DraftDash
Call (980) 322-4500 Get Started

Privacy Policy

Last updated: March 19, 2026

1. Introduction

Idea Forge Studios LLC ("we," "us," "our") operates DraftDash, an AI-powered blog automation service available at draftdash.ai. This Privacy Policy describes how we collect, use, and protect your personal information when you use our services.

2. Information We Collect

Account Information: Name, email address, business name, and WordPress site credentials required for service operation.

Payment Information: Billing details are processed through PayPal. We do not store your full payment card details on our servers.

Usage Data: Service usage metrics, content preferences, publication history, and site analytics to improve our platform.

Contact Form Data: Name, email, and message content submitted through our contact forms.

Automatically Collected: IP addresses, browser type, device information, and cookies for analytics and security purposes.

Data Sources: We collect personal information directly from you when you create an account, contact us, or use our services. We do not purchase personal information from third-party data brokers.

Categories of Personal Information (CCPA):

  • Identifiers: Name, email address, IP address, account ID. Purpose: Account creation, service delivery, support. Sold/Shared: No.
  • Commercial Information: Subscription plan, payment history, service usage records. Purpose: Billing, service delivery. Sold/Shared: No.
  • Internet/Network Activity: Browser type, device info, pages visited, cookies. Purpose: Analytics, security, service improvement. Sold/Shared: No.
  • Professional Information: Business name, website URL, industry. Purpose: Content customization. Sold/Shared: No.

We do not collect sensitive personal information as defined under the CCPA/CPRA (e.g., Social Security numbers, precise geolocation, biometric data).

3. How We Use Your Information

  • Providing and improving the DraftDash blog automation service
  • Generating and publishing AI-created blog content to your WordPress site
  • Processing payments and managing your subscription
  • Sending service-related communications (draft notifications, account updates)
  • Analyzing usage patterns to improve content quality and platform features
  • Responding to support inquiries

4. Third-Party Services

We use the following third-party services to operate DraftDash. Your data may be processed or stored by these providers:

  • Google Gemini AI: AI content generation. Prompts are processed by Google systems.
  • Supabase: Secure database hosting and authentication services (US region).
  • Hetzner Cloud: Cloud infrastructure and failover hosting (US region).
  • SendGrid: Transactional email delivery (notifications, updates).
  • PayPal: Subscription billing. We do not store credit card numbers.
  • Google Analytics: Anonymous website usage tracking.

5. Data Retention

Active account data is retained for the duration of your subscription. Upon cancellation, your account data and generated content metadata are maintained for 90 days after account cancellation to allow for reactivation. After that period, personal data is deleted. Published blog content on your WordPress site is your property and is not affected by account cancellation.

All generated content can be removed from your site within 2 business days upon written request.

6. Data Security

We implement industry-standard security measures to protect your information, including encrypted connections (HTTPS/TLS), secure credential storage, and role-based access controls. WordPress credentials are stored encrypted and are only used for automated publishing operations. We periodically review our security practices and update them as appropriate.

7. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Withdraw consent for optional data processing

To exercise any of these rights, contact us at [email protected]. We will respond within 45 days.

8. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, "CCPA"):

  • Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you, the sources of collection, the business purposes, and the categories of third parties with whom we share it.
  • Right to Delete: You may request deletion of your personal information, subject to certain legal exceptions (e.g., completing a transaction, detecting security incidents, complying with legal obligations).
  • Right to Correct: You may request correction of inaccurate personal information we maintain about you.
  • Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising. If this practice changes in the future, we will provide a "Do Not Sell or Share My Personal Information" link and comply with opt-out requests.
  • Right to Limit Use of Sensitive Personal Information: We do not collect sensitive personal information beyond what is necessary to provide the Service.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights, including by denying service, charging different prices, or providing a different quality of service.

Submitting a Request: To exercise any of these rights, email [email protected] or call (980) 322-4500. We will verify your identity before processing your request and respond within 45 days. You may also designate an authorized agent to submit a request on your behalf; we may require proof of authorization.

9. Cookies and Tracking Technologies

We use the following types of cookies:

  • Essential Cookies: Required for site functionality, authentication, and security. Cannot be disabled.
  • Analytics Cookies: Google Analytics cookies help us understand how visitors use our website. These collect anonymized usage data.

You can control cookie preferences through your browser settings. Disabling analytics cookies will not affect your ability to use the Service. For more information about Google Analytics and how to opt out, visit Google's opt-out page.

10. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify affected users in accordance with applicable law, including the North Carolina Identity Theft Protection Act (NCGS §75-65).

11. Children's Privacy

DraftDash is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from minors. If we discover that we have collected personal information from a person under 18, we will promptly delete that information.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email to active subscribers. Continued use of the service after changes constitutes acceptance of the updated policy.

13. Governing Law

This Privacy Policy is governed by the laws of the State of North Carolina, United States.

14. Contact

For privacy-related inquiries, data access requests, or concerns:

Email: [email protected]

Phone: (980) 322-4500

Address: 15720 Brixham Hill Ave # 300, Charlotte, NC 28277