Privacy Policy

Last updated: 2025-10-21

1. Introduction

This Privacy Policy explains how Notely collects, uses, stores, and protects your personal information. We are committed to protecting your privacy and being transparent about our practices.

2. Information We Collect

2.1. Account Information: When you create an account, we collect:

• Username and display name
• Email address (if provided)
• Password (stored as encrypted hash)
• Profile picture (if uploaded)

2.2. Content Information: We store content you create:

• Blog posts and drafts
• Comments on other posts
• Profile information

2.3. Technical Information: We automatically collect:

• IP address for security purposes
• Browser and device information
• Session data for authentication
• Access logs and timestamps

3. How We Use Your Information

3.1. Service Provision: To provide and maintain the blogging platform

3.2. Security: To protect against fraud and unauthorized access

3.3. Communication: To respond to your inquiries and support requests

3.4. Improvement: To analyze usage patterns and improve our service

4. Data Storage and Security

4.1. Your data is stored securely in our database systems.

4.2. Passwords are hashed using bcrypt and are never stored in plain text.

4.3. We implement appropriate technical and organizational security measures.

4.4. Database backups are created regularly to prevent data loss.

5. Cookies and Tracking

5.1. We use essential cookies for:

• Session management (keeping you logged in)
• Security tokens
• Theme preferences

5.2. We do not use tracking cookies for advertising purposes.

5.3. Third-party services (like code highlighting libraries) may set their own cookies.

6. Content Visibility

6.1. Published blog posts are publicly visible and searchable.

6.2. Drafts are only visible to you.

6.3. Your profile information is visible to other users.

6.4. Comments are visible on the posts where they are made.

7. Third-Party Services

7.1. We use third-party libraries for:

• Code syntax highlighting (highlight.js)
• Markdown processing (marked.js)
• Content sanitization (DOMPurify)

7.2. These services have their own privacy policies and terms.

8. Data Retention

8.1. We retain your account data while your account is active.

8.2. Deleted accounts and content are removed from public view immediately.

8.3. Some data may remain in backup systems for a limited period.

9. Your Rights

9.1. Access: You can view and export your data at any time.

9.2. Correction: You can update your profile information.

9.3. Deletion: You can delete your account and associated content.

9.4. Portability: You can request a copy of your data.

10. Children's Privacy

10.1. Notely is not intended for children under 13.

10.2. We do not knowingly collect personal information from children under 13.

10.3. If we become aware of collecting information from a child under 13, we will delete it promptly.

11. International Users

11.1. Notely is hosted and may process data internationally.

11.2. By using our service, you consent to international data transfers.

12. Security Breaches

12.1. In the event of a data breach, we will:

• Investigate promptly
• Notify affected users if appropriate
• Take measures to prevent future incidents
• Report to authorities if required by law

13. Changes to This Policy

13.1. We may update this Privacy Policy from time to time.

13.2. We will notify users of significant changes.

13.3. Continued use of the service constitutes acceptance of changes.

14. Contact Information

For privacy-related questions or concerns, please create an issue on our GitHub repository: https://github.com/Parham125/notely/issues

15. Legal Basis for Processing

15.1. Our legal basis for processing your information includes:

• Contractual necessity (providing the service you requested)
• Legitimate interests (security, improvement, and safety)
• Legal compliance (when required by law)