Privacy overview

1. Who we are

Rolling Insights is operated by an independent developer. For privacy or support questions, reach out via the contact page.

2. Data we collect

Rolling Insights collects a small amount of information needed to operate the product, secure access, and understand how features are used.

• Account details from Firebase Authentication (email, UID, basic profile data).
• Operational logs about API calls, errors, and performance, stored in our monitoring stack.
• Optional contact details you share with us (for example via the contact page or support).

3. How we use your data

We use this information only to operate and improve Rolling Insights, and to keep your account secure.

• Authentication, authorization, and role-based access control.
• Detecting abuse, debugging issues, and monitoring system health.
• Communicating important updates about the service, such as incident notifications.

4. Legal basis (plain language)

We keep the legal basis simple and practical:

• Service delivery (contract): to provide your account and requested features.
• Legitimate interests: to secure the service, prevent abuse, and monitor reliability.
• Consent: only for optional communications you explicitly request.

5. What we do not do

Equally important is what we do not do with your data.

• No selling of personal data to third parties.
• No marketing emails unrelated to Rolling Insights itself.
• No tracking of your activity on third-party platforms you visit.

6. Sharing / processors (third parties)

We use a small set of service providers to run the product. They only receive the data needed to deliver their function.

• Firebase Authentication (account identity).
• Firestore (account and subscription state).
• Hosting/CDN (serving the app and assets).
• Monitoring and logging providers (diagnostics, uptime, and security signals).
• Billing provider (FastSpring) for subscriptions and payment details; we do not store full card details.

7. Cookies & tracking

We use only essential cookies and storage needed to operate the service.

• Essential cookies, local storage, or session storage to keep you signed in.
• No advertising trackers or cross-site profiling.
• We do not sell personal data.
• If analytics are used, they are limited to product health and reliability.
• You can block cookies in your browser, but parts of the app may not function correctly.

8. Security

We apply practical safeguards appropriate for the service.

• Role-based access control and least-privilege access for internal tools.
• Encryption in transit and at rest where supported by our providers.
• Abuse prevention and monitoring to protect accounts.

9. Data retention

We keep data only as long as needed to run the service and resolve issues.

• Account and authentication data remains while your account is active.
• Operational logs are kept for a limited period for security and diagnostics.
• Support communications are kept as needed to resolve your request.

10. Your rights

You can request access, correction, deletion, or export of your data via the contact page. You can also request full account deletion.

• We may need to verify your identity before fulfilling a request.
• We respond and verify requests within a reasonable timeframe.
• Deletion requests may be subject to limited security or legal retention needs.

11. International processing

Data may be processed in regions where our service providers operate. We aim to minimize data and rely on provider safeguards for cross-border processing.

12. Changes to this policy

We may update this policy as the service evolves. Material changes will be reflected in the Updated date at the top of this page.

• Terms of use
• Refund policy
• Legal overview