content | Messages, questions, highlights | Replay features, learning value | Until removed or account deletion |