Privacy Policy

1. Introduction

Framework Learning, LLC and ApproachCharts ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. By using ApproachCharts, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

We collect information you directly provide when you:

  • Create an account: Email address, password (encrypted), and optional display name
  • Subscribe: Billing information processed securely through Stripe (we do not store credit card numbers)
  • Use the Service: Chart selections, saved templates, search queries
  • Contact us: Any information you include in support emails

2.2 Automatically Collected Information

When you use our Service, we automatically collect:

  • Usage data: Pages visited, features used, time spent, download history
  • Device information: Browser type, operating system, IP address
  • Log data: Access times, errors, and system activity

2.3 Cookies and Tracking

We use cookies and similar technologies to maintain your session, remember your preferences, and analyze usage patterns. You can control cookie settings through your browser, but disabling cookies may limit functionality.

3. How We Use Your Information

We use collected information for:

  • Service delivery: Provide access to charts, generate PDFs, save templates
  • Account management: Authenticate users, manage subscriptions, process payments
  • Communication: Send transactional emails (receipts, password resets, subscription updates)
  • Improvement: Analyze usage to improve features and user experience
  • Security: Detect fraud, abuse, and security issues
  • Legal compliance: Comply with applicable laws and regulations

We do not sell your personal information to third parties.

4. Information Sharing and Disclosure

We may share your information only in the following circumstances:

  • Service providers: Stripe for payment processing, hosting providers for infrastructure. These partners are bound by confidentiality agreements.
  • Legal requirements: When required by law, court order, or government request
  • Business transfers: In connection with a merger, acquisition, or sale of assets (users will be notified)
  • With your consent: When you explicitly authorize sharing

5. Payment Processing

All payment transactions are processed securely through Stripe, a PCI-DSS compliant payment processor. We do not store credit card numbers, CVV codes, or other sensitive payment information on our servers. Stripe's privacy policy governs their handling of payment data.

6. Data Security

We implement industry-standard security measures to protect your information:

  • HTTPS encryption for all data transmission
  • Encrypted password storage using bcrypt
  • Secure server infrastructure
  • Regular security updates and monitoring
  • Restricted access to personal data

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide services. When you delete your account, we will delete your personal information within 30 days, except for data we are required to retain for legal, accounting, or security purposes (such as transaction records).

8. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and data
  • Portability: Receive your data in a structured, machine-readable format
  • Opt-out: Unsubscribe from marketing emails (transactional emails cannot be opted out)

To exercise these rights, contact us at [email protected].

9. Children's Privacy

Our Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will delete it immediately.

10. International Users

Your information may be transferred to and processed in the United States or other countries where our service providers operate. By using the Service, you consent to the transfer of information to countries outside your country of residence, which may have different data protection rules.

11. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. We will notify users of significant changes via email or through a prominent notice on the Service. Continued use after changes constitutes acceptance.

13. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to delete personal information, and the right to opt-out of the sale of personal information. We do not sell personal information. To exercise your CCPA rights, contact us at the email below.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:

Email: [email protected]