Privacy Policy
Last updated: February 1, 2026
Summary: We collect minimal data needed to provide our documentation platform. We never sell your data. You have full control over your information.
1. Information We Collect
Information You Provide
When you create an account or use our services, you may provide:
- Account Information: Email address, name, and password
- Payment Information: Billing details processed securely by Stripe (we never store full credit card numbers)
- Content: Documentation files, images, and other content you upload
- Communications: Messages you send to our support team
Information Collected Automatically
When you use our services, we automatically collect:
- Usage Data: Pages visited, features used, and actions taken
- Device Information: Browser type, operating system, and device identifiers
- Log Data: IP address, access times, and referring URLs
- Analytics Data: Aggregated usage statistics via Google Analytics
2. How We Use Your Information
We use collected information to:
- Provide, maintain, and improve our documentation platform
- Process transactions and send related information
- Send technical notices, updates, and security alerts
- Respond to your comments, questions, and support requests
- Monitor and analyze trends, usage, and activities to improve user experience
- Detect, investigate, and prevent fraudulent or unauthorized activity
- Comply with legal obligations
3. Information Sharing
We do not sell your personal information. We may share information only in these circumstances:
Service Providers
We work with trusted third-party services that help us operate our platform:
| Provider | Purpose | Data Shared |
|---|---|---|
| Google Cloud / Firebase | Infrastructure, authentication, database | Account data, content |
| Stripe | Payment processing | Billing information |
| Cloudflare | CDN, security, storage | Content delivery |
| Vercel | Website hosting | Usage analytics |
| Google Analytics | Usage analytics | Anonymized usage data |
| Resend | Transactional email | Email address |
Legal Requirements
We may disclose information if required by law or to:
- Comply with legal process or government requests
- Protect the rights, privacy, safety of Jamdesk, users, or others
- Enforce our terms of service
Business Transfers
If Jamdesk is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.
4. Cookies and Tracking
We use cookies and similar technologies to:
- Keep you logged into your account
- Remember your preferences
- Understand how you use our services
- Improve performance and user experience
Types of Cookies
| Type | Purpose | Duration |
|---|---|---|
| Essential | Authentication, security, basic functionality | Session / 1 year |
| Analytics | Usage statistics (Google Analytics) | 2 years |
| Preferences | Remember your settings | 1 year |
Managing Cookies
You can control cookies through your browser settings. Note that disabling essential cookies may affect functionality. For detailed information about specific cookies we use, see our Cookie Policy.
Google Analytics
We use Google Analytics to understand how visitors interact with our website. Google Analytics collects information anonymously and reports website trends without identifying individual visitors. You can opt out by installing the Google Analytics Opt-out Browser Add-on.
Do Not Track
Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Currently, there is no uniform standard for how websites should respond to DNT signals. Our website does not currently respond to DNT signals, but you can manage your tracking preferences through your browser settings and the opt-out options described above.
5. Data Security
We implement industry-standard security measures including:
- Encryption: All data transmitted using TLS/SSL encryption
- Access Controls: Strict employee access to personal data
- Infrastructure: Secure cloud hosting with Google Cloud Platform
- Monitoring: Continuous security monitoring and logging
While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.
Data Breach Notification
In the event of a data breach that affects your personal information, we will:
- Notify affected users within 72 hours of becoming aware of the breach (as required by GDPR)
- Notify relevant supervisory authorities where legally required
- Provide information about the nature of the breach, data affected, and steps we are taking to address it
- Offer guidance on steps you can take to protect yourself
6. Data Retention
We retain your information for as long as your account is active or as needed to provide services. After account deletion:
- Account data: Deleted within 30 days
- Content: Removed from our servers within 30 days
- Backups: Purged within 90 days
- Logs: Anonymized or deleted within 12 months
We may retain certain information as required by law or for legitimate business purposes.
7. Your Rights
You have the right to:
- Access: Request a copy of your personal data
- Correct: Update inaccurate or incomplete information
- Delete: Request deletion of your personal data
- Export: Receive your data in a portable format
- Restrict: Limit how we process your data
- Object: Opt out of certain data processing
- Withdraw Consent: Revoke previously given consent
To exercise these rights, contact us at legal@jamdesk.com.
8. International Data Transfers
Jamdesk is based in the United States. If you access our services from outside the US, your information may be transferred to, stored, and processed in the US or other countries where our service providers operate.
We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where required.
9. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act:
- Right to Know: Request what personal information we collect, use, and disclose
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: We do not sell personal information
- Non-Discrimination: We will not discriminate against you for exercising your rights
Categories of Information Collected
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email, IP address | Yes |
| Commercial Information | Purchase history, billing | Yes |
| Internet Activity | Browsing history, interactions | Yes |
| Geolocation | General location from IP | Yes |
| Biometric Information | Fingerprints, face recognition | No |
| Sensitive Personal Info | SSN, health data, precise location | No |
California "Shine the Light" Law
Under California Civil Code Section 1798.83, California residents may request information about the disclosure of personal information to third parties for direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes.
10. Other US State Privacy Rights
If you are a resident of Virginia, Colorado, Connecticut, Utah, or other states with comprehensive privacy laws, you may have similar rights to those described in the California and GDPR sections above, including:
- Right to Access: Confirm whether we process your personal data and access that data
- Right to Correct: Correct inaccuracies in your personal data
- Right to Delete: Delete personal data you have provided or we have obtained
- Right to Data Portability: Obtain a copy of your personal data in a portable format
- Right to Opt-Out: Opt out of targeted advertising, sale of personal data, and profiling
We do not sell personal data or use it for targeted advertising or profiling that produces legal or similarly significant effects. To exercise any of these rights, contact us at legal@jamdesk.com. We will respond to your request within the timeframe required by applicable law (typically 45 days).
11. European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation:
Legal Bases for Processing
- Contract: Processing necessary to provide our services
- Consent: Where you have given explicit consent
- Legitimate Interest: For security, fraud prevention, and service improvement
- Legal Obligation: When required by law
Your GDPR Rights
In addition to the rights listed in Section 7, you may lodge a complaint with your local data protection authority.
Data Controller
Even Flow Solutions, LLC is the data controller for personal information collected through our services.
Data Processing Addendum
For organizations requiring a formal data processing agreement, we offer a Data Processing Addendum (DPA) that includes Standard Contractual Clauses. Visit our DPA page to learn more or request a signed agreement.
12. Children's Privacy
Our services are not directed to children under 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the updated policy on this page
- Updating the "Last updated" date
- Sending email notification for significant changes (if you have an account)
We encourage you to review this policy periodically. Your continued use of our services after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: legal@jamdesk.com
- Website: www.jamdesk.com
For data subject requests (access, deletion, etc.), please email us with the subject line "Privacy Request" and include your account email address.