Privacy Policy

Last updated: January 1, 2025

1. Introduction

Welcome to NotifyPush. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our push notification service.

2. Information We Collect

Account Information

  • Email address (from Google or GitHub OAuth)
  • Display name (from OAuth provider)
  • Profile picture URL (from OAuth provider)

Device Information

  • Firebase Cloud Messaging (FCM) tokens for push notification delivery
  • Device identifiers for token management

Usage Data

  • Topics you create and subscribe to
  • Messages you send through our API
  • API usage statistics

3. How We Use Your Information

We use your information to:

  • Provide and maintain our push notification service
  • Authenticate your identity and manage your account
  • Deliver push notifications to your devices
  • Monitor and enforce usage limits based on your subscription tier
  • Communicate with you about service updates or issues
  • Improve our service and develop new features

4. Data Storage and Retention

  • Your account data is stored securely on Cloudflare's infrastructure
  • Messages are retained for 7 days (Free tier) or 30 days (Pro tier), then automatically deleted
  • FCM tokens are stored only as long as they remain valid
  • Account data is retained until you delete your account

5. Data Sharing

We do not sell your personal data. We may share data with:

  • Google Firebase: For push notification delivery via FCM
  • Cloudflare: For hosting and infrastructure services
  • OAuth Providers: Google and GitHub for authentication

We may also disclose data if required by law or to protect our legal rights.

6. Your Rights

You have the right to:

  • Access your personal data
  • Export your data (topics and API keys)
  • Delete your account and all associated data
  • Opt out of non-essential communications

7. Security

We implement industry-standard security measures including:

  • HTTPS encryption for all data transmission
  • Secure token-based authentication (JWT)
  • Hashed API keys (only shown once at creation)
  • Rate limiting to prevent abuse

8. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect personal information from children under 13.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this privacy policy or our data practices, please contact us at:

ktharsanan@gmail.com