Privacy Policy

We collect the following information when you create an account and use YouLetter:

• Account information: email address, password (hashed), and display name.
• Newsletter preferences: topics, tone, frequency, delivery schedule, and city.
• Payment information: processed securely by Stripe. We do not store your credit card details.
• Usage data: newsletter delivery history and account activity timestamps.

We use your information to:

• Generate and deliver personalized newsletters based on your preferences.
• Process payments and manage your subscription.
• Send account-related emails (verification, password reset).
• Improve the service and fix issues.

We do not sell or share your data for marketing purposes. We share data only with essential service providers (listed below in Section 3) to operate the service.

YouLetter uses the following third-party services to operate:

• Anthropic (Claude): AI content generation for your newsletters.
• Tavily: Web research to source current news for your topics.
• SendGrid: Email delivery.
• Stripe: Payment processing.
• Vercel: Application hosting.
• Railway: Database hosting.

Each service processes data according to their own privacy policies. We only share the minimum data required for each service to function.

Your newsletter content is generated by artificial intelligence based on your topic preferences. The AI uses web research results to create content but does not store or learn from your personal data beyond the current generation request. Your preferences are stored in our database, not by the AI provider.

We retain your account data and newsletter history for as long as your account is active. If you delete your account, all associated data (preferences, newsletters, referral records) is permanently removed from our database. Stripe may retain payment records separately per their data retention policy.

You can:

• Access your data through your dashboard and profile settings.
• Update your preferences at any time from the preferences page.
• Unsubscribe from newsletters via the link in any email or your profile page.
• Delete your account permanently from your profile page.
• Export your data anytime from your Profile page (Download My Data) or by contacting us at hello@youletter.app.

We protect your data using industry-standard measures including encrypted passwords (bcrypt), HTTPS encryption, HMAC-verified unsubscribe links, and rate-limited authentication endpoints. However, no method of transmission over the internet is 100% secure.

YouLetter uses browser localStorage to maintain your authentication session. We do not use third-party tracking cookies or analytics cookies. SendGrid email tracking (open/click tracking) is disabled.

We may update this privacy policy from time to time. If we make significant changes, we will notify you by email. Continued use of the service after changes constitutes acceptance of the updated policy.