Privacy Policy
Last updated: April 2026
1. What we collect
When you create a Stems Planner account we collect your name, email address, and hashed password. As you use the product we store the business data you enter — clients, events, quotes, orders, and email templates — on your behalf. We also collect basic server logs (IP addresses, request timestamps) for security and debugging.
2. How we use it
We use your data solely to operate the service: sending emails you configure, running automation rules on your behalf, processing payments via Stripe, and storing files via Cloudflare R2. We do not sell your data or your clients' data to any third party.
3. Third-party services
Stems Planner relies on the following sub-processors to deliver the service:
- Stripe — payment processing. Stems Planner never stores raw card data.
- Resend — transactional email delivery.
- Cloudflare R2 — file storage for uploaded photos.
- Google OAuth — optional sign-in; only your name and email are requested.
4. Data retention
Your account data is retained for as long as your subscription is active. If you cancel your account and request deletion, we will permanently remove your studio data within 30 days. Stripe retains billing records independently per their own retention policy.
5. Security
All traffic is encrypted in transit via TLS. Passwords are hashed with bcrypt and never stored in plaintext. Database backups are encrypted at rest. We do not have access to your Stripe payment methods.
6. Your rights
You may request a copy of your data, correct inaccuracies, or request deletion at any time by emailing hello@stemsplanner.com. We will respond within 14 days.
7. Cookies
Stems Planner uses a single session cookie to keep you signed in. No advertising or analytics cookies are set.
8. Changes
If we make material changes to this policy we will notify you by email at least 14 days before they take effect.
9. Contact
Questions? Email hello@stemsplanner.com.