Privacy Policy background

Privacy Policy

Your privacy is important to us. This page explains how we handle your data and protect your information.

Privacy Policy

Last Updated: May 15, 2025

This Privacy Policy describes how Content Planner ("we," "our," or "us") collects, uses, and discloses your information when you use our website and Content Planning and Idea Management Tool (the "Service").

We take your privacy seriously. Please read this Privacy Policy carefully to understand our practices regarding your personal data and how we will treat it.

1. Information We Collect

1.1 Personal Information

When you register for an account and use our Service, we may collect the following types of personal information:

  • Account Information: Your name, email address, and password (if not using Google OAuth).
  • Profile Information: Any profile information you choose to add, such as a profile picture or biography.
  • Billing Information: Payment details, billing address, and transaction history (processed securely through our payment processors).
  • Authentication Data: If you choose to log in using Google OAuth, we receive information from your Google account as permitted by your Google account settings.

1.2 Content Data

We collect and store the content you create, upload, or share through our Service, including:

  • Content ideas
  • Content plans
  • Drafts
  • Progress tracking data
  • Analytics preferences

1.3 Usage Information

We automatically collect certain information about your interactions with our Service, including:

  • Log Data: Information that your browser sends whenever you visit our Service, such as your IP address, browser type, browser version, pages visited, time and date of your visit, time spent on those pages, and other statistics.
  • Device Information: Information about the device you use to access our Service, including device type, operating system, and unique device identifiers.
  • Analytics Data: Information about how you use our Service, such as feature usage, time spent, and other behavioral data.

1.4 Cookies and Similar Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

The types of cookies we use include:

  • Session Cookies: These are temporary and are deleted when you close your browser.
  • Persistent Cookies: These remain on your device until they expire or you delete them.
  • Essential Cookies: Required for the operation of our Service.
  • Analytical/Performance Cookies: Allow us to recognize and count visitors and see how they move around our Service.
  • Functionality Cookies: Enable us to personalize content for you.

For users in the European Union, we will ask for your explicit consent before placing any non-essential cookies on your device, in accordance with the GDPR and ePrivacy Directive. You have the right to withdraw your consent at any time through our cookie settings panel.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 To Provide and Maintain Our Service

  • Set up and manage your account
  • Process your subscription payments
  • Store and manage your content
  • Provide customer support
  • Communicate with you about your account or transactions

Legal basis for processing under GDPR: Performance of a contract with you.

2.2 To Improve and Personalize Our Service

  • Understand how users interact with our Service
  • Improve existing features and develop new features
  • Personalize your experience
  • Measure the effectiveness of our Service

Legal basis for processing under GDPR: Our legitimate interests in improving and optimizing our Service.

2.3 For Marketing and Communication

  • Send you updates, newsletters, or promotional materials (you can opt out of these communications)
  • Respond to your comments, questions, and requests

Legal basis for processing under GDPR: Your consent (for marketing communications) and our legitimate interests (for responding to your inquiries).

2.4 For Security and Legal Compliance

  • Detect, investigate, and prevent fraudulent transactions and other illegal activities
  • Protect the rights, property, or safety of Content Planner, our users, or others
  • Comply with applicable laws, regulations, or legal processes

Legal basis for processing under GDPR: Our legal obligations and our legitimate interests in protecting our Service and users.

3. How We Share Your Information

We may share your information in the following circumstances:

3.1 Service Providers

We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), to provide the Service on our behalf, to perform Service-related services, or to assist us in analyzing how our Service is used. These third parties have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Our Service Providers include:

  • Payment processors
  • Hosting and cloud storage providers
  • Analytics providers
  • Customer support tools
  • Email and communication providers

3.2 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your personal information may be transferred as a business asset. In such cases, we will provide notice before your personal information is transferred and becomes subject to a different Privacy Policy.

3.3 Legal Requirements

We may disclose your personal information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

3.4 With Your Consent

We may disclose your personal information for any other purpose with your consent.

4. Data Retention

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.

For European Union users: We store your personal data for as long as you maintain an account with us. After account closure, we will retain your personal data for a maximum of 90 days before deleting it, unless retention is required by law. You may request deletion of your data at any time through your account settings or by contacting us.

If you cancel your subscription and delete your account, we will delete your personal information within 90 days of account closure. However, we may retain certain information in anonymized or aggregated form.

5. Data Security

The security of your data is important to us. We strive to use commercially acceptable means to protect your personal information. However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

6. Data Breach Notification

In the event of a data breach that may compromise your personal information, we will notify you and the relevant supervisory authorities without undue delay and no later than 72 hours after becoming aware of the breach, where feasible and where required by law such as under the GDPR.

This notification will include information about the nature of the breach, the categories and approximate number of data subjects affected, the likely consequences of the breach, and the measures taken or proposed to address the breach.

7. Your Data Protection Rights

7.1 For United States Residents

As a Wyoming-based business, we comply with applicable U.S. federal and state data protection laws. You have the right to:

  • Access your personal information
  • Correct inaccurate personal information
  • Request deletion of your personal information (where applicable)
  • Opt-out of certain data sharing practices
  • Be informed about our data collection practices

7.2 For California Residents

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have additional rights, including:

  • The right to know what personal information is collected, used, shared, or sold
  • The right to delete personal information held by businesses
  • The right to opt-out of the sale of personal information
  • The right to non-discrimination for exercising their CCPA rights

7.3 For European Union Residents (GDPR)

If you are a resident of the European Union, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any inaccurate information or complete any incomplete information.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data in certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, in a structured, commonly used and machine-readable format.
  • Right to Object: You have the right to object to our processing of your personal data in certain circumstances.
  • Right to Not be Subject to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

For all GDPR-related requests, we will respond within one month. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

7.4 For Other International Users

Users from other regions may have similar rights under their local laws.

If you make a request, we will respond to you within one month. To exercise any of these rights, please contact us using the contact information provided below.

8. Children's Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us. If we become aware that we have collected personal information from children without verification of parental consent, we take steps to remove that information from our servers.

9. Third-Party Services

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

10. Google OAuth

When you choose to authenticate with Google OAuth:

  • We receive information from Google as permitted by your Google account settings
  • This may include your name, email address, and profile picture
  • We do not receive your Google password
  • Google's Privacy Policy applies to the information you provide directly to Google

11. International Data Transfers

Your information, including personal information, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.

If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including personal information, to the United States and process it there. Our primary processing location is in the State of Wyoming.

11.1 EU-US Data Transfers

For users in the European Union, please note that the transfer of personal data from the EU to the United States is subject to additional safeguards. We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Implementation of supplementary measures as recommended by the European Data Protection Board
  • Regular assessment of our data protection practices

The European Commission has not issued an adequacy decision for the United States as a whole. By continuing to use our Service, you acknowledge this transfer of your personal data.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

12. Data Protection Officer

While our company size does not legally require us to have a Data Protection Officer under the GDPR, we have appointed a privacy contact to ensure compliance with data protection laws and address your privacy concerns:

Privacy Contact: privacy@getcontentcompass.com

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. Contact Us

If you have any questions about this Privacy Policy, please contact us: