Privacy Policy

Last updated: March 1, 2025

1. Introduction

Expirely ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our document expiration tracking service at goexpirely.com (the "Service").

By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, company name, and password when you register for an account.
  • Billing Information: Payment card details and billing address (processed securely through Stripe).
  • Document Data: Information about documents you upload, including document names, expiration dates, and any metadata you provide.
  • Uploaded Files: Documents and files you choose to store in our Service.

2.2 Information Collected Automatically

  • Usage Data: How you interact with our Service, including pages visited, features used, and actions taken.
  • Device Information: Browser type, operating system, device type, and IP address.
  • Cookies: We use essential cookies for authentication and session management.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Send you expiration alerts and notifications you've configured
  • Process payments and manage your subscription
  • Respond to your requests and provide customer support
  • Send important updates about the Service (security alerts, policy changes)
  • Analyze usage patterns to improve user experience
  • Protect against fraud and unauthorized access

4. Data Storage and Security

We take data security seriously:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256).
  • Infrastructure: We use industry-leading cloud providers with SOC 2 compliance.
  • Access Control: Employee access to customer data is strictly limited and logged.
  • Backups: Regular automated backups ensure data durability.

While we implement safeguards, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data only in these circumstances:

  • Service Providers: Third parties that help us operate our Service (payment processing, email delivery, hosting).
  • Legal Requirements: When required by law, subpoena, or government request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • With Your Consent: When you explicitly authorize us to share information.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide you services. If you delete your account:

  • Your personal data will be deleted within 30 days
  • Uploaded documents will be permanently deleted within 30 days
  • We may retain anonymized, aggregated data for analytics
  • Some data may be retained as required by law (e.g., billing records)

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data
  • Export: Receive your data in a portable format
  • Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact us at [email protected].

8. Cookies

We use the following types of cookies:

  • Essential Cookies: Required for authentication and basic functionality. Cannot be disabled.
  • Analytics Cookies: Help us understand how users interact with our Service. You can opt out via your browser settings.

We do not use advertising or tracking cookies.

9. Third-Party Services

Our Service integrates with:

  • Stripe: For payment processing. See Stripe's Privacy Policy.
  • SendGrid/Resend: For email delivery. Your email address is shared for transactional emails.

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: