Postumus

Privacy Policy

Last updated: April 2026

1. Information We Collect

When you create an account, we collect your email address and optionally your mobile number. When you use the platform, we collect the content you publish (blog posts, metadata, tags) and basic usage data (IP address, login times).

2. How We Use Your Information

  • To provide and maintain the service
  • To authenticate your identity and secure your account
  • To send transactional emails (verification codes, password resets)
  • To process payments via Stripe (we do not store card details)
  • To enforce plan limits and prevent abuse

3. Third-Party Services

We use the following third-party services:

  • Stripe — payment processing. Subject to Stripe's Privacy Policy.
  • Google reCAPTCHA — spam prevention. Subject to Google's Privacy Policy.
  • Let's Encrypt — SSL certificate issuance for custom domains.

If you enable analytics or ads on your blog (Google Analytics, Yandex Metrika, AdSense), those services are configured by you and subject to their own privacy policies.

4. Data Storage

Your data is stored on servers located in Australia. Passwords are hashed using bcrypt. We use Redis for caching and MySQL for persistent storage.

5. Your Rights (GDPR)

If you are in the European Economic Area, you have the following rights:

  • Access — You can export all your data from Account Settings at any time.
  • Rectification — You can update your profile and content at any time.
  • Erasure — You can delete your account and all associated data from Account Settings. Deletion is immediate and permanent.
  • Portability — The data export provides all your content in JSON format.
  • Objection — You can disable third-party services (analytics, ads) in blog settings.

6. Cookies

We use a JWT token stored in your browser's local storage for authentication (not a cookie). Google reCAPTCHA, which we use for spam prevention on login and registration, may set cookies. Third-party services you enable (analytics, ads) may set their own cookies. We ask for your consent before loading these services.

7. Data Retention

We retain your account data for as long as your account is active. If you delete your account, all data is permanently removed immediately. We do not retain backups of deleted accounts.

8. Changes

We may update this policy from time to time. Significant changes will be communicated via email.

9. Contact

For privacy-related questions, contact us at info@postum.us.