Privacy Policy
Last updated: July 1, 2026
1. Introduction
Marketer Digest ("the Service") is operated by Beezypro Ltd. This Privacy Policy explains how we ("we", "us", "our") collect, use, and protect your personal data when you use the Service, accessible at marketerdigest.com and app.marketerdigest.com.
We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Data Controller: Beezypro Ltd Contact: privacy@marketerdigest.com
2. Data We Collect
2.1 Account Information
When you create an account, we collect:
- Full name
- Email address
- Password (stored in hashed form, never in plain text)
- Profile picture (if uploaded)
- Language preference
If you sign up using Google or GitHub, we receive your name, email address, and profile picture from those services.
2.2 Newsletter and Digest Data
When you use the Service, we collect and process:
- Your unique intake email address (generated by us)
- Newsletters forwarded to your intake address, including full email content (HTML and plain text), subject lines, sender addresses, and email headers
- AI-generated summaries of your newsletters
- Digest emails compiled from those summaries
2.3 Payment Information
When you subscribe to a paid plan, payment is processed by our third-party payment provider (currently Stripe). We do not store your credit card number or full payment details. We receive and store only your payment customer ID, subscription status, and plan information.
2.4 Technical and Session Data
When you use the Service, we automatically collect:
- IP address
- Browser user agent
- Session tokens
- Cookies necessary for authentication and language preferences
2.5 Organization Data
If you create or join an organization, we collect the organization name, logo, and membership information (role, join date).
3. How We Use Your Data
We use your data for the following purposes:
- Providing the Service: Processing your forwarded newsletters, generating AI-powered summaries, and delivering your daily digest emails.
- Account management: Creating and maintaining your account, handling authentication, and managing your subscription.
- Transactional emails: Sending email verification, password reset, and account notification emails.
- Service improvement: Understanding how the Service is used to improve functionality and user experience.
- Legal compliance: Complying with applicable laws, regulations, and legal obligations.
We do not sell your personal data to third parties.
4. Legal Basis for Processing (GDPR)
Under the GDPR, we process your personal data based on the following legal grounds:
- Contract performance (Art. 6(1)(b)): Processing necessary to provide the Service you signed up for, including account management, newsletter processing, and digest delivery.
- Legitimate interest (Art. 6(1)(f)): Processing for service improvement and security, where our interests do not override your rights.
- Consent (Art. 6(1)(a)): Where we rely on your consent, you may withdraw it at any time by contacting us.
- Legal obligation (Art. 6(1)(c)): Processing required to comply with applicable laws.
5. Third-Party Services
We share data with the following third-party service providers, solely for the purposes described:
- Resend — Sending transactional and digest emails; receiving forwarded newsletters. Data shared: email addresses, email content.
- Google Gemini AI — Generating newsletter summaries. Data shared: newsletter content (subject and body text).
- Stripe — Payment processing. Data shared: customer ID, subscription details, email address.
- Google / GitHub — Social login authentication. Data shared: name, email, profile picture (only if you choose to sign in with these providers).
- Umami — Website analytics. Data shared: page views, referrer, browser type, device type, country (no personal data, no cookies).
- Vercel — Application hosting. Data shared: IP address, request logs (standard hosting).
- Cloud storage (S3-compatible) — Storing user-uploaded profile pictures. Data shared: profile images.
Each of these providers has their own privacy policy governing their use of data. We encourage you to review them.
AI Processing Disclosure
Newsletter content you forward to the Service is sent to Google's Gemini AI for summarization. This content is processed according to Google's data processing terms. We send only the email subject and body text — no personal account information is included in AI requests.
6. Cookies
We use a minimal number of cookies:
- Session cookie: Required for authentication. Keeps you logged in.
- Locale cookie (
NEXT_LOCALE): Stores your language preference.
We do not use advertising or third-party tracking cookies. Our website analytics (Umami) is cookieless and does not track individual users or collect personal data.
7. Data Retention
- Account data: Retained for as long as your account is active. Deleted within 30 days of an account deletion request.
- Newsletter and digest data: Retained for as long as your account is active to allow you to access your digest history. Deleted when your account is deleted.
- Session data: Automatically expires based on session duration settings.
- Payment records: Retained as required by applicable tax and financial regulations, even after account deletion.
- Analytics data: Aggregated and anonymous. Not tied to individual users and retained separately by our analytics provider.
8. Your Rights (GDPR)
As a data subject under the GDPR, you have the following rights:
- Access: Request a copy of the personal data we hold about you.
- Rectification: Request correction of inaccurate personal data.
- Erasure ("Right to be forgotten"): Request deletion of your personal data.
- Restriction: Request that we limit how we process your data.
- Data portability: Request your data in a structured, commonly used, machine-readable format.
- Objection: Object to processing based on legitimate interest.
- Withdraw consent: Where processing is based on consent, withdraw it at any time.
To exercise any of these rights, contact us at privacy@marketerdigest.com. We will respond within 30 days.
If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. In Bulgaria, this is the Commission for Personal Data Protection (CPDP).
9. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Password hashing using industry-standard algorithms
- HTTPS encryption for all data in transit
- Webhook signature verification for incoming email data
- Access controls and authentication mechanisms
- Secure token-based session management
10. International Data Transfers
Your data may be processed by third-party services located outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or the service provider's participation in recognized data protection frameworks.
11. Children's Privacy
The Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly.
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
For significant changes that affect how we process your data, we will notify you via email or through the Service.
13. Contact Us
If you have questions about this Privacy Policy or your personal data, contact us at:
Marketer Digest (operated by Beezypro Ltd) Email: privacy@marketerdigest.com