Privacy Policy for Dependle

Introduction

Welcome to Dependle ("we", "us" or "our"). We are committed to protecting your privacy and safeguarding any personal information you provide when using our services. This Privacy Policy explains what information we collect, how we use and protect it, what third-party services we rely on, and your rights regarding your data. By using Dependle's website or application, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Usage Data

We gather usage analytics to understand how our users interact with Dependle and to help improve our product. This usage data may include timestamps and details about when you access and use certain features, the duration of time spent on specific features, and other interaction information. For example, we may analyze project names and task names you input to generate word clouds or statistical insights that help us refine our project management tools. This information is generally aggregated or anonymized for product development purposes.

Device and Technical Data

Like most websites and apps, we may automatically collect certain technical information when you use Dependle. This can include your IP address, browser type, device type, operating system, and cookies or similar tracking technologies (especially as part of third-party analytics services like Google Analytics). This data helps us ensure the service is delivered correctly and securely on your device.

Payment Information

If you choose to subscribe to a paid plan or make a purchase, payments are processed through our third-party payment processor, Stripe. Dependle itself does not collect or store your credit card details – all sensitive payment information (card numbers, billing information) is handled securely by Stripe on our behalf. Stripe is a PCI-DSS compliant service, and it will collect the necessary payment information to process transactions. We receive only limited information from Stripe (such as a confirmation of payment, your name, and contact information) and never your full credit card details.

How We Use Your Information

To Provide and Maintain the Service

Personal data like your name and email are used to create your account, authenticate you, and allow you to use Dependle's features (for example, identifying you as the creator or assignee of a task). Team or company names help organize projects among your team members.

To Improve and Develop Our Product

Usage data is analyzed to understand feature engagement and user behavior. This helps us identify what features are useful, detect performance issues, and guide future improvements. For instance, usage statistics or word cloud analyses derived from project and task names help us learn which keywords or project types are common, so we can tailor Dependle to our users' needs. All such analysis is done in service of improving the user experience and is typically conducted on aggregated data (not on any one individual's tasks in isolation).

To Communicate with You

We may use your email address to send important notifications about your account or the service (for example, password resets, critical updates, or changes to this Privacy Policy). If you contact us with a support inquiry (for example, via support@dependle.io), we will use your contact information to respond. We may also send occasional product announcements or offers, but only in accordance with applicable law – if required, we will obtain your consent or give you the option to opt out of such communications.

To Ensure Security and Prevent Misuse

Technical data (like IP addresses or device information) may be used to monitor for suspicious activity and to protect the security of our platform. This helps us protect personal data and prevent unauthorized access. We also enforce our Terms of Use to prevent misuse of Dependle, and may use personal data to investigate and mitigate fraudulent or illegal activities on the service.

Cookies and Tracking Technologies

Dependle uses cookies and similar tracking technologies primarily for analytics and improving your experience. For example, we use Google Analytics on our website and application, which places cookies in your browser to collect usage information. These cookies and the data they collect (such as pages visited, actions taken, and IP address) help us analyze web traffic and user behavior. The information gathered by Google Analytics may be transmitted to and stored on Google's servers (which may be outside your country of residence). We ensure that any use of analytics cookies is done in compliance with applicable privacy laws – for instance, if required, we will seek your consent for analytics cookies when you first visit our site. You can disable or block cookies via your browser settings, though note that some features of the service might not function correctly without cookies. Google's use of the data collected is governed by the Google Analytics privacy policy, and we do not combine analytics data with personally identifying information. (If you wish to opt out of Google Analytics tracking, Google provides a browser add-on for opting out, or you can use browser settings to block analytics scripts.)

Third-Party Services and Sharing of Data

We do not sell your personal information to third parties. However, we do rely on a few trusted third-party services to operate Dependle, and your data may be shared with or pass through these services as described below:

Hosting (Fly.io)

Dependle's application and databases are hosted on Fly.io, a cloud hosting provider based in San Francisco, CA, USA. This means that any data you enter into Dependle (your account information, project data, etc.) is stored on Fly.io's servers. Fly.io acts as our data processor by storing and handling data on our behalf. We have chosen Fly.io for its reliability and security measures. However, since Fly.io's infrastructure is in the United States, your data may be transferred to and processed in the United States. If you are located in the European Union or other regions with data protection laws, note that data transferred to the US may not have the same legal protections as under your local law. We take steps to ensure any international data transfers comply with applicable legal requirements (for example, by relying on standard contractual clauses or Fly.io's certifications, as available).

