Privacy Policy

Last updated: May 2025

1. Information We Collect

When you use Pact we collect:

  • Account information — name, username, email address
  • Challenge activity — check ins, commitments, streaks, reactions, nudges
  • Payment information — processed securely by Stripe, we do not store card details
  • Usage data — how you interact with the platform

2. How We Use Your Information

We use your information to:

  • Provide and improve the Pact platform
  • Process payments and payouts
  • Send notifications and daily reminders about your challenges
  • Ensure platform safety and prevent fraud

We do not sell your personal data to third parties.

3. What's Public

By default the following information is visible to other users:

  • Your username and display name
  • Your public commitments in challenges you join
  • Your check in posts and streaks within a challenge group
  • Your profile stats (total check ins, streak)

Check in posts in public challenges may be visible to non-members browsing the Explore page. Private commitments are never visible to other users. Your email address is never publicly displayed.

4. Third Party Services

Pact uses the following third party services to operate the platform. Each has their own privacy policy that governs how they handle your data:

  • Supabase — database and authentication (supabase.com/privacy)
  • Stripe — payment processing and creator payouts (stripe.com/privacy)
  • Resend — transactional email delivery including daily reminders and notifications (resend.com/privacy)
  • Vercel — hosting and infrastructure (vercel.com/legal/privacy-policy)

We do not store your credit card details. All payment data is handled directly by Stripe.

5. Data Storage & Security

Your data is stored securely using Supabase, a PostgreSQL database provider. All data is encrypted at rest and in transit. We use industry-standard security practices to protect your information.

6. Data Retention

We retain your data for as long as your account is active. If you request deletion of your account, we will delete your personal data within 30 days. Some data may be retained in anonymized or aggregated form for platform analytics. Payment records may be retained as required by law.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Export your data at any time

To exercise these rights contact us at privacy@makeapact.app

8. California Residents (CCPA)

California residents may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal data is collected, the right to request deletion, and the right to opt out of the sale of personal data. We do not sell personal data. To exercise your California privacy rights contact us at privacy@makeapact.app

9. Children's Privacy

Pact is not intended for users under the age of 18. We do not knowingly collect personal data from children under 18. If you believe a minor has created an account, please contact us at privacy@makeapact.app and we will promptly delete the account and associated data.

10. Cookies

We use essential cookies only — for authentication and session management. We do not use tracking or advertising cookies.

11. Payments & Refunds

For information about entry fees, platform fees, and our refund policy please review our Terms of Service.

12. Changes to This Policy

We may update this policy from time to time. We will notify users of significant changes via email or in-app notification. Continued use of Pact after changes are posted constitutes acceptance of the updated policy.

13. Contact

For questions about this Privacy Policy, data requests, or to exercise your privacy rights, please contact us at support@makeapact.app. We will respond within 5 business days.

View Terms of Service →