Privacy Policy

Effective Date: October 4, 2025
Last Updated: October 4, 2025

1. Introduction

Mission Critical SaaS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

2. Information We Collect

2.1 Newsletter Subscription

When you subscribe to our newsletter, we collect:

• Email address
• Subscription date and time
• Consent timestamp
• Source of subscription (e.g., homepage, product page)
• Hashed IP address (for security and anti-abuse purposes)

2.2 Automatically Collected Information

When you visit our website, we may automatically collect:

• Browser type and version
• Operating system
• Pages visited and time spent
• Referring website
• IP address (hashed for privacy)

3. How We Use Your Information

We use the information we collect to:

• Send you newsletters and updates about our products and services
• Improve our website and user experience
• Prevent fraud and abuse
• Comply with legal obligations
• Respond to your inquiries and support requests

4. Data Retention

We retain your information as follows:

• Active Subscriptions: Until you unsubscribe
• Unconfirmed Subscriptions: Automatically deleted after 7 days
• Security Logs: Retained for 90 days for fraud prevention

5. Your Rights

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Unsubscribe: Opt out of newsletters at any time via the unsubscribe link in emails
• Data Portability: Request your data in a portable format

6. Security

We implement industry-standard security measures to protect your information:

• HTTPS encryption for all data transmission
• Hashing of personally identifiable information
• CSRF protection against unauthorized requests
• Rate limiting to prevent abuse
• Regular security audits and updates

7. Third-Party Services

We use the following third-party services:

• Amazon Web Services (AWS): Hosting and data storage
• Amazon SES: Email delivery
• Google reCAPTCHA: Bot detection (optional, if configured)

These services have their own privacy policies, which we encourage you to review.

8. Cookies

We use minimal cookies for:

• Session management (CSRF protection)
• Rate limiting (preventing abuse)

You can control cookies through your browser settings.

9. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

10. International Data Transfers

Your information may be transferred to and processed in the United States or other countries where our service providers operate. We ensure appropriate safeguards are in place for such transfers.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

13. Compliance

This Privacy Policy complies with:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• CAN-SPAM Act