SoloStack OSSign in

Legal

Privacy Policy

Last updated: April 2026

1. Who we are

SoloStack OS (“we”, “us”, “our”) is a web-based AI productivity platform. If you have questions about this policy, contact us at support@solostack.io.

2. What data we collect

  • Account data — name, email address, and profile picture provided when you sign up or authenticate via Google OAuth.
  • Workspace data — business name, brand context, and any content you enter into the platform to generate outputs.
  • Usage data — which features you use, run counts, and timestamps. Used to enforce plan limits and improve the service.
  • Billing data — payment is handled entirely by Stripe. We store only your Stripe customer ID and subscription status — never your card details.
  • Technical data — IP address, browser type, and cookies necessary for authentication and session management.

3. How we use your data

  • To provide, operate, and improve SoloStack OS.
  • To authenticate you and maintain your session.
  • To enforce plan credit limits and process billing.
  • To send transactional emails (e.g. email confirmation, password reset). We do not send marketing emails without your consent.
  • To comply with legal obligations.

The legal basis for processing is the performance of a contract (providing the service you signed up for) and, where applicable, our legitimate interests in operating a secure and functional platform.

4. Third-party processors

We share data with the following sub-processors to operate the service:

SupabaseDatabase, authentication, and file storageEU / AWS
StripePayment processing and subscription managementUS (SCCs apply)
Google (OAuth)Optional sign-in via Google accountUS (SCCs apply)
OpenAI / AI providersAI-powered content generationUS (SCCs apply)
VercelHosting and edge deliveryUS (SCCs apply)

SCCs = EU Standard Contractual Clauses, ensuring adequate protection for data transfers outside the EEA.

5. Cookies

We use only strictly necessary cookies for authentication (session tokens and PKCE verifiers). We do not use advertising or tracking cookies.

6. Data retention

We retain your account and workspace data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

7. Your rights (GDPR)

If you are located in the EEA or UK, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Request deletion of your data (“right to be forgotten”).
  • Request a portable copy of your data.
  • Object to or restrict certain processing.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, email us at support@solostack.io.

8. Security

We use industry-standard measures to protect your data, including encrypted connections (HTTPS), row-level security in our database, and secure session management. No system is 100% secure, and we cannot guarantee absolute security.

9. Changes to this policy

We may update this policy from time to time. We will notify you of significant changes by updating the “Last updated” date at the top and, where appropriate, via email.

Terms of ServicePrivacy PolicyContact