Privacy policy

Last updated: April 2026

Who we are

WARBLOOMB ("we," "us," or "our") operates the WARBLOOMB Service (website, apps, and APIs). This Privacy Policy explains how we collect, use, disclose, and protect information when you use the Service.

Information we collect

• Account and authentication. When you sign up or sign in (for example via Clerk), we receive identifiers such as user ID, email address, name, and session tokens needed to secure your account.
• Billing. When you subscribe, Stripe processes payment details. We receive subscription status, customer identifiers, and limited billing metadata — not full payment card numbers, which Stripe handles according to its policies.
• Usage and diagnostics. We may collect technical data such as IP address, device type, browser, approximate location derived from IP, timestamps, pages viewed, API routes called, error logs, and anti-abuse signals (for example rate-limit counters).
• Content you provide. Text or configuration you submit in-product (for example portfolio entries stored locally in your browser, alerts rules, or support messages) may be processed to operate features you request.
• AI interactions. When you trigger AI features, prompts and model outputs may be transmitted to our inference provider (for example DeepSeek) and logged for quality, safety, billing, and abuse prevention, subject to our retention practices below.

How we use information

We use information to:

• Provide, maintain, secure, and improve the Service.
• Authenticate users, enforce plans, prevent fraud, and comply with law.
• Process payments and communicate about billing, outages, or policy changes.
• Analyze aggregate usage trends and monitor reliability.
• Train or evaluate internal defenses against abuse (we do not sell your personal information).

Legal bases (EEA/UK visitors)

Where GDPR applies, we rely on appropriate bases such as contract (to deliver the Service you request), legitimate interests (security, product improvement, and fraud prevention, balanced against your rights), legal obligation, and consent where required (for example marketing cookies if we use them).

Sharing and processors

We share information with service providers who process data on our instructions, including:

• Clerk — authentication and user management.
• Stripe — payments and subscription lifecycle.
• Cloud hosting and database — storage and execution of the Service.
• AI vendors — model inference for features you invoke.
• Analytics or logging vendors — if enabled, to understand reliability and usage in aggregate.

We may also disclose information if required by law, subpoena, or governmental request; to enforce our terms or protect rights, safety, and security; or in connection with a merger, acquisition, or asset sale (with notice where required).

Data retention

We retain information only as long as needed for the purposes above, including legal, tax, and accounting requirements. Server logs and security telemetry typically roll off on a shorter schedule. Account data is retained while your account is active and for a reasonable period afterward to resolve disputes or enforce agreements. You may request deletion subject to legal exceptions.

Security

We implement administrative, technical, and organizational measures designed to protect personal information. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

International transfers

We may process information in the United States and other countries where we or our vendors operate. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for cross-border transfers from the EEA, UK, or Switzerland.

Your rights and choices

Depending on your location, you may have rights to access, correct, delete, or port your personal information, and to object to or restrict certain processing. You may withdraw consent where processing is consent-based. To exercise rights, contact us at the email below. You may lodge a complaint with a supervisory authority.

Children

The Service is not directed to children under 16 (or the age required by local law). We do not knowingly collect personal information from children. If you believe we have, contact us and we will delete it.

Cookies and similar technologies

We and our vendors may use cookies or similar technologies for authentication, security, preferences, and limited analytics. You can control cookies through browser settings; blocking required cookies may affect functionality.

California residents

If the California Consumer Privacy Act (CCPA/CPRA) applies, you may have rights to know, delete, and correct personal information, and to limit use of sensitive personal information. We do not "sell" or "share" personal information as those terms are defined under CPRA for targeted advertising. You may designate an authorized agent where permitted by law.

Changes to this policy

We will post updates on this page and revise the "Last updated" date. Where required, we will provide additional notice.

Contact

Privacy questions or requests: hello@warbloomb.com