Privacy Policy

Last updated: March 8, 2026

ChartPen ("we", "us", "our") operates the website chartpen.com and the ChartPen web application at app.chartpen.com. This Privacy Policy explains how we collect, use, and protect your information.

1. Information We Collect

Account Information: When you sign up, we collect your email address and name (or the information provided by Google if you use Google Sign-In). We use Supabase for authentication.

Usage Data: We use Google Analytics (GA4) to collect anonymous usage data such as pages viewed, session duration, country, device type, and browser. This data is aggregated and cannot identify you personally.

Payment Information: Payments are processed by Stripe. We do not store your credit card number, CVV, or full card details on our servers. Stripe handles all payment data securely under PCI-DSS compliance.

Canvas & Drawing Data:

• Free users: All drawings are stored locally in your browser (localStorage). We do not have access to this data.
• Pro users: If you use cloud save, your canvas data is stored in our Supabase database. This data is associated with your account and protected by row-level security (only you can access your projects).

2. How We Use Your Information

• To provide and maintain the ChartPen service
• To authenticate your account and manage your subscription
• To save and sync your projects (Pro users)
• To analyze usage patterns and improve the product (via Google Analytics)
• To send important service updates (e.g., account changes, security notices)

3. Information Sharing

We do not sell, rent, or trade your personal information. We share data only with:

• Supabase — authentication and database hosting
• Stripe — payment processing
• Google Analytics — anonymous usage analytics
• Cloudflare — website hosting and CDN

These services have their own privacy policies and are GDPR-compliant.

4. Cookies

We use minimal cookies:

• Authentication cookies — to keep you signed in
• Analytics cookies — Google Analytics uses cookies to track anonymous usage. You can opt out using Google's opt-out browser add-on.

We do not use advertising cookies or third-party tracking pixels.

5. Data Storage & Security

Your data is stored on Supabase servers with row-level security policies. All data transmission uses HTTPS/TLS encryption. We follow industry-standard security practices to protect your information.

6. Your Rights

You have the right to:

• Access your personal data
• Delete your account and all associated data
• Export your drawings at any time (PNG export)
• Opt out of analytics tracking

To exercise any of these rights, contact us at support@chartpen.com.

7. Children's Privacy

ChartPen is not intended for children under 13. We do not knowingly collect information from children under 13.

8. Changes to This Policy

We may update this policy from time to time. We will notify users of significant changes via email or an in-app notice. The "last updated" date at the top reflects the most recent revision.

9. Contact Us

If you have questions about this Privacy Policy, contact us at:
support@chartpen.com