Privacy Policy

We built Pounce because we hate inbox junk. We definitely didn't build it to collect your data and sell it. This policy explains exactly what we collect, why, and what you can do about it. Plain English, no legalese.

What we collect

When you sign up and use Pounce, we collect:

• Your email address — so we can send you your Pounce deal summary and you can log in.
• Your name — pulled from your Google account during sign-up, so we can say hi.
• Email inbox access (read-only) — via Gmail, Outlook, Yahoo, iCloud, or any IMAP provider. We scan your inbox for promotional emails to find deals. We only read emails, never send, delete, or modify anything.
• Usage analytics — which deals you opened, dismissed, or saved. This helps us surface better deals for you over time.
• Basic session data — a cookie that keeps you logged in.

What we do NOT collect

• We never read your personal emails — only promotional/commercial senders.
• We don't collect payment card details (Stripe handles that entirely).
• We don't track you across other websites.
• We don't build advertising profiles.

---

How we use your data

• Pounce deal delivery — the whole point. We analyze your inbox and send you a curated list of the best deals.
• Product improvement — aggregate usage patterns (which categories people care about, how often deals expire before anyone clicks) make the product better for everyone.
• Authentication — keeping your account secure.
• Customer support — if you email us with a problem, we'll use your account info to help you.

Who we share data with

Nobody buys your data from us. Full stop. We share data with exactly three categories of service providers — and only the minimum required:

• Email providers (Gmail, Outlook, Yahoo, iCloud, IMAP) — for OAuth login and email access. Each provider's terms apply to their respective OAuth authorization.
• Stripe — for payment processing if you upgrade to a paid plan. We never see your card number.
• Infrastructure providers — our hosting platform processes data to keep the app running. Standard stuff.

We will never sell, rent, or trade your personal information to advertisers or data brokers.

---

Data retention

We keep your data as long as your account is active. If you delete your account:

• Your email address and profile are deleted within 30 days.
• Cached deal data associated with your account is deleted immediately.
• We may retain anonymized, aggregated analytics (no personal identifiers) indefinitely.

Your rights

You have real control over your data:

• Delete your account — go to Settings → Delete Account. Done within 30 days, no questions asked.
• Export your data — email us at pounce-31@polsia.app and we'll send you everything we have on you.
• Revoke email access — go to your email provider's account settings (e.g., Google Account → Security → Third-party apps) and remove Pounce. This will disable deal delivery but won't delete your account.
• Opt out of analytics — email us and we'll stop tracking your usage patterns.

If you're in the EU or California, additional rights (GDPR/CCPA) apply. Email us and we'll handle it promptly.

---

Security

We use industry-standard encryption (AES-256) for sensitive stored data, HTTPS for all connections, and we don't store your email credentials — access is managed through each provider's OAuth system (or encrypted IMAP credentials for non-OAuth providers), which you can revoke at any time.

Children

Pounce is not directed at children under 13. We don't knowingly collect data from anyone under 13. If you believe a child has created an account, email us and we'll delete it.

Changes to this policy

If we make material changes, we'll email you before they take effect. The "last updated" date at the top always reflects the current version. Continuing to use Pounce after a policy update means you accept the new terms.