Privacy Policy
CREATIVEGROVE (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, process, and protect your information when you use SaaS Idea, our website, and related services (collectively, the “Services”).
SaaS Idea Platform
An AI-powered SaaS idea generation and business validation platform.
Account details, platform usage data, analytics, subscriptions, communications.
Industry-standard data protection with transparency, security, and user control.
Contact Information
Data Controller
CREATIVEGROVE
Electronic Contact
admin@saasidea.org
Information We Collect
We process data to deliver, optimize, and secure SaaS Idea. We collect information you provide directly, data gathered automatically from your session activity, and details from key integration points.
2.1 Information You Provide Directly
- Full Name
- Email address
- Encrypted password
- Subscription status
- Account configurations
- Customer support requests
- Feedback submissions
- Direct email messages
- Feature requests
- Prompts submitted to AI
- Generated SaaS ideas saved
- Custom notes and metadata
- User-curated platform data
2.2 Information We Collect Automatically
Features accessed, session duration, page loads, clicks, and general system event activity logs.
IP address, browser type and version, operating system, hardware identifiers, and browser language.
User conversion paths, custom events, dashboard views, rendering delays, and crash reports.
Authentication tokens, user-session identifiers, client preferences, and basic security cookies.
2.3 Third-Party Information
Authentication Providers
If you sign in using third-party identity partners (like Google or GitHub via Supabase), we receive limited profile data like your profile image URL, email address, and ID.
Payment Processors
We receive payment verification status, webhooks, transaction confirmations, invoice IDs, and subscription tier references from Dodo Payments.
AI Services and Generated Content
Algorithmic Limitations Notice
SaaS Idea utilizes advanced artificial intelligence models provided by OpenAI and other related service providers to generate business proposals, market analyses, and SaaS validations.
Prompts and parameters submitted to the generator are processed by downstream AI providers.
AI-generated content can contain inaccuracies, hallucinations, omissions, or outdated facts.
Users are solely responsible for verifying and validating ideas prior to business investments.
We make no legal or suitability guarantees regarding AI outputs.
How We Use Your Information
4.1 Service Provision
Managing user accounts, granting access control rights, validating subscriptions, executing payment transactions, delivering dynamic AI summaries, distributing transactional emails, and troubleshooting user tickets.
4.2 Product Improvement
Analyzing usage graphs, calculating click patterns, designing and building new platform modules, optimizing prompt engineering pipelines, addressing application bugs, and evaluating site reliability.
4.3 Marketing Communications
Distributing new feature releases, B2B idea newsletters, industry studies, educational tool tips, and sales offers. These are sent only with your consent, and you may opt-out at any time via the unsubscribe links.
4.4 Legal & Safety
Preventing fraud, blocks, and API abuse; detecting security logs; ensuring compliance with tax, billing, and corporate laws; and maintaining adherence to our platform Terms of Service.
Legal Basis for Processing (GDPR)
For users located in the European Economic Area (EEA), we process personal data under these standard legal bases:
Processing is necessary to perform our contractual service duties to you as requested.
When you voluntarily opt-in to marketing newsletters or accept non-essential trackers.
Continuous product debugging, site performance engineering, security logs, and abuse diagnostics.
Necessary for compliance with financial audits, tax laws, or valid regulatory subpoenas.
Payment Processing and Dodo Payments
Sensitive Payment Security
Important: We do not directly collect, store, or process full payment card information.
All payment processing runs through the secure APIs and checkouts of Dodo Payments.
- Customer ID hashes
- Subscription tier updates
- Billing/invoice identifiers
- Transaction success webhooks
- Full credit or debit card numbers
- CVV security codes
- Personal banking PINs
- Full payment provider credentials
All payment actions are bound directly by Dodo Payments’ individual security practices and privacy compliance policies.
Data Security
We prioritize data security. SaaS Idea integrates several standard measures to protect account database records and transmission keys:
Encryption In Transit
All platform traffic is encrypted using HTTPS and Transport Layer Security (TLS).
Access Controls
Database operations are gated behind credentials accessible only to vital automated routines.
System Monitoring
We track unusual API volume spike alerts to quickly block bad actors and crawler bots.
Secure Auth
User signup passwords are cryptographically hashed by Supabase before db storage.
Software Updates
Core backend modules, dependencies, and API integrations are frequently updated.
Best Practices
We align operations with OWASP standards and Next.js recommended security headers.
Please remember that no internet transmission or electronic database vault is 100% impenetrable. While we strive to protect your info, we cannot offer absolute security warranties.
Data Retention
We hold your info only as long as necessary to fulfill the operational services detailed in this policy.
Retained as long as your profile remains active or as required for ongoing business needs.
Aggregated and generally deleted or fully anonymized after a maximum of 24 months.
Held in active systems until you withdraw consent or click an unsubscribe link.
Selected logs are retained longer for tax compliance, accounting audits, or disputes.
9.1 Profile Deletion Right
You can request complete deletion of your account and all associated personal data stored in our DB. To do so, email your request to:
Note: Certain essential payment invoices, tax records, or audit trails must be retained by law for strict regulatory periods.
International Data Transfers
Our core service infrastructure partners (like Supabase, Vercel, and OpenAI) process, host, and route database data in multiple globally-distributed server facilities, predominantly in the United States.
By signing up and utilizing SaaS Idea, you acknowledge that your personal information may be transferred and processed in regions outside your native country of residence. Where applicable law mandates, we maintain standard contract protections and secure transmission parameters to protect all cross-border flows.
Your Rights
Depending on your physical location (such as the EU or California), you may hold specific privacy control rights. We extend fundamental controls to all users globally:
11.1 Rights Available to All Users
11.2 Account Controls
You can manage your dashboard preferences, update contact emails directly in your Settings page, cancel active subscriptions, or opt-out of marketing emails instantly using the “unsubscribe” footer links.
- Right to data portability
- Right to restrict processing
- Right to object to processing
- Right to withdraw consent at any time
- Right to know what data is collected
- Right to request deletion of data
- Right to access collected data
- Equal pricing and services (No discrimination)
Marketing Communications and Consent
Email Marketing: We distribute newsletters and promotional emails only with your explicit consent or where permitted by applicable marketing laws. You can opt-out of marketing communications at any time.
Analytics Consent: Where regional cookie directives apply, we seek cookie consent prior to setting non-essential web cookies or firing custom GA4 tag trackers. You can adjust your consent options via browser controls.
Children’s Privacy
SaaS Idea does not target, market to, or knowingly collect any personal information from children under the age of 13.
If we discover that a user under 13 has registered a profile, we will act immediately to delete all associated database files and records from our server systems. Please report any occurrences to: admin@saasidea.org.
Refund Policy
7-Day Refund Guarantee
SaaS Idea offers a **seven (7) calendar day** refund guarantee on eligible subscription purchases, calculated from the original transaction timestamp.
Refund requests must be emailed to: admin@saasidea.org. Please provide your profile email and purchase receipt details.
Refunds may be denied in cases involving platform abuse, excessive AI token generation usage during the period, or recurrent purchase-refund cycling.
Updates to This Policy
We reserve the right to revise this Privacy Policy periodically to align with product updates, provider changes, or legal updates.
All updates will be published on this page with the modified “Last Updated” date. For material alterations to our data practices, we will post alerts in the app dashboard or send direct email warnings to active users.
Supervisory Authority
If you reside in a region with active privacy protection laws, you retain the legal right to file a complaint with your local data protection regulator if you believe our data processing operations violate your statutory rights.
Contact Us
For privacy concerns, data deletion requests, or questions regarding this policy, please reach out to us: