This policy explains what personal data Tagsmith collects, why, and your rights.
To provide and operate the Service, process payments, send transactional email (verification, teammate invites, password resets), secure and improve the Service, and comply with legal obligations. We do not sell your personal data and do not use it for third-party advertising.
Performance of our contract with you, our legitimate interests (securing and improving the Service), consent where required, and compliance with legal obligations.
Data may be processed in the United States. Where required, transfers rely on appropriate safeguards (e.g., Standard Contractual Clauses via our sub-processors).
We retain account and workspace data while your account is active. You can delete your workspace at any time; on deletion we remove your workspace data from active systems, with residual copies in backups purged on our normal backup cycle. Some records may be retained as required by law (e.g., billing records).
Depending on your location, you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. Tagsmith provides in-app data export and workspace deletion. To exercise other rights, contact support@gettagsmith.com. You may also lodge a complaint with your local data-protection authority.
We use measures including password hashing (bcrypt), token-based authentication, transport encryption (HTTPS), and access controls. No system is perfectly secure; we cannot guarantee absolute security.
The Service is for business use and not directed to anyone under 18. We do not knowingly collect data from children.
We may update this policy; material changes will be communicated before they take effect.
Privacy questions or requests: support@gettagsmith.com.