F
FancyTextNow

Privacy Policy

Last updated: January 2025

Introduction

TextRich ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our text styling service.

We comply with the General Data Protection Regulation (GDPR) and Belgian data protection laws. By using our service, you agree to the collection and use of information in accordance with this policy.

Data Controller

The data controller responsible for your personal data is TextRich.

Contact:

What Data We Collect

Free Users (No Account)

We do not collect or store any personal data. Your styled text remains on your device and is never sent to our servers.

Registered Users

  • Email address
  • Display name (optional)
  • Password (encrypted using bcrypt)
  • Account creation date
  • Saved text snippets (if you choose to save them)

Premium Subscribers

  • All data from registered users
  • Billing information (processed and stored by Stripe, not by us)
  • Subscription status and plan details
  • Payment history (stored by Stripe)

Analytics & Technical Data

  • IP address (anonymized)
  • Browser type and version
  • Device information
  • Pages visited and time spent
  • Referral source

Cookies

  • Essential cookies: Session management, authentication
  • Analytics cookies: Website performance and usage statistics (with your consent)
  • Preference cookies: Language, theme preferences

How We Use Your Data

  • Provide the service: Enable text styling, saving, and account management
  • Process payments: Handle subscriptions and billing through Stripe
  • Communication: Send transactional emails (password reset, subscription updates)
  • Improve service: Analyze usage patterns to enhance features and performance
  • Security: Detect and prevent fraud, abuse, and technical issues
  • Marketing: Send promotional emails (only with your explicit consent, unsubscribe anytime)
  • Compliance: Meet legal obligations and enforce our terms

Legal Basis for Processing (GDPR)

Contract performance: Processing necessary to provide our service to registered users

Consent: Marketing communications, non-essential cookies, analytics

Legitimate interest: Website analytics, fraud prevention, service improvement

Legal obligation: Retention of billing records, compliance with tax laws

Data Sharing and Third Parties

We do not sell, rent, or trade your personal data. We share data only with trusted service providers:

Stripe (Payment Processing)

Handles all payment transactions. PCI DSS compliant. Your payment card details are never stored on our servers.
Stripe Privacy Policy

Supabase (Database Hosting)

Stores user accounts and saved texts. Data hosted in EU (AWS Europe). GDPR compliant.
Supabase Privacy Policy

O2Switch (Website Hosting)

Hosts the application. Data hosted in France (100% EU). GDPR compliant. May collect technical logs and performance data.
O2Switch Privacy Policy

Analytics Services

We use privacy-friendly analytics to understand website usage (anonymized data only, with your consent).

Advertising (Future Feature)

In the future, we may display contextual advertisements to free users. These ads will:

  • Be contextual and relevant to the service
  • Not involve invasive tracking or cross-site data collection
  • Comply with GDPR requirements
  • Be removable by upgrading to Premium

We will update this policy and request your consent before implementing advertising features.

Data Retention

  • Active accounts: Data retained while your account is active
  • Inactive accounts: Automatically deleted after 24 months of inactivity
  • Deleted accounts: Personal data deleted within 30 days, except billing records
  • Billing records: Retained for 10 years as required by Belgian tax law
  • Analytics data: Anonymized data may be retained indefinitely

Your Rights Under GDPR

As a user in the European Union, you have the following rights:

Right to Access

Request a copy of all personal data we hold about you

Right to Rectification

Correct inaccurate or incomplete data

Right to Erasure ("Right to be Forgotten")

Request deletion of your personal data (subject to legal retention requirements)

Right to Data Portability

Receive your data in a structured, machine-readable format

Right to Object

Object to processing based on legitimate interests (e.g., marketing, analytics)

Right to Restrict Processing

Limit how we use your data in certain circumstances

Right to Withdraw Consent

Withdraw consent for marketing or analytics at any time

Right to Lodge a Complaint

File a complaint with the Belgian Data Protection Authority:
www.autoriteprotectiondonnees.be

To exercise any of these rights, contact us at . We will respond within 30 days.

Data Security

We implement industry-standard security measures to protect your data:

  • HTTPS encryption for all data transmission
  • Passwords hashed using bcrypt (never stored in plain text)
  • PCI DSS compliance via Stripe for payment processing
  • Regular security audits and updates
  • Limited employee access to personal data
  • Secure cloud infrastructure with automatic backups

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

International Data Transfers

Your data is primarily stored within the European Union:

  • Supabase/AWS: Data hosted in EU regions (GDPR compliant)
  • Stripe: Payment processing may involve transfers to the USA (adequacy mechanisms in place)

When data is transferred outside the EU, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

Children's Privacy

Our service is not directed at children. We do not knowingly collect personal data from anyone under 16 years of age. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. Significant changes will be communicated via:

  • Email notification to registered users
  • Prominent notice on our website
  • Updated "Last modified" date at the top of this page

Continued use of the service after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or how we handle your data:

Email: