Short version: We collect only what we need to run the service — your name and email from Google or GitHub sign-in. We don't sell your data. We don't share it with advertisers. You can ask us to delete it at any time.
Freshdesign ("we", "us", "our") is a design system product operated by Freshdesign Interactive, Inc., based in San Jose, California, USA. You can reach us at info@freshdesign.com.
When you sign in using Google or GitHub OAuth, we receive and store:
We also store your design system configuration, including brand colors, typography preferences, and any UX rules or constraints you set through the product. This data is stored in your account so you can access it across devices.
We do not collect passwords. We do not use tracking pixels or behavioral ad targeting.
Payment processing is handled by Stripe. We do not store or have access to your credit card information. When you complete a payment, Stripe notifies us that the transaction was successful and we update your account status accordingly. You can review Stripe's privacy practices at stripe.com/privacy.
We use Supabase for authentication. Supabase stores a session token in your browser's local storage to keep you signed in between visits. This token expires automatically and contains no personally identifiable information beyond what is needed to verify your session. We also store your design system configuration in local storage to ensure fast load times. We set no advertising or analytics cookies.
We will never sell, rent, or trade your personal information to third parties for marketing purposes.
We use the following sub-processors to operate the service:
We do not share your data with any other third parties.
We retain your profile and configuration data for as long as you have an active account. If you ask us to delete your account, we will remove your data from our database within 30 days. Some anonymized, aggregate data may be retained for internal analytics.
If you are a California resident, you have the following rights under the California Consumer Privacy Act:
To exercise any of these rights, email info@freshdesign.com with the subject line "CCPA Request". We will respond within 45 days.
We use industry-standard practices to protect your data: HTTPS for all traffic, Supabase row-level security policies so users can only access their own records, and OAuth-only authentication with no passwords stored. No system is completely secure, and we cannot guarantee absolute security.
Freshdesign is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. If we make material changes, we will notify users by email. Continued use of the product after changes constitutes acceptance of the updated policy.
Questions about this policy or your data? Email us at info@freshdesign.com. We aim to respond within 5 business days.