Privacy Policy for ReadmeBio.com

Effective Date: January 19, 2025

1. Introduction

Welcome to ReadmeBio.com ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our professional README profile creation and management service.

By using ReadmeBio.com, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide to Us

Account Information:

  • Email address
  • Name
  • Password (stored as encrypted hash)
  • Account creation and last update timestamps

Profile Content:

  • README profile content (text, formatting, structure)
  • Profile visibility settings
  • Privacy preferences

2.2 Information Automatically Collected

Technical Information:

  • IP address
  • Browser type and version
  • Device information
  • Access times and dates
  • Pages viewed

Cookies and Similar Technologies:

  • Session cookies for authentication
  • Preference cookies for user settings
  • JWT tokens for API authentication (stored locally)

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain our service: Create, store, and manage your professional README profiles
  • Authenticate users: Verify your identity and maintain secure access to your account
  • Improve our service: Analyze usage patterns to enhance features and user experience
  • Communicate with you: Send service-related emails (password resets, important updates)
  • Ensure security: Detect and prevent fraudulent or unauthorized activities
  • Comply with legal obligations: Respond to legal requests and prevent harm

4. How We Share Your Information

4.1 Public Profiles

Content you designate as “Public” through visibility settings may be viewed by anyone with the link.

4.2 Controlled Sharing

Based on your privacy settings, profile content may be shared with:

  • Specific individuals (via direct link)
  • Team members only
  • Organization members only
  • Company-wide audience
  • Link-based access (anyone with the unique link)

4.3 Service Providers

We may share information with third-party service providers who assist us in:

  • Hosting and infrastructure (cloud services)
  • Database management
  • Security and fraud prevention
  • Analytics (in aggregate, non-identifiable form)

4.4 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities.

4.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Encryption: Passwords are hashed using BCrypt
  • Secure transmission: HTTPS/TLS encryption for all data in transit
  • Access controls: Role-based access to production systems
  • Regular security audits: Periodic review of security practices
  • JWT authentication: Secure token-based API authentication

However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as necessary to:

  • Provide you with our services
  • Comply with legal obligations
  • Resolve disputes
  • Enforce our agreements

When you delete your account, we will delete or anonymize your personal information within 30 days, unless we are required to retain it for legal purposes.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

7.1 Access and Portability

Request a copy of the personal information we hold about you in a structured, commonly used format.

7.2 Correction

Request correction of inaccurate or incomplete personal information.

7.3 Deletion

Request deletion of your personal information, subject to certain exceptions.

7.4 Restriction

Request that we restrict processing of your personal information in certain circumstances.

7.5 Objection

Object to our processing of your personal information for direct marketing or based on legitimate interests.

7.6 Withdrawal of Consent

Where processing is based on consent, you may withdraw consent at any time.

To exercise these rights, contact us at privacy@readmebio.com.

8. Children’s Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from those in your country. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, disclose, and sell
  • Right to delete personal information (with exceptions)
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

11. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

Legal Basis for Processing:

  • Consent (for optional features)
  • Contract (to provide our services)
  • Legitimate interests (security, fraud prevention, service improvement)
  • Legal obligations

Data Protection Officer: Contact our DPO at dpo@readmebio.com

Supervisory Authority: You have the right to lodge a complaint with your local data protection authority.

12. Third-Party Links

Our service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the “Effective Date” at the top
  • Sending an email notification for material changes

We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@readmebio.com

Mailing Address:
ReadmeBio.com
[Your Company Address]
[City, State, ZIP]
[Country]

Data Protection Officer: dpo@readmebio.com

15. Definitions

  • Personal Information: Information that identifies, relates to, or could reasonably be linked to you
  • Service: The ReadmeBio.com website and application
  • Profile: Your professional README content created using our service
  • Visibility Settings: Privacy controls that determine who can access your profile

This Privacy Policy is governed by the laws of [Your Jurisdiction] without regard to its conflict of law provisions.