Privacy Policy

1.1 Account Information

When you sign in with Google, we receive your name, email address, and profile photo from Google OAuth. We store this in your Firestore user document to identify your account and personalize the experience.

1.2 Usage Data

We store the following data associated with your account:

• Research reports you generate (niche queries, subreddits analyzed, and AI-generated report content)
• Reports you mark as favorites
• Your current credit balance and subscription plan details
• Timestamps of when you ran analyses

1.3 Payment Information

If you purchase a subscription or lifetime plan, payment is handled entirely by Stripe. We never receive or store your full card number, CVV, or other sensitive payment details. We store your Stripe customer ID and subscription status in your user document for billing management purposes.

1.4 Automatically Collected Data

Like most web services, our infrastructure (Firebase/Google Cloud) may automatically log standard request data such as IP addresses, browser type, and access timestamps for security and debugging purposes. We do not use this data for marketing or profiling.

We use the information we collect to:

• Create and manage your account
• Process and store research reports you generate
• Track your credit balance and enforce plan limits
• Process subscription payments and manage billing through Stripe
• Send transactional emails related to your account or billing (if applicable)
• Improve the Service based on aggregate, anonymized usage patterns
• Investigate and prevent fraudulent or abusive use of the platform
• Comply with legal obligations

We do not sell your personal data to third parties. We do not use your data to train AI models. We do not use your data for advertising.

We rely on the following third-party services to operate RedLurk. Each service has its own privacy policy, which we encourage you to review:

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

• With service providers listed above (Firebase, Stripe) solely to deliver the Service
• If required by law, regulation, or valid legal process (e.g., court order)
• To protect the rights, property, or safety of RedLurk, its users, or the public
• In connection with a merger, acquisition, or sale of all or part of our business, in which case your data would be transferred to the acquiring entity

Your data is stored in Google Firebase Firestore, which is hosted on Google Cloud infrastructure with enterprise-grade security, encryption at rest, and redundancy. Authentication sessions are managed via HTTP-only cookies, which are not accessible to JavaScript and help protect against session hijacking.

While we implement reasonable technical and organizational measures to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

We retain your account data for as long as your account is active. Research reports and favorites you have created are stored in Firestore and will remain available to you until you delete them or delete your account.

When you delete your account, we will delete your personal information (name, email, profile photo) and associated data within a reasonable time, subject to our obligations to retain certain records for legal or accounting purposes.

Stripe retains payment and transaction records independently in accordance with their data retention policies and applicable financial regulations.

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request that we correct inaccurate or incomplete data
• Deletion: Request that we delete your account and associated personal data
• Portability: Request your data in a machine-readable format
• Objection: Object to certain processing of your data
• Withdrawal of consent: Where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us using the information in Section 10. We will respond to your request within 30 days.

If you are located in the European Economic Area (EEA) or United Kingdom, you have the right to lodge a complaint with your local data protection authority.

We use a single HTTP-only session cookie to maintain your authenticated session. This cookie is strictly necessary for the Service to function and is not used for tracking or advertising. It is deleted when you sign out.

We do not use third-party analytics cookies, advertising cookies, or any tracking pixels. Google Firebase may use its own internal telemetry as part of its infrastructure, subject to Google’s privacy policy.

The Service is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us and we will delete it promptly.

RedLurk is operated primarily through Google Firebase infrastructure, which may process and store data in data centers located in the United States and other countries. By using the Service, you consent to the transfer of your data to countries that may have different data protection laws than your jurisdiction.

Where required, we rely on appropriate legal mechanisms (such as standard contractual clauses) to govern international data transfers.

We may update this Privacy Policy periodically. When we do, we will update the “Last updated” date at the top of this page. If changes are material, we will notify you by email or in-app notice before they take effect. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy, want to exercise your data rights, or have concerns about how your data is handled, please contact us: