IdeaFast

This policy explains what data IdeaFast (ideafast.pro), operated by Shubham Bhatt (India), collects, why, and how you can control it.

1. Data we collect

Account data: name, email, profile image, and authentication provider ID (Google) — captured when you sign up.
Usage data: the interests and subreddits you select, pain scans you run and their results, ideas generated, validations, items you save, your scan history, and any feature requests you submit.
Payment & subscription data: we do not store card numbers. Our payment processor (DodoPayments) handles card data; we store your subscription status, plan, billing period, scan-pack purchases, and the payment ID, amount, currency, status, and name/email on file.
Product analytics: we use PostHog to record page views and feature usage (e.g. which pages and actions you use) to understand and improve the product.
Technical data: IP address and user-agent are logged for security and debugging by our auth, analytics, and hosting providers.

2. How we use it

To operate the service (run pain scans, cluster results, generate ideas and validations, enforce plan limits)
To process payments and prevent fraud
To send transactional emails (receipts, account notices)
To improve the product — in aggregate and de-identified form
To comply with legal obligations

We do not sell your personal data. We do not use your content to train public AI models.

3. Third-party processors

We share data only with services needed to run IdeaFast:

DodoPayments — payment processing (merchant of record)
Neon / Postgres — database hosting
Vercel — application hosting
Google — OAuth sign-in
OpenAI — large language models and text embeddings that classify public posts, cluster them into pain themes, and generate ideas and validations. Inputs may include the interests/subreddits you choose and public post text we retrieve, but not account credentials.
Reddit, Hacker News, and Serper (Google) — public data sources we query to find the conversations behind your scans.
PostHog — product analytics
Sentry — error monitoring (captures error details and diagnostic data so we can fix bugs)
Upstash (Redis) — caching and rate limiting
Resend — transactional email

Each processor has its own privacy policy and security controls.

4. Data retention

We keep account and payment records for as long as your account is active, plus whatever is required by law for accounting (typically 7 years for payment records). Generated ideas and validations are kept until you delete them or your account.

5. Your rights

Depending on where you live (GDPR, CCPA, and similar laws), you may have the right to access, correct, export, or delete your personal data, and to object to certain processing.

You can delete your account and all associated data yourself at any time from Settings → Delete account. This permanently removes your profile, scans, ideas, saved items, and history, and cancels any active subscription. For any other request, email shubham@ideafast.pro from the address on your account and we'll respond within 30 days.

6. Cookies & analytics

We use essential cookies for authentication (session tokens) and site functionality, and product-analytics cookies/identifiers (PostHog) to measure feature usage so we can improve the service. We do not use advertising trackers or sell analytics data.

7. Security

We use HTTPS across the site, industry-standard