Legal

Privacy Policy

Last updated: June 17, 2026

1. Information We Collect

When you create an account:

  • Email address
  • Name (entered during onboarding)
  • Profile photo (if you upload one)
  • Password (stored as a secure hash — we never see the plaintext)

When you use Folio:

  • Projects, case studies, and work descriptions you create
  • Files you upload (images, videos, documents)
  • Embedded content URLs you add (YouTube, TikTok, Instagram, etc.)
  • Employer and client names you enter

Automatically:

  • IP address and browser/device type (via our hosting providers)
  • Pages visited and actions taken (for improving the product)
  • Cookies and similar technologies (see Section 5)

We do not collect payment card numbers directly. Payments are processed by Stripe, which is PCI-compliant. We receive only a transaction confirmation and subscription status from Stripe.

2. How We Use Your Information

  • To operate and improve Folio.
  • To send transactional emails (account confirmation, password resets, billing receipts).
  • To display your public portfolio to visitors.
  • To respond to support inquiries.
  • To enforce our Terms of Service.

We do not sell your personal data. We do not use your content to train AI models.

3. Who We Share Data With

We share data only with vendors that help us run the Service:

  • Supabase — database, authentication, and file storage (US-based)
  • Vercel — hosting and edge network (US-based)
  • Stripe — payment processing (when paid plans are available)

Each vendor is bound by a data processing agreement. We do not share your data with advertisers.

4. Public Portfolio Content

Your portfolio (name, bio, projects, and work samples) is public by default and may be indexed by search engines. Do not publish information you want kept private. If you delete your account, your portfolio is removed within 30 days.

5. Cookies

We use strictly necessary cookies to maintain your login session. We do not currently use tracking or advertising cookies.

6. Data Retention

We retain your account data for as long as your account is active. When you delete your account, we delete your personal data within 30 days, except where we are required to retain it by law (for example, billing records).

7. Security

We use industry-standard measures including encryption in transit (TLS), encrypted storage, and row-level security on our database. No system is perfectly secure. If you believe your account has been compromised, contact us immediately at folioinbox@gmail.com.

8. Children's Privacy

Folio is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you believe a child has created an account, contact us and we will delete it promptly.

9. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict how we process your data.

To exercise these rights, email folioinbox@gmail.com. We will respond within 30 days.

California residents: Under the CCPA you have the right to know what personal information we collect, the right to delete it, and the right to opt out of its sale. We do not sell personal information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on the site. The “last updated” date at the top reflects the most recent revision.

11. Contact

Questions or data requests? Email us at folioinbox@gmail.com.