Privacy Policy

Effective Date: May 30, 2026 · Last Revised: May 30, 2026

This Privacy Policy explains how we collect, use, share, and protect personal data when you visit or use pyencoder.com and any related services, applications, downloads, or pages operated under that domain (collectively, the "Services").

Our SMS commitment. We do not sell, rent, lease, share, or otherwise disclose your SMS opt-in data — including phone numbers and the fact you opted in — to any third party for any purpose. This is a TCR / 10DLC Error 9108 binding commitment and is enforced regardless of carrier or aggregator. Full detail in Section 5.

1. Operator

The Services are operated by PyEncoder, a Wyoming limited liability company ("Operator," "we," "us," or "our"). The Operator is the data controller for personal information collected through the Services. For privacy questions, contact privacy@pyencoder.com.

2. What We Collect

We collect the categories of personal information described in this section. We collect only what we need to operate, secure, and improve the Services.

2.1 Information You Provide

Account information: name, email address, password (stored only as a salted hash), and optional profile fields.
Contact-form input: name, email, phone (if provided), and the content of your message.
Transaction data: if you make a purchase or subscription, our payment processor collects card details (we do not store card numbers).
Communications: any message, support ticket, or comment you send us.
SMS opt-in records: when, how, and on what page you consented to receive text messages.

2.2 Information Collected Automatically

Usage data: pages visited, links clicked, referrers, and timestamps.
Device & technical data: IP address, browser type, operating system, screen size, language, and approximate location (city / region) inferred from IP.
Cookies and similar technologies: see Section 6.
Server logs: each request to the Services is logged for security, fraud prevention, and debugging.

2.3 Information From Third Parties

If you sign in or interact through a third party (e.g., Google OAuth, GitHub, Stripe, an email-delivery provider), that party may share with us limited account-identifier information that we use solely to operate the Services.

3. How We Use Personal Data

Service delivery: to provide, maintain, and operate the Services and to fulfill your requests.
Account & security: to authenticate you, prevent fraud, abuse, and unauthorized access, and to enforce our Terms of Service.
Communications: to respond to inquiries, send transactional notices (e.g., password reset, receipts), and — only with your opt-in — send SMS notifications.
Analytics & improvement: to understand how the Services are used and improve performance, design, and feature mix. Wherever feasible we use aggregated or pseudonymized data for this purpose.
Legal compliance: to comply with applicable law, respond to lawful requests, and protect the rights, property, or safety of the Operator, our users, or the public.

4. How We Share Personal Data

We share personal information only as described below, and never sell personal information for monetary or other valuable consideration.

Recipient	Purpose	What is shared
Hosting & infrastructure providers	Operate and secure the Services	All data necessary to serve requests
Email-delivery providers	Send transactional and consented emails	Email address, subject, body
SMS messaging providers (e.g., Twilio, TCR-registered aggregator)	Send opt-in text messages	Phone number, message content — not shared for any marketing or resale purpose
Payment processors (e.g., Stripe)	Process payments	Card / bank details collected directly by processor; we receive only a token and last-four digits
Analytics providers	Aggregate usage insight	Anonymized or pseudonymized usage events
Legal authorities	Comply with valid legal process	Only what the law requires
Acquirer in a corporate transaction	Business continuity in a merger, acquisition, or asset sale	Subject to written commitments to honor this Privacy Policy

All third-party providers above are bound by written agreements that require them to use personal data only as needed to provide their service to us and to maintain confidentiality and security commensurate with this Policy.

5. SMS Data — No Sale or Sharing

Phone numbers and SMS opt-in data are never sold, rented, leased, shared, or otherwise disclosed to any third party for any purpose, including marketing. SMS opt-in data is shared only with the specific messaging provider strictly as required to deliver the messages you requested, in compliance with TCR / 10DLC Error 9108 industry standards. This commitment survives any change in ownership of the Operator.

You can revoke SMS consent at any time by replying STOP to any message or by emailing privacy@pyencoder.com. See Section 7 of the Terms of Service for the full SMS program description.

