Privacy policy
Last updated:
ShipLog collects feedback, publishes roadmaps and sends changelog notifications on behalf of the projects that use it. This policy explains what data we collect, why, and what we do with it. Questions? Email hello@shiplog.ca.
What we collect
- Account data: your email address, used for magic-link sign-in and account notices. We don't store passwords.
- Project data: feedback items, votes, comments, roadmap statuses and changelog entries you or your users create.
- End-user submissions: when someone posts feedback on a public board or widget, we store what they submit. Name and email are optional. Anonymous votes are tied to a salted hash of the voter's IP address, not the address itself.
- Billing data: payments are processed by Stripe. We never see or store card numbers.
- Logs: standard server logs (IP address, user agent, request path) kept for security and debugging.
How we use it
To run the service: sign you in, host your boards, notify voters when you ship, bill paid plans and answer support email. That's it. We don't sell data, run ads or share data with third parties beyond the processors below.
Who processes data for us
- Fly.io — application and database hosting
- Stripe — payment processing
- Postmark — transactional email (magic links, voter notifications)
Cookies
We use a session cookie to keep you signed in. No advertising or cross-site tracking cookies.
Retention and deletion
We keep your data while your account is active. Delete a project and its data is removed. To delete your account and everything in it, email hello@shiplog.ca and we'll complete it within 30 days.
Your rights
You can request a copy of your data, ask us to correct it or ask us to delete it at any time. If you submitted feedback on a customer's board, contact that project's owner first — they control that board's data — or email us and we'll help.
Changes
If this policy changes in a way that matters, we'll note it in the changelog and update the date at the top of this page.