1. Information We Collect

Account Information

When you sign in with Google, we receive and store your email address, display name, and profile photo URL. We do not receive or store your Google password.

Deck Content

We store the HTML presentation files you upload, along with metadata: deck name, slug, visibility setting, file size, and slide count. Deck HTML is stored in our PostgreSQL database.

View Analytics

When someone views one of your decks, we record the view timestamp and, for private decks, the viewer's email address (used for access control verification).

API Tokens

If you create API tokens, we store a SHA-256 hash of the token, the token name, and usage timestamps. We do not store raw API tokens after initial creation.

Activity Log

We log user actions (deck creation, updates, deletions, login events, token operations) for platform administration and security purposes.

Billing Information

If you subscribe to a paid plan, we store your Stripe customer ID, subscription ID, plan status, and billing period. We do not store credit card numbers, bank account details, or other payment credentials — Stripe handles all payment data directly.

2. How We Use Your Information

• Account management — to identify you, maintain your workspace, and authenticate API requests
• Deck hosting — to store and serve your presentations at their public URLs
• Access control — to verify viewer identity against your deck's whitelist
• Billing — to manage your subscription and enforce plan limits
• Platform administration — to monitor usage, detect abuse, and maintain service quality

3. Third-Party Services

Google OAuth 2.0

We use Google's OAuth service for authentication. When you sign in, Google shares your email, name, and photo with us. Google's privacy policy governs how Google handles your data during the sign-in process.

Stripe

Paid subscriptions are processed by Stripe. When you upgrade to a paid plan, you interact directly with Stripe's checkout. Stripe's privacy policy governs how they handle your payment information. We only receive subscription metadata (plan, status, billing period) — never your card details.

Render

Our application and PostgreSQL database are hosted on Render's infrastructure. Render's privacy policy applies to infrastructure-level data handling.

4. Cookies and Local Storage

Session Cookie

We use a single session cookie (connect.sid) to keep you signed in. This cookie is:

• httpOnly — not accessible to JavaScript
• Secure — only sent over HTTPS in production
• SameSite: Lax — not sent on cross-origin requests
• Expires after 30 days
• Backed by our PostgreSQL database (not stored client-side)

Local Storage

We store a single preference in your browser's localStorage:

• deckdrop-theme — your light/dark theme preference

No Tracking Cookies

We do not use Google Analytics, advertising cookies, or any third-party tracking on DeckDrop Pro.

5. Data Storage and Security

Your data is stored in a PostgreSQL database hosted on Render's managed infrastructure. We implement the following security measures:

• API tokens are hashed with SHA-256 before storage
• Sessions are stored server-side in PostgreSQL (not in client cookies)
• Authentication is delegated to Google OAuth (no passwords stored)
• All connections use HTTPS in production
• Database access is restricted to the application server

6. Payment Processing

All payment processing is handled by Stripe. When you subscribe to a paid plan, you are redirected to Stripe's checkout page. We never see, process, or store your credit card number or payment method details. We only store:

• Stripe customer ID (a Stripe-generated identifier)
• Stripe subscription ID
• Subscription status (active, canceled, past due, etc.)
• Current billing period end date

7. Viewer Data

When someone views a private deck, they must sign in with Google. We check their email address against the deck owner's viewer whitelist. We record the viewer's email and view timestamp in our analytics. Viewer emails are visible to the deck owner in their analytics dashboard.

Public decks can be viewed without signing in. We record anonymous view counts for public decks.

8. Data Retention and Deletion

We retain your account data and deck content for as long as your account is active. View analytics and activity logs are retained indefinitely for platform administration.

To request deletion of your account and all associated data, contact us at privacy@deckdrop.live. Upon deletion:

• Your user account, workspace, and profile data will be permanently deleted
• All your decks and their HTML content will be permanently deleted
• Your API tokens will be permanently deleted
• Your viewer whitelist entries will be removed
• Activity log entries referencing your account will be anonymized
• If you have an active Stripe subscription, we will cancel it before deleting your account

9. Children's Privacy

DeckDrop Pro is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it.

10. Your Rights

You have the right to:

• Access your personal data — your account info, decks, and tokens are visible in the dashboard
• Correct your data — your name and photo are synced from Google on each sign-in
• Delete your account and all associated data — contact us at privacy@deckdrop.live
• Export your deck content — download your HTML files from the dashboard

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

12. Contact

For questions about this Privacy Policy or to exercise your data rights, contact us at privacy@deckdrop.live.