EasySSL

Privacy Policy

Last updated: March 2025

1. Information We Collect

We collect the following information when you use EasySSL:

  • Account information: Email address and authentication data via Clerk
  • Domain information: Domain names you submit for SSL certificate generation
  • Certificate data: SSL certificates and encrypted private keys
  • Payment information: Processed by Paddle — we do not store card details
  • Usage data: Pages visited, features used, via Google Analytics (if enabled)

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Generate and renew SSL certificates on your behalf
  • Send certificate renewal notifications via email
  • Process payments and manage subscriptions
  • Respond to support requests
  • Monitor and analyze usage patterns to improve the Service

3. Data Storage and Security

Your data is stored in a secure PostgreSQL database hosted on Supabase. Private keys are encrypted using AES-256 encryption before storage and are only decrypted temporarily when you download them. We implement industry-standard security measures to protect your data.

4. Third-Party Services

We use the following third-party services:

  • Clerk — Authentication and user management
  • Supabase — Database hosting
  • Paddle — Payment processing
  • Let's Encrypt — SSL certificate issuance
  • Vercel — Application hosting
  • Google Analytics — Usage analytics (optional)

Each third-party service has its own privacy policy governing how they handle your data.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We share data only with the third-party services listed above as necessary to provide the Service, and with law enforcement when required by law.

6. Cookies

We use essential cookies for authentication (via Clerk) and session management. If Google Analytics is enabled, analytics cookies may be set. You can control cookie settings through your browser.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your certificate data from the dashboard

To exercise these rights, contact us at support@easyssl.app or delete your account directly from the dashboard.

8. Data Retention

We retain your data for as long as your account is active. When you delete your account, your personal data and certificates are permanently deleted within 30 days. Some data may be retained longer if required by law.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email. Continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related questions or requests, contact us at support@easyssl.app.