Back
Privacy Policy for StreamPulse
Privacy Policy
Last Updated: January 17, 2026
Effective Date: January 17, 2026
1. Introduction
StreamPulse ("we," "us," "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our payment aggregation dashboard at streampulse.com.
By using StreamPulse, you consent to the practices described in this Privacy Policy.
StreamPulse is operated by StreamPulse Pay, located in Indiana, United States.
2. Information We Collect
2.1 Information You Provide Directly
Account Information:
Name
Email address
Password (encrypted, never stored in plain text)
Profile preferences
Payment Information:
Credit card details for Pro subscriptions (processed and stored by Stripe, not by us)
Billing address
2.2 Information from Connected Payment Platforms
When you connect third-party platforms (Stripe, PayPal, Venmo, banks) via OAuth, we collect:
Transaction Data:
Payment amounts and dates
Client/payer names
Transaction descriptions
Payment status (completed, pending, failed)
Currency type
Platform identifiers (transaction IDs)
Platform Connection Data:
OAuth access tokens (encrypted)
Refresh tokens (encrypted)
Platform account IDs
Connection timestamps
Last sync dates
We collect read-only data and cannot:
Access your bank account passwords
Initiate payments or transfers
Modify your payment platform settings
View sensitive credentials
2.3 Automatically Collected Information
Usage Data:
IP address
Browser type and version
Device type (desktop, mobile, tablet)
Operating system
Pages visited and features used
Time and date of visits
Referring URLs
Cookies and Tracking:
Session cookies (required for login)
Analytics cookies (Google Analytics or similar)
Preference cookies (dashboard settings)
3. How We Use Your Information
We use your information to:
3.1 Provide the Service
Display aggregated payment data in your dashboard
Sync transaction data from connected platforms
Calculate statistics (Total This Month, Pending Payments, etc.)
Search and filter payment records
Generate CSV exports
3.2 Improve the Service
Analyze usage patterns to enhance features
Debug technical issues
Optimize performance and load times
Develop new features based on user behavior (anonymized data)
3.3 Communicate with You
Send account-related emails (login confirmations, password resets)
Notify you of service updates or maintenance
Respond to support requests
Send marketing emails (only with your consent; opt-out anytime)
3.4 Security and Fraud Prevention
Detect and prevent unauthorized access
Monitor for suspicious activity
Enforce our Terms of Service
Comply with legal obligations
3.5 Legal Compliance
Respond to subpoenas, court orders, or legal processes
Protect our rights and property
Investigate violations of our Terms
4. How We Share Your Information
4.1 We Do NOT Sell Your Data
StreamPulse never sells, rents, or trades your personal or payment data to third parties for marketing purposes.
4.2 Third-Party Service Providers
We share limited data with trusted service providers who help us operate StreamPulse:
Provider Purpose Data Shared Privacy Policy
Supabase Database hosting Account info, payment data Supabase Privacy
Stripe Payment processing Billing info, credit cards Stripe Privacy
Vercel Website hosting Server logs, IP addresses Vercel Privacy
Google Analytics Usage analytics Anonymized usage data Google Privacy
Postmark/SendGrid Transactional emails Email address, name Postmark Privacy
All service providers:
Are contractually obligated to protect your data
Cannot use your data for their own purposes
Must comply with data protection laws
4.3 Payment Platforms (OAuth)
When you connect a payment platform, we access data through their APIs:
Stripe: Transaction data via Stripe API
PayPal: Transaction data via PayPal API
Venmo: Transaction data via Venmo API (if available)
Banks: Read-only access via Plaid or similar services
You control these connections. Disconnecting a platform stops data sharing immediately.
4.4 Legal Requirements
We may disclose your information if required by law:
To comply with subpoenas, warrants, or court orders
To respond to lawful requests from government authorities
To protect our rights, property, or safety
To investigate fraud or security incidents
4.5 Business Transfers
If StreamPulse is acquired or merged, your data may be transferred to the new owner. You will be notified via email 30 days before any such transfer.
5. Data Security
5.1 Security Measures
We implement industry-standard security practices:
Encryption:
In transit: SSL/TLS encryption (HTTPS) for all data transmission
At rest: AES-256 encryption for sensitive data in our database
OAuth tokens are encrypted with separate keys
Access Controls:
Role-based access control (RBAC) for our team
Multi-factor authentication (MFA) for admin accounts
Regular security audits and penetration testing
Infrastructure:
Hosted on secure cloud providers (Supabase, Vercel)
Automated backups every 24 hours
Firewall protection and intrusion detection
Password Security:
Passwords hashed using bcrypt (industry standard)
Password strength requirements enforced
Account lockout after failed login attempts
5.2 Data Breach Notification
If a security breach affects your data, we will:
Notify you via email within 72 hours
Disclose what data was compromised
Explain steps we're taking to address the breach
Provide guidance to protect your accounts
5.3 Your Responsibility
You must:
Keep your password secure
Enable two-factor authentication (when available)
Log out of shared devices
Report suspicious activity immediately
We are not liable for breaches caused by your failure to protect your credentials.
