Privacy Policy

PricingSim ("we", "us", "our") is a pricing-experiment tool for solo creators and micro-SaaS founders. Our service is operated by PricingSim, Inc. For privacy questions, contact us at privacy@pricingsim.io.

Account data: Email address, hashed password (or OAuth token), signup date, and subscription status.

Connected service credentials: If you connect your Stripe account, we store your Stripe secret key encrypted at rest using AES-256-GCM with a server-held key. We only use this key to fetch your transaction history and never expose it in responses.

Transaction data: Charge amounts, dates, currencies, anonymized customer identifiers, and product names imported from your connected payment platforms or uploaded CSV files.

Usage analytics: Page views, feature interactions (experiment created, suggestion dismissed), and error events — collected server-side and via a lightweight client analytics module.

Communications: Any messages you send to our support email.

• To provide the PricingSim service — run the pricing engine, generate suggestions, and power A/B experiment pages.
• To operate your account — authentication, billing, subscription management.
• To improve our product — aggregate, anonymized usage patterns.
• To communicate with you — transactional emails (receipts, alerts) and, with consent, product updates.

Your transaction data (amounts, dates, product names) is processed by our Bayesian pricing engine and may also be sent to Anthropic (Claude AI models) to generate human-readable explanations of suggestions. We do not send personally identifiable information such as customer email addresses to Anthropic. Anthropic's data processing is governed by their Privacy Policy.

Important: AI-generated pricing suggestions are automated estimates, not financial or business advice. You are responsible for all pricing decisions.

We share data with the following sub-processors to operate the service:

• Supabase — database and authentication (hosted on AWS; US data centers). Privacy Policy
• Vercel — hosting, serverless functions, edge infrastructure. Privacy Policy
• Stripe — payment processing and subscription management. Privacy Policy
• Google — optional OAuth sign-in. Privacy Policy
• Anthropic — AI text generation for suggestion explanations. Privacy Policy

• Account data: Retained while your account is active and for 30 days after deletion.
• Transaction data: Retained for 2 years from the date of import, or until account deletion.
• Connected credentials: Deleted immediately on disconnection or account deletion.
• Usage analytics: Aggregated after 90 days; raw events deleted.

Depending on your location, you may have the following rights:

• Access: Request a copy of all data we hold about you via Settings → Export my data, or by emailing privacy@pricingsim.io.
• Deletion: Delete your account and all associated data via Settings → Delete account.
• Correction: Update your account details in Settings.
• Portability: Export your data in JSON format at any time.
• Objection / Restriction: Contact us at privacy@pricingsim.io.

For EU/EEA users: You have rights under GDPR. Our lawful basis for processing is contract performance (to provide the service you signed up for) and legitimate interests (analytics, security). You may withdraw consent for non-essential analytics via the cookie banner.

PricingSim operates primarily in the United States. If you are located in the EU/EEA or UK, your data may be transferred to and processed in the US. We rely on Standard Contractual Clauses (SCCs) as the legal mechanism for such transfers, as executed with our sub-processors. You may request a copy of applicable DPAs by emailing privacy@pricingsim.io.

We use essential cookies for session management and authentication. With your consent, we set analytics cookies to understand product usage. You can manage cookie preferences via the banner shown on first visit, or by clearing your browser cookies.

We implement security best practices including: AES-256-GCM encryption for stored payment credentials, TLS for all data in transit, row-level security (RLS) in our database so users can only access their own data, and webhook signature verification on all payment events.

PricingSim is not directed at children under 16. We do not knowingly collect data from anyone under 16. If you believe we have inadvertently collected such data, please contact us.

We will notify you of material changes by email or in-app notice at least 14 days before they take effect. Continued use of the service constitutes acceptance.

Email: privacy@pricingsim.io
Address: PricingSim, Inc., 2298 Johanna Court, Pinole, CA 94564, USA