Privacy Policy
Last Updated: December 9, 2025
At UserBoost, your privacy, and your users' privacy, matters. We built this tool as indie founders ourselves, so we keep things simple, transparent, and respectful. This policy explains what data we collect, why we collect it, and how it is used.
1Information We Collect
We collect two categories of data:
a) Account Data (you, the customer)
- • Email address, name, and billing details (via our payment processor).
- • Account configuration (onboarding flows, email templates, team members).
- • API keys you generate.
b) End-User Data (your app's users)
When you integrate the UserBoost script or SDK, we may process:
- • Identifiers you provide (user_id, email, or external_id).
- • Events you send (e.g., user_signed_up, completed_profile).
- • Context metadata (timestamp, browser info, referring URL).
We do not automatically collect passwords, payment data, or other sensitive information. If you send us sensitive data by mistake, it is your responsibility to remove it.
2How We Use Data
- • To deliver our service (track user onboarding, detect drop-offs, send nudges).
- • To improve product performance and reliability.
- • To send necessary service emails (account updates, billing notices).
We do not sell or share your data with advertisers.
3Email Communications & Consent
By creating an account with UserBoost, you automatically consent to receive:
- • Transactional emails: Essential communications about your account, billing, and service usage.
- • Product updates: Information about new features, improvements, and changes to our service.
- • Feature announcements: Notifications about product releases and enhancements.
- • Service notifications: Important updates regarding service status, maintenance, and security.
You can manage your email preferences and opt-out of non-essential communications in your account settings at any time. Please note that certain transactional emails (such as password resets and billing notices) cannot be disabled as they are necessary for the operation of the service.
4Data Retention
- • Account data: retained as long as you have an account.
- • Event data: retained for up to 90 days for debugging and analytics, then aggregated and anonymized.
- • Email logs: retained for 30 days to ensure deliverability tracking.
5Data Security
- • All data in transit is encrypted (HTTPS).
- • Database access is protected with strict role-based security (RLS).
- • We regularly monitor for abuse and anomalies.
6Third-Party Services
We rely on trusted sub-processors for infrastructure and email delivery (e.g., hosting providers, transactional email services). Each has its own strict data protection agreements.
7Your Rights
- • Access, update, or delete your account at any time.
- • Export your data via our dashboard or by contacting support.
- • Request deletion of end-user data by contacting us.
8Compliance
- • GDPR: We act as a Data Processor for end-user data. You remain the Data Controller.
- • CCPA: We do not sell personal information.
- • We provide a Data Processing Agreement (DPA) upon request.
9Email Communications & Consent
By creating an account with UserBoost, you automatically consent to receive:
- • Transactional emails: Essential communications about your account, billing, and service usage.
- • Product updates: Information about new features, improvements, and changes to our service.
- • Feature announcements: Notifications about product releases and enhancements.
- • Service notifications: Important updates regarding service status, maintenance, and security.
You can manage your email preferences and opt-out of non-essential communications in your account settings at any time. Please note that certain transactional emails (such as password resets and billing notices) cannot be disabled as they are necessary for the operation of the service.
9Contact Us
For questions or concerns, contact: