PainOnSocial
Back to Home

Privacy Policy

Last updated: 11/29/2025

1. Introduction

Welcome to PainOnSocial ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service to discover and analyze pain points from Reddit communities.

2. Information We Collect

Personal Information

When you register for an account, we collect:

  • Name
  • Email address
  • Password (encrypted) when using email/password authentication
  • OAuth account information when using third-party sign-in (Google, GitHub)
  • Profile picture (if provided by OAuth provider)

Usage Information

When you use our service, we store:

  • Reddit subreddit selections and scan history
  • Pain point analysis results and saved lists
  • Subscription and payment information (processed by Polar.sh)
  • Usage analytics and feature interactions
  • Feature requests and support inquiries

Automatically Collected Information

We automatically collect certain information when you use our service:

  • IP address
  • Browser type and version
  • Device information
  • Usage data and analytics (only if you consent to cookies)
  • Session data and authentication tokens
  • Performance metrics via Vercel Analytics

3. How We Use Your Information

We use your information to:

  • Provide and maintain our service
  • Create and manage your account
  • Analyze Reddit communities and identify pain points
  • Process subscription payments and manage billing
  • Send you important updates and notifications
  • Respond to your inquiries and support requests
  • Monitor and analyze usage patterns
  • Improve our service and develop new features
  • Comply with legal obligations

4. Data Sharing and Disclosure

We may share your information in the following situations:

  • With your consent: We may share your information for any purpose with your explicit consent
  • Service providers: We share data with third-party vendors who assist in providing our services
  • Legal requirements: We may disclose information if required by law or valid legal process
  • Business transfers: In connection with any merger, sale, or acquisition
  • Protection of rights: To protect our rights, privacy, safety, or property

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and understand how our service is used. You have control over these through our cookie consent banner.

Essential Cookies

These cookies are necessary for the website to function and cannot be disabled:

  • Authentication cookies: Keep you logged in and maintain your session
  • Security cookies: Protect against cross-site request forgery and other security threats
  • Cookie consent preference: Remember your cookie choice

Analytics Cookies (Optional)

These cookies help us understand how you use our service. They are only activated if you accept cookies:

  • Google Analytics: Tracks page views, user behavior, and site usage patterns using Google Analytics Consent Mode
  • PostHog: Provides additional analytics and user behavior insights
  • Vercel Analytics: Monitors website performance and page load times

Managing Cookies

You can manage your cookie preferences at any time through our cookie consent banner. If you decline analytics cookies, only essential cookies necessary for the service to function will be used. Your choice is stored in your browser's local storage.

6. Third-Party Services

We use the following third-party services that may collect information:

Authentication Services

  • Better Auth: Authentication system for managing user accounts and sessions
  • Google OAuth: Google Sign-In for authentication
  • GitHub OAuth: GitHub Sign-In for authentication

Analytics Services (Requires Consent)

  • Google Analytics: For tracking website usage, visitor behavior, and analytics to help us understand how our service is used and improve user experience. Uses Google Analytics Consent Mode to respect your cookie preferences.
  • PostHog: For additional analytics and understanding service usage patterns
  • Vercel Analytics: For website performance monitoring and optimization

Payment & Subscription

  • Polar.sh: For handling subscription payments, billing, and customer portal management

Data Processing Services

  • OpenAI: For AI-powered pain point analysis, scoring, and natural language processing

Communication Services

  • Resend: For sending transactional emails, feature request notifications, and service communications

Infrastructure

  • Vercel: For hosting and content delivery
  • Neon Database: For secure PostgreSQL data storage

These services have their own privacy policies governing the use of your information. For more information:

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

  • All passwords are encrypted using industry-standard hashing algorithms
  • Data transmission is secured using HTTPS/TLS encryption
  • Database access is restricted and monitored
  • Authentication sessions use secure, httpOnly cookies
  • Regular security updates and patches are applied

However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

8. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy:

  • Account Information: Retained while your account is active and for 90 days after account deletion to allow for recovery
  • Scan Results and Pain Points: Retained while your subscription is active and for 30 days after cancellation
  • Subscription Data: Retained for 7 years to comply with tax and financial regulations
  • Analytics Data: Aggregated and anonymized analytics may be retained indefinitely for service improvement
  • Communication Records: Feature requests and support inquiries retained for 2 years
  • Legal Obligations: Some data may be retained longer to comply with legal obligations, resolve disputes, and enforce our agreements

You may request early deletion of your data by contacting us at any time.

9. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request access to your personal information via your account settings or by contacting us
  • Correction: Request correction of inaccurate information through your profile settings
  • Deletion: Request deletion of your personal information and account data
  • Portability: Request a copy of your data in a portable format (JSON or CSV)
  • Objection: Object to certain processing of your information, including analytics tracking
  • Withdraw Consent: Change your cookie consent preferences at any time

To exercise any of these rights, please contact us at info@painonsocial.com. We will respond to your request within 30 days.

10. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will delete such information.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States where our servers and service providers are located. These countries may have data protection laws that are different from the laws of your country. By using our service, you consent to the transfer of your information to these countries. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, disclose, and sell
  • Right to request deletion of your personal information
  • Right to opt-out of the sale of your personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

We do not sell your personal information to third parties.

13. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time
  • Right to lodge a complaint with a supervisory authority

We process your data based on the following legal bases: (1) your consent (for analytics cookies), (2) contract performance (to provide our services), (3) legitimate interests (to improve our service), and (4) legal obligations.

14. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we may also notify you via email. Your continued use of our service after such changes constitutes acceptance of the updated policy.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: info@painonsocial.com