Brokenly
Sign Up

Privacy Policy

Our privacy policy and how we use your data

Last updated: May 26, 2026

1. Who we are

Brokenly(“we”, “us”, or “our”) is operated by [Operator Legal Name], with its registered office at [Operator Registered Address], Germany. This Privacy Policy explains what personal information we collect, how we use it, and what rights you have. You can contact us at contact@brokenly.io.

2. Information we collect

We collect information you provide directly to us and information generated through your use of the service:

  • Account information such as your name and email address when you sign up.
  • Authentication data managed by our authentication provider (Supabase), including session tokens.
  • Billing data when you purchase a paid plan. Payments are processed by Stripe; we do not store full payment card numbers.
  • Usage data such as the links you check, leads you import, and activity logs needed to operate the service.
  • Technical data such as IP address, browser type, and device information from server logs.
  • Cookies and similar technologies used to keep you signed in and remember your preferences. See our Cookie Policy for details.

3. How we use your information

We use your information to:

  • Provide, operate, and improve the service.
  • Authenticate you and secure your account.
  • Process payments and manage subscriptions.
  • Send transactional emails (e.g. receipts, password resets, service notices).
  • Detect, prevent, and respond to abuse, fraud, and security incidents.
  • Comply with legal obligations and enforce our Terms of Service.

4. Legal bases for processing

Where data-protection law applies, we rely on the following legal bases: performance of a contract with you, our legitimate interests in running and securing the service, your consent (where applicable, such as optional analytics), and compliance with legal obligations.

5. Sharing with third parties

We share personal information only with service providers we rely on to operate Brokenly, under contractual confidentiality and data-protection obligations:

  • Supabase — database, authentication, and storage.
  • Stripe — payment processing.
  • Our transactional email provider — delivery of service emails.
  • Hosting and CDN providers — serving the application.

We do not sell or rent your personal information, and we do not share it with third parties for cross-context behavioral advertising.

6. International data transfers

Because some of our service providers are based in the United States, your information may be transferred to and processed in the United States or other countries. Where required, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.

7. Data retention

We retain personal information for as long as your account is active or as needed to provide the service. When you close your account, we delete or anonymize your data within a reasonable period, except where we are required to retain it to comply with legal obligations (for example, billing records).

8. Your rights

Depending on where you live, you may have the right to access, correct, delete, or export your personal information, to object to or restrict certain processing, and to withdraw consent at any time. To exercise any of these rights, email contact@brokenly.io.

California residents (CCPA/CPRA).You have the right to know what personal information we collect, the right to request deletion or correction, the right to opt out of any “sale” or “sharing” of personal information (we do not sell or share personal information as defined under the CCPA/CPRA), and the right not to be discriminated against for exercising these rights. We do not process “sensitive personal information” for purposes that would require a separate opt-out. Authorized agents may submit requests on your behalf with valid proof of authorization.

9. Children's privacy

Brokenly is not directed to children under 16, and we do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us and we will delete it.

10. Security

We use industry-standard measures to protect your information, including TLS for data in transit and encryption at rest provided by our hosting platform. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated policy on this page and update the “Last updated” date above.

12. Contact us

For any questions about this Privacy Policy or your personal information, contact us at contact@brokenly.io, or by mail to [Operator Legal Name], [Operator Registered Address], Germany.