Privacy Policy

Last updated: May 2026

This policy describes how Outboundly processes information when you use our website, authentication (Supabase Auth), payments (Stripe), analytics (PostHog, if enabled), and the FastAPI backend.

What we collect

Account: email and user id from Supabase when you sign in.
Generations: prospect inputs you submit, model outputs, and metadata needed to run quotas and show history.
Billing: Stripe processes payment data; we store subscription state linked to your user id.
Analytics: optional PostHog events (e.g. page views, generation completed) when configured.

Legal bases (EEA/UK)

Where GDPR applies, we rely on contract (providing the service), legitimate interests (security, product improvement), and consent where required (e.g. non-essential cookies/analytics if we add them).

Retention

We retain data as long as your account is active and as needed for billing, abuse prevention, and legal obligations. You may request deletion of your account subject to legal holds.

Contact

For privacy requests, email hello@outboundly.site.