This Privacy Policy explains what information PruneChart (“we”, “us”) collects when you use our value stream mapping application, how we use it, and the choices you have.
Information we collect
- Account information. When you sign up, we collect your email address and an authentication credential (a password hash, or an identifier from Google if you use Google sign-in).
- Diagram content. The value stream maps you create — nodes, edges, data fields, titles and folders — are stored so you can return to them. This may include whatever you type into your maps.
- Usage & device data. Standard technical data such as browser type and IP address, used to operate and secure the service.
How we use your information
- To provide the application — saving, loading and sharing your maps.
- To authenticate you and enforce access controls on shared diagrams.
- To secure the service, prevent abuse, and diagnose problems.
Where your data is stored
Account and diagram data is stored using Supabase (PostgreSQL) hosted in the EU. Access to each diagram is enforced at the database with row-level security: a diagram is readable or editable only by its owner, people it has been explicitly shared with, or — for “anyone with the link” diagrams — signed-in users who have the link. A leaked URL alone does not grant access.
Sharing
When you share a diagram, the email addresses you grant access to are stored so we can match them at sign-in. We do not sell your personal data. We share data with service providers (such as our hosting and authentication provider) only as needed to run the service.
Data retention & deletion
We retain your diagrams until you delete them or close your account. You can delete individual maps at any time; to delete your account and associated data, contact us and we will remove it.
Your rights
Depending on your location, you may have rights to access, correct, export or delete your personal data. Contact us to exercise them.
Contact
Questions about this policy? Email privacy@prunechart.example.