6. Cookies & Tracking Technologies

We use a small number of cookies and similar technologies:

Strictly necessary: session cookies that keep you signed in, remember CSRF tokens, and maintain shopping-cart or form state.
Preference: cookies that remember your language, theme, or other display choices.
Analytics: cookies that help us understand aggregate usage. You can opt out by configuring your browser to refuse cookies or by using a tool such as the EU "Reject All" / U.S. "Do Not Sell or Share" link if one is displayed.

We do not use advertising or cross-site tracking cookies on the Services. We honor the "Global Privacy Control" (GPC) browser signal where technically feasible.

7. Data Retention

We retain personal data only as long as needed for the purposes described in this Policy. Typical retention windows:

Account data: while the account is active, plus up to 36 months after deletion for fraud-prevention and audit purposes.
Financial / transactional records: 7 years, to comply with tax and accounting law.
Contact-form submissions: up to 3 years, then deleted or anonymized.
Server & security logs: 12 months, unless retained longer for an active security investigation.
SMS opt-in records: retained for the life of the opt-in plus 4 years after opt-out, to demonstrate consent compliance.

You may request earlier deletion at any time — see Section 11.

8. Security

We protect personal data with industry-standard administrative, technical, and physical safeguards, including TLS encryption in transit, encryption at rest for sensitive fields, hashed passwords, role-based access controls, and routine security review. No system is perfectly secure. In the unlikely event of a breach involving your personal data, we will notify you and the appropriate regulators within the timeframes required by applicable law (in many cases, no later than 72 hours after discovery).

9. Children

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information, please contact privacy@pyencoder.com and we will promptly delete it. This complies with the U.S. Children's Online Privacy Protection Act (COPPA).

10. CCPA — California Residents

If you are a California resident, the California Consumer Privacy Act ("CCPA") and California Privacy Rights Act ("CPRA") give you these rights:

Right to know what personal information we collect, use, disclose, and (if applicable) sell or share.
Right to delete personal information, subject to legal exceptions.
Right to correct inaccurate personal information.
Right to opt out of sale or sharing. We do not sell or share personal information as those terms are defined under the CCPA.
Right to limit use of sensitive personal information. We do not use sensitive personal information except as needed to provide the Services you requested.
Right to non-discrimination for exercising any of the above rights.

To exercise any of these rights, email privacy@pyencoder.com with the subject line "CCPA REQUEST — pyencoder.com". We will verify your request and respond within 45 days.

11. GDPR & UK GDPR — EEA / UK Residents

If you are in the European Economic Area or the United Kingdom, you have the following rights under the General Data Protection Regulation ("GDPR") and the UK GDPR:

Access: to obtain a copy of your personal data we hold.
Rectification: to correct inaccurate or incomplete data.
Erasure ("right to be forgotten"): to delete data in certain circumstances.
Restriction of processing.
Data portability: to receive your data in a portable machine-readable format.
Objection to processing based on legitimate interest or for direct marketing.
Withdraw consent at any time where processing is based on consent.
Lodge a complaint with your national supervisory authority.

Our legal bases for processing are: (a) performance of a contract with you, (b) compliance with a legal obligation, (c) your consent (which you may withdraw at any time), and (d) our legitimate interests in operating, securing, and improving the Services. To exercise GDPR rights, email privacy@pyencoder.com.

12. International Data Transfers

The Operator is located in the United States and our servers and most service providers are located in the United States. By using the Services from outside the United States, you understand that your personal data will be transferred to and processed in the United States, which may have different data-protection laws than your country. Where required, we rely on Standard Contractual Clauses or equivalent transfer mechanisms approved by the European Commission or the UK Information Commissioner's Office.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be announced via a site banner and, where we have your email, by direct notice at least 30 days before the change takes effect (except where a shorter notice is required by law). The "Last Revised" date at the top reflects the most recent version.

14. Contact & Data Protection Officer

For any privacy question, request, or complaint, contact:

PyEncoder — Data Protection Officer
Re: pyencoder.com
Email: privacy@pyencoder.com
Mailing address: Butler County, Pennsylvania, USA (full address on written request).
Phone (business line): (724) 431-5207