Analytics (Google Analytics)

As noted, we use Google Analytics to understand how users use our site and app. Google Analytics will collect usage data (e.g., which pages are visited, for how long, etc.) and device information through cookies or similar identifiers. Google may process this data on servers globally. We have configured Google Analytics to anonymize IP addresses where applicable, to add an extra layer of privacy protection for our users. The data we get from Google Analytics helps us improve Dependle's user interface and features. Google is prohibited from sharing our Analytics data with others except as required or allowed by their terms and law. You can learn more in Google's own Privacy Policy.

Payments (Stripe)

All payment transactions are handled by Stripe, Inc. When you enter payment details, you are interacting directly with Stripe's systems. Stripe will collect your payment card information and process your payment. We [Dependle] receive a confirmation of payment and basic customer info from Stripe, but we never see your full credit card number or billing financial details. Stripe may also collect identifying information about you (such as name and billing address) to process the payment and for fraud prevention. Stripe is a reputable payment processor that complies with strict security standards (PCI-DSS). For more details, see Stripe's Privacy Policy.

Customer Relationship Management (HubSpot)

We use HubSpot as our CRM and support tool. If you contact us for support or sign up to receive updates, your name, email, and potentially your company/team name and any message content may be stored in HubSpot. This helps us manage customer communications in one place (for example, tracking support tickets or sending newsletters if you subscribed). HubSpot will process this data on our behalf. HubSpot's servers may be located in the United States or other countries. We ensure that HubSpot, as our data processor, is contractually bound to protect your data and use it only for providing services to us. You can unsubscribe from any non-essential communications at any time by contacting us or using provided opt-out links.

Website Platform

Our marketing website (the informational website for Revivr) is built with Next. We may collect analytics about site visitors or handle form submissions on the website. For example, if there is a contact or sign-up form on our public site, the information you submit could be processed through Framer's systems and then sent to us (possibly via HubSpot integration). Framer might use cookies or tracking on the website to enable site functionality and measure engagement. Any data collected via our website through Framer is likewise covered by this Privacy Policy and will only be used for the purposes you provided it (such as responding to a contact inquiry).

Domain Provider (Hostinger and One.com)

Our domain names (dependle.io and auditwebsite.io) is registered through Hostinger and One.com. In general, the domain registrar has your domain lookup information (which is not user data but our own ownership info) and handles directing internet traffic to our site. Hostinger does not directly receive or process user personal data from Dependle's users, beyond facilitating your connection to our domain. (However, if Hostinger provides any web or email hosting services to us, it might incidentally handle data in transmissions. We primarily list it here for transparency since it's part of our website's infrastructure.)

All third-party service providers we use are selected for their trustworthiness and commitments to data security. We have agreements in place with these providers (such as data processing addenda) to ensure they protect personal information in line with this Privacy Policy and applicable laws. However, please be aware that if we use third-party software like Google Analytics or others, we remain accountable for how those third parties handle personal data. We regularly review our third-party services to ensure they meet privacy and security standards. If any provider is found to put your data at risk or use it in an unauthorized way, we will take appropriate action, which could include discontinuing their service.

We will never share or disclose your personal information to outside parties except in the following situations: (1) with your consent (for example, if you integrate Dependle with another service and we need to transfer data at your direction), (2) for external processing with trusted vendors as described above (under strict confidentiality and purpose limitations), or (3) for legal reasons – if we are required by law or valid legal process (such as a subpoena or court order) to disclose certain data, or if we need to enforce our terms and protect rights, property, or safety (in which case we would only share the minimum necessary information and, where lawful, inform you of the request).

AI analysis

When you use the AI analysis (Audit Website or Competitor Analysis), we process the following categories of data: the websites you choose to provide as input, the generated outputs, and technical metadata such as timestamps, language settings, feature flags, token counts and safety signals. We also keep minimal logs that help us diagnose faults, enforce usage limits and prevent abuse.

Purposes and legal bases

We process this data to provide the assistant and related Service features, to keep the Service secure and reliable, and to improve relevance and safety. The legal bases are performance of our contract with you and our legitimate interests in operating and securing the Service. Where local law requires consent for certain analytics or cookies that support the assistant, we will seek it through our consent tools.

Third‑party AI providers

We use third‑party AI providers as processors. They act on our instructions, must keep your data confidential, and may not use your prompts or outputs for their own purposes. We do not allow providers to train their general models on your content without your explicit consent. A current list of core processors is available on request.

Retention

Prompts and outputs that you save into tasks, projects or comments are stored as part of your Service data and follow the same retention settings and deletion controls described elsewhere in this policy. Operational logs and safety signals are retained for a shorter, limited period that is sufficient for security, troubleshooting and audit, after which they are deleted or anonymised.

Your choices

You can choose not to use the assistant. You can delete individual prompts, outputs and the related items from within the Service. If you submit a data rights request, we will include assistant data that is linked to your account, subject to legal restrictions and technical feasibility.

Sensitive data

Please avoid entering special category data, payment card numbers or information about others that you are not authorised to share. If such data is submitted in error, you can delete it in the Service and you may contact us to request additional deletion from backups where feasible.

International transfers

Where an AI provider processes data outside the EEA or the UK, we use appropriate safeguards such as the EU Standard Contractual Clauses and the UK international data transfer addendum, together with supplementary measures where required.

Automated decision‑making

We do not use the assistant to make decisions about you that produce legal effects or similarly significant effects without meaningful human involvement.

Security and access

Assistant data is protected by the same technical and organisational measures that apply to the rest of the Service, including encryption in transit, access controls and logging. Only authorised personnel may access interaction data for the limited purposes set out above.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required by law. In practice, this means: account information (name, email, team name) is kept as long as you have an active account with us. If you delete your account or request deletion, we will erase or anonymize this information within a reasonable period (unless we are legally required to retain it, for example for financial records or dispute resolution). Project and task data that you input into Dependle is stored until you delete that data or your account, as it's needed for the service to function. Usage analytics data may be retained in aggregate form (without personal identifiers) indefinitely for historical analysis, but any analytics data tied to your identity (for example, logs that contain your user ID or IP address) will either be deleted or anonymized after a reasonable period. We periodically review the data we have; if we find information that is no longer necessary, we will securely delete it. In summary, we do not keep personal data longer than we need it, in line with data minimization principles.

If your user account or team has been inactive (i.e., no logins or user activity) for 24 consecutive months, we permanently delete the account and all associated data, including projects, tasks, and team information. This is also applied to your user data in HubSpot. We will make reasonable efforts to notify you in advance at the email address associated with your account.

Your Rights and Choices

Access and Portability

You have the right to request a copy of the personal information we hold about you and to obtain it in a commonly used, machine-readable format.

Correction

If any of your information is inaccurate or outdated, you have the right to request that we correct or update it. You can also update some of your account information directly through your profile settings.

Deletion

You can request that we delete your personal data. For example, you may request the deletion of your account and all associated data. Do note that we may need to retain certain information for legal obligations or internal business purposes (like records of transactions for accounting), but we will inform you if such a case arises. When we no longer have any legitimate need to retain your data, we will delete or anonymize it.

Objection or Restriction

You have the right to object to or request the restriction of processing of your data in certain circumstances. For instance, you can opt out of any marketing emails (by using the unsubscribe link or contacting us). If you believe we are processing any data unlawfully or beyond what is necessary, you may object and we will review and limit the processing where applicable. In cases where we rely on your consent to process data (such as if we ever implement an optional feature that uses your data), you can withdraw consent at any time, and we will stop that processing.

Opt-Out of Analytics

If you do not want Google Analytics to be used in your case, you can utilize the tools mentioned above (browser add-ons or settings to block trackers). You can also contact us to see if we can offer an alternative means to respect your choice. Keep in mind that analytics helps us improve the service for you and others, but we respect users' preferences.

To exercise any of these rights, please contact us at support@dependle.io. We may need to verify your identity before fulfilling certain requests (for example, to ensure that no one else can obtain your data). We will respond to requests within a reasonable timeframe and in accordance with applicable law. There is no charge for exercising these rights, though if a request is manifestly excessive or unfounded, we reserve the right to refuse or charge a reasonable fee as permitted by law.

California Residents

While Dependle does not sell personal information, if you are a resident of California, you are entitled to request information about any collection and disclosure of your personal information over the past 12 months, and to ask us not to sell your information (again, we do not sell data). You also have similar rights to access, deletion, and non-discrimination as described above. You may contact us to exercise your California privacy rights.

European Union (GDPR)

If you are in the EU/EEA, we process your data under lawful bases defined by the GDPR. Typically, your account data is processed because it's necessary to perform our contract with you (providing the service), and usage data/analytics are processed under our legitimate interest in improving our product, or on the basis of consent (for cookies where required). You also have the right to lodge a complaint with your country's Data Protection Authority if you believe our processing of your personal data violates the law. However, we encourage you to contact us first so we can address your concerns directly.

Data Security

Encryption

All communication between your browser/app and Dependle's servers is encrypted via TLS (HTTPS). This protects data in transit from eavesdropping. We also employ encryption at rest for sensitive data where applicable (for instance, passwords are stored in hashed form, not plain text).

Secure Infrastructure

We rely on reputable cloud services (like Fly.io, Stripe, etc.) that maintain high security standards and certifications. Our servers are kept up to date with security patches, and we use firewalls and monitoring to guard against intrusion. We also limit access to databases and user information strictly to authorized use – as a one-person team, only the founder/owner of Dependle has access to production data, and only on an as-needed basis for maintenance or support. This follows the principle of least privilege for data access.

Third-Party Security

Before engaging any third-party service, we ensure they have robust security practices. For example, Stripe is Level 1 PCI-DSS compliant for payment security, Google Analytics anonymizes IP addresses (on our configuration) to reduce sensitivity, and HubSpot and Fly.io both state their compliance with privacy and security standards. We also sign Data Processing Agreements where appropriate to ensure they handle data lawfully on our behalf.

Administrative Safeguards

Internally, we have policies to prevent unauthorized data viewing or downloading. Since we are a very small team, we do not have employees accessing data day-to-day; however, any future team members would be trained on confidentiality and data protection. We also avoid collecting highly sensitive data in the first place, which reduces risk.

Payment Security

By outsourcing payments to Stripe, we avoid storing any financial information on our systems, thereby drastically reducing the risk related to payment data.

Monitoring and Testing

We periodically review our application for common security vulnerabilities and employ best practices in development to guard against things like SQL injection, XSS, and other threats. If we detect any security issue or suspicious activity, we act promptly to investigate and mitigate it.

Despite all measures, no method of transmission over the internet or electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. In the unlikely event of a data breach that affects your personal information, we will notify you and the appropriate authorities as required by law, and we will take immediate steps to remediate the situation.

Children's Privacy

Dependle is not directed to individuals under the age of 13, and we do not knowingly collect personal information from children. If you are under 13, please do not use our service or provide any information. If we become aware that we have inadvertently collected personal data from a child under 13 (or under the applicable age of consent in certain jurisdictions, such as 16 in the EU), we will take steps to delete such information from our records. Parents or guardians who believe that their child may have provided us with personal information can contact us at support@dependle.io, and we will promptly investigate and address the issue.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time as our services and legal requirements evolve. When we make changes, we will update the "Last updated" date at the top of this policy. If changes are significant, we may also provide a more prominent notice (such as by email notification or a message within the app). We encourage you to review this Privacy Policy periodically for any updates. Your continued use of Dependle after any changes to this Privacy Policy constitutes acceptance of those changes.

Contact Us

Email: support@dependle.io

Mailing Address: Dependle AB (Organization number: 559537-3068), Klubbacken 59, 12939, Stockholm Sweden

We will gladly assist with any inquiries or requests you have regarding your privacy and data protection.

This Privacy Policy was created to be transparent about our data practices and to help protect your rights. We appreciate the trust you place in Dependle and are committed to maintaining that trust by respecting your privacy.