6. Data Retention
6.1 Active Accounts
Account data and payment history are retained indefinitely while your account is active
You can delete specific payment records anytime through your dashboard
6.2 Deleted Accounts
When you delete your account:
Personal information is removed within 30 days
Payment data is permanently deleted within 30 days
Backup copies may exist for up to 90 days for disaster recovery
Anonymized usage data (no personal identifiers) may be retained for analytics
6.3 Legal Retention
We may retain certain data longer if required by:
Tax laws (7 years in the U.S.)
Financial regulations
Ongoing legal disputes
7. Your Privacy Rights
7.1 Access Your Data
You can view all your data through your dashboard or request a copy via email to streampulsepayments@protonmail.com.
7.2 Correct Your Data
Update your account information anytime in your dashboard settings.
7.3 Delete Your Data
Delete your account anytime through Settings → Delete Account. This permanently removes:
Your account and profile
All payment data
Connected platform credentials
7.4 Export Your Data
Download your payment history as CSV through the dashboard Export button.
7.5 Opt-Out of Marketing
Unsubscribe from marketing emails by:
Clicking "Unsubscribe" in any email
Updating preferences in Settings → Notifications
Note: You cannot opt out of transactional emails (login alerts, security notifications).
7.6 Revoke Platform Connections
Disconnect any payment platform anytime through Dashboard → Connections → Disconnect.
7.7 Cookie Management
Control cookies through your browser settings:
Chrome: Settings → Privacy and Security → Cookies
Firefox: Preferences → Privacy & Security → Cookies
Safari: Preferences → Privacy → Manage Website Data
Note: Disabling essential cookies will prevent login functionality.
8. Children's Privacy
StreamPulse is not intended for users under 18 years old. We do not knowingly collect data from minors. If we discover we have collected data from a child under 18, we will delete it immediately.
If you believe we have collected data from a minor, contact us at streampulsepayments@protonmail.com.
9. International Users (GDPR Compliance)
9.1 Legal Basis for Processing (GDPR)
If you're in the EU/EEA, we process your data based on:
Contract: To provide the Service you signed up for
Consent: For marketing emails (opt-in required)
Legitimate Interest: To improve our Service and prevent fraud
9.2 Your GDPR Rights
EU/EEA users have additional rights:
Right to Access: Request a copy of your data
Right to Rectification: Correct inaccurate data
Right to Erasure: Request deletion ("right to be forgotten")
Right to Restrict Processing: Limit how we use your data
Right to Data Portability: Export your data in machine-readable format
Right to Object: Object to processing based on legitimate interest
Right to Withdraw Consent: Opt out of marketing anytime
To exercise these rights, email streampulsepayments@protonmail.com with "GDPR Request" in the subject line.
9.3 Data Transfers
Your data is primarily stored in the United States. By using StreamPulse, you consent to data transfers outside the EU/EEA. We ensure adequate protections through:
Standard Contractual Clauses (SCCs) with service providers
GDPR-compliant hosting providers (Supabase, Vercel)
10. California Privacy Rights (CCPA)
10.1 CCPA Rights
California residents have the right to:
Know: Request what personal information we collect and how it's used
Access: Request a copy of your data (free, up to twice per year)
Delete: Request deletion of your personal information
Opt-Out: Opt out of data sales (we don't sell data, so this doesn't apply)
Non-Discrimination: Exercise rights without penalty
10.2 How to Exercise CCPA Rights
Email streampulsepayments@protonmail.com with "CCPA Request" in the subject line. We will verify your identity and respond within 45 days.
10.3 Information We Collect (CCPA Categories)
Category Examples Collected?
Identifiers Name, email, IP address ✅ Yes
Financial Information Payment data, bank transactions ✅ Yes
Commercial Information Purchase history (Pro subscriptions) ✅ Yes
Internet Activity Browser type, pages visited ✅ Yes
Geolocation IP-based location (city/state) ✅ Yes
Sensitive Personal Info Social Security numbers, health data ❌ No
11. Cookies and Tracking Technologies
11.1 Types of Cookies We Use
Cookie Type Purpose Duration Can You Disable?
Essential Login sessions, security Session ❌ No (breaks site)
Analytics Google Analytics, usage tracking 2 years ✅ Yes
Preferences Dashboard settings, theme 1 year ✅ Yes
Marketing None (we don't use marketing cookies) N/A N/A
11.2 Third-Party Cookies
We use Google Analytics to understand how users interact with StreamPulse. Google may use cookies to track you across websites. Learn more: Google Analytics Privacy.
11.3 Do Not Track (DNT)
We respect DNT signals. If your browser sends a DNT request, we will not track you with analytics cookies (though essential cookies remain active for login).
12. Third-Party Links
StreamPulse may contain links to third-party websites (Stripe, PayPal, Venmo). We are not responsible for their privacy practices. Review their privacy policies before providing personal information.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Changes will be communicated via:
Email to your registered address
Notice in your dashboard
Updated "Last Updated" date at the top of this page
Material changes (e.g., new data sharing practices) will require your explicit consent.
14. Contact Us
For questions, concerns, or requests regarding this Privacy Policy:
Email: streampulsepayments@protonmail.com
Address: Indiana, United States
Data Protection Officer: Aarya Raghav
Response Time: We aim to respond within 5 business days.
15. Consent
By using StreamPulse, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your information as described.