Legal

Privacy Policy

Effective date: January 1, 2026. Last updated: May 20, 2026

Overview

SaaSLaunch ("we", "our", or "us") operates the website saaslaunch.site and provides a SaaS product submission platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

The short version: We collect only what we need to run the service and the Chrome extension. We don't sell your data. The extension uses your API token to retrieve your product profiles, fill directory submission forms you choose, and mark submission status.

By using the Service, you agree to the terms of this Privacy Policy. If you disagree with any part of it, please discontinue use of the Service.

Information We Collect

We collect information in the following ways:

Information you provide directly:

  • Account information: Your name, email address, and password when you create an account.
  • Product information: Details about your products (name, URL, descriptions, features, pricing) that you enter when creating submission profiles.
  • Payment information: We use Stripe to process payments. We never see or store your full credit card details. Stripe handles all payment processing directly.
  • Communications: Any messages you send to our support team.

Chrome extension information:

  • API token: The extension stores your SaaSLaunch API token in Chrome sync storage so it can connect to your account. The token is sent to saaslaunch.site as a Bearer token when the extension calls our API.
  • Product data used for form filling: When you choose a product in the extension, product fields such as product name, URL, tagline, description, founder name, founder email, company name, phone, country, city, address, pricing, category, and social links may be retrieved from your account and inserted into third-party directory forms you choose to fill.
  • Submission activity: The extension may send directory IDs, product IDs, and submission status updates to saaslaunch.site so your dashboard can show which directories are pending, submitted, failed, or manually marked.
  • Current page/domain detection: The extension runs a lightweight content script on webpages because directory forms live on many independent domains. It may read the current domain and local page text in your browser to detect known directory pages, form submit intent, and success messages. This page text is not sent to our servers. A domain or URL may be sent inside the extension to coordinate a pending submission, and submission status is sent to our API only when it relates to a product and directory action you started.

Information collected automatically:

  • Log data: IP address, browser type, operating system, referring URLs, pages visited, and timestamps.
  • Usage data: Features used, submission activity, and interactions with the dashboard.
  • Cookies and tracking: Session cookies for authentication and preference storage. See the Cookies section for more detail.

Information from third parties:

  • If you sign in with Google via Firebase Authentication, we receive your Google account email address, display name, and profile picture from Google.

How We Use Your Information

We use the information we collect to:

  • Create and manage your account, and authenticate you securely
  • Provide, operate, and improve the Service
  • Generate AI-tailored submission copy based on your product details
  • Retrieve your selected product profile through the Chrome extension and fill third-party directory forms you choose
  • Track directory submission status in your SaaSLaunch dashboard
  • Process payments and send transactional emails (receipts, plan confirmations)
  • Send service-related notifications (e.g. new directories added, important updates)
  • Respond to support requests
  • Detect and prevent fraud, abuse, or security incidents
  • Analyze usage patterns to improve the product
  • Comply with legal obligations

We do not use your product information to train AI models, sell to third parties, or use for any purpose other than generating your submission copy.

We do not use extension data to build browsing profiles, sell advertising, or track unrelated web activity.

We may send marketing emails about new features or relevant updates. You can opt out of these at any time via the unsubscribe link in the email.

Data Storage and Security

Your data is stored on secured servers in the European Union (hosted on Oracle Cloud Infrastructure). We use industry-standard encryption for data in transit (TLS) and at rest.

Access to user data is restricted to authorized personnel only, on a need-to-know basis. We do not store payment card details; all payment data is handled exclusively by Stripe. API tokens stored by the Chrome extension can be cleared by logging out of the extension or uninstalling it.

We retain your account data for as long as your account is active or as required to provide the Service. If you delete your account, we will delete or anonymize your data within 30 days, except where retention is required by law.

While we implement reasonable security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Third-Party Services

We use the following third-party services to operate the Service. Each has its own privacy policy:

  • Stripe: Payment processing. stripe.com/privacy
  • Firebase / Google Firebase Authentication: Authentication and identity management. firebase.google.com/support/privacy
  • Google Sign-In (OAuth): Optional third-party login. policies.google.com/privacy
  • OpenAI / AI provider: Used to generate AI-tailored copy. Your product descriptions are sent to the AI provider for processing. We do not share personal identifiers (name, email) with the AI provider.
  • Third-party directories: When you use the extension to fill a directory form, the product and contact fields you choose to submit are entered into that third-party website. The directory's own privacy policy applies after you submit the form.

We do not sell, trade, or rent your personal information to third parties for marketing purposes. We may share aggregated, anonymized data (e.g. "X submissions processed this month") that cannot identify any individual.

Cookies and Tracking

We use the following types of cookies:

  • Session cookies: Required for authentication. These are deleted when you close your browser.
  • Persistent cookies: Used to remember your login state (if you select "remember me") and UI preferences.
  • Analytics: We may use privacy-respecting analytics (no cross-site tracking) to understand how users interact with the Service.

We do not use tracking pixels, third-party advertising cookies, or behavioral targeting of any kind. You can disable cookies in your browser settings, but this may prevent the Service from functioning correctly.

Your Rights and Choices

You have the following rights regarding your data:

  • Access: You can view all data you've entered through your account dashboard.
  • Correction: You can update your product information and account details at any time.
  • Deletion: You can delete your account from Settings, or by emailing us at support@saaslaunch.site. We'll process deletion within 30 days.
  • Portability: You can export your submission data as a CSV at any time from your dashboard.
  • Marketing opt-out: Unsubscribe from marketing emails via the link in any email.

To exercise any of these rights, email us at support@saaslaunch.site.

GDPR Compliance

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR).

Our legal bases for processing your data are:

  • Contract performance: Processing necessary to provide the Service you've signed up for.
  • Legitimate interests: Analytics, security, and improving the Service.
  • Consent: Marketing communications (you can withdraw consent at any time).
  • Legal obligation: Compliance with applicable law.

You have the right to lodge a complaint with your national data protection authority. Data transfers outside the EEA are made with appropriate safeguards in place (Standard Contractual Clauses where required).

Children's Privacy

The Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If we discover that a child under 16 has provided us with personal information, we will delete it promptly. If you believe we have such data, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by email (to the address on your account) and update the "Last updated" date at the top of this page. Your continued use of the Service after changes constitutes acceptance of the updated policy.

We encourage you to review this policy periodically.

Contact Us

For any privacy-related questions, requests, or concerns:

We respond to all privacy requests within 14 business days.