PRIVACY

Privacy Policy

Last updated: 2026-05-25

Who we are

Saignée (“we”, “us”) is the data controller for personal data processed through this website and app. For privacy questions or to exercise any right described below, contact privacy@saignee.com.

What we collect at the waitlist

  • Email address you submit.
  • The plan you registered interest in and your selected billing cycle.
  • The exact wording of the consent you agreed to, and a timestamp.
  • A salted, irreversible hash of your IP address and your browser user-agent string — used to demonstrate consent was given from your device, not to identify you.

Legal basis

We process your data on the basis of your explicit consent (GDPR Article 6(1)(a) and Article 7). You can withdraw consent at any time, with no effect on past processing.

Who we share it with

Two processors:

  • Supabase — hosts our database where the consent record lives.
  • MailerLite — delivers the verification email and any future launch updates. MailerLite acts as our processor under a signed DPA.

We do not sell personal data. We do not share it with advertisers.

How long we keep it

  • Unverified entries are deleted automatically 14 days after signup.
  • Verified entries are kept until you unsubscribe, then a minimal audit record is retained for 30 additional days before being deleted.

Your rights

Under GDPR (EU/UK) and CPRA (California), you have the right to:

  • Access the personal data we hold about you.
  • Have it corrected if inaccurate.
  • Have it deleted (the “right to be forgotten”).
  • Withdraw consent for marketing email at any time.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights: click the management link in any email we send you, or contact privacy@saignee.com. We respond within 30 days (GDPR) or 45 days (CPRA).

Unsubscribing

Every marketing email contains a one-click unsubscribe link. Clicking it removes you from the marketing list immediately; the corresponding consent record is updated to reflect that withdrawal.

Security

Data is transmitted over HTTPS and stored encrypted at rest. Access is restricted to the smallest set of staff and processors necessary to operate the service.

Changes to this policy

We will post material changes here with an updated date. If you have already consented and a change materially affects the basis of that consent, we will ask for fresh consent before relying on it.

Privacy Policy · Saignée