Legal
Privacy Policy
This policy explains what personal data we collect, why we collect it, who processes it on our behalf, and the rights you have over it.
Last updated: June 24, 2026
1. Who is responsible for your data
For the purposes of the EU General Data Protection Regulation (GDPR) and applicable Hungarian data-protection law, the data controller for the PulseRank service is Zoltan Dross, a sole proprietor (egyéni vállalkozó) established in Hungary. For any privacy question or to exercise your rights, contact us at hello@drosscreative.com.
2. What data we collect
We collect the following categories of personal data:
- Account data — your name, email address, and authentication credentials when you create an account.
- Billing data — billing name, address, country, and transaction history. Payment card details are collected and processed directly by Stripe, our payment processor; we do not receive or store full card numbers.
- Service data — the website details, content inputs, keywords, and the credentials or API tokens you provide so we can publish content to systems you own.
- Usage and technical data — log data, device and browser information, IP address, and basic analytics about how you use the Service and our website.
- Communications — messages you send us by email or through support, and your email preferences.
3. How and why we use your data
We process personal data to:
- provide, operate, maintain, and improve the Service (legal basis: performance of a contract);
- process payments, subscriptions, invoices, and refunds through our payment provider (performance of a contract and legal obligation);
- communicate with you about your account, security, and service updates (performance of a contract and legitimate interests);
- send marketing or product emails where you have opted in, which you can withdraw at any time (consent);
- maintain security, prevent fraud and abuse, and comply with legal obligations (legitimate interests and legal obligation).
4. Service providers and sub-processors
We do not sell your personal data. We share it only with service providers (“processors”) who process it on our behalf and under contract, solely to provide the Service. These include, by category:
- Payments & billing — Stripe, our payment processor, securely processes payments and refunds on our behalf.
- Authentication & database hosting — Supabase, used to store account data and to authenticate users.
- AI content providers — third-party large-language-model and image-generation providers process the inputs and prompts needed to generate content for you.
- Hosting & content delivery — our cloud and edge-network provider, used to host and serve the website and Service.
- Email delivery — a transactional email provider, used to send confirmations, notifications, and (where opted in) product updates.
- Analytics — privacy-conscious analytics to understand aggregate usage of our website and Service.
Each provider is bound to use your data only as instructed by us and to keep it secure. Some providers may process data outside the European Economic Area; where that happens, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses.
5. AI processing of your content
To generate articles and related assets, the content and prompts you provide are sent to third-party AI providers for processing. We work with providers that, under their terms, do not use customer content submitted through their business APIs to train their models. You should avoid submitting sensitive personal data as content inputs.
6. Cookies and analytics
Our website uses cookies and similar technologies that are necessary for the site to function and, where applicable, to measure aggregate usage. You can control non-essential cookies through your browser settings. The checkout served by Stripe may set its own cookies, governed by Stripe’s privacy policy.
7. How long we keep your data
We retain personal data for as long as your account is active and as needed to provide the Service. After you close your account, we delete or anonymize your data within a reasonable period, except where we must retain certain records (for example, billing and tax records) to comply with legal obligations.
8. Your rights
Subject to applicable law, you have the right to access, correct, or delete your personal data; to restrict or object to processing; to data portability; and to withdraw consent at any time where processing is based on consent. To exercise these rights, contact us at hello@drosscreative.com. You also have the right to lodge a complaint with your local supervisory authority. In Hungary, this is the Hungarian National Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság, NAIH).
9. Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or disclosure. No method of transmission or storage is completely secure, but we work to protect your data and to use reputable providers that maintain strong security practices.
10. Children
The Service is not directed to children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us personal data, please contact us so we can delete it.
11. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify you.
12. Contact
For any privacy question, visit our contact page or email hello@drosscreative.com.
