// privacy_policy
last_updated: February 2026
1. Information We Collect
We collect your email address and a hashed version of your password when you create an account. Session metadata — including IP address, device type, and browser — is recorded for security monitoring. We do not use third-party tracking scripts, advertising cookies, or analytics platforms.
2. How We Use Your Information
Your information is used for account authentication, platform access control, security monitoring, and delivery of daily intelligence debriefs if you have subscribed. We do not use your data for advertising or share it with data brokers.
3. Cookies & Session Data
We use a single session cookie for authentication. This cookie is configured as HttpOnly, Secure, and SameSite=Lax with a 7-day expiry. We do not deploy marketing cookies, analytics cookies, or any third-party tracking cookies.
4. Third-Party Services
We use Cloudflare for hosting, CDN, and DDoS protection. Resend is used for transactional email delivery for debrief subscriptions. No data is sold to third parties. No advertising networks are integrated into the platform.
5. Data Retention
Account data is retained while your account is active. Session data automatically expires after 7 days. Activity logs are retained for 90 days for security purposes. You may request deletion of your account and all associated data at any time.
6. Your Rights
You may request a data export or account deletion by emailing contact@threadlinqs.com. We respond to all requests within 30 days. GDPR and CCPA rights are honored for applicable residents, including the right to access, rectify, and erase personal data.
7. Security
All data is encrypted in transit using TLS 1.3. Passwords are stored as bcrypt hashes and are never logged or stored in plaintext. Rate limiting, session caps, and security headers protect against unauthorized access and common attack vectors.
8. Changes to This Policy
Updates to this privacy policy will be posted on this page. We encourage you to review this page periodically. Last updated: February 2026.
9. Contact
For privacy-related inquiries, contact us at contact@threadlinqs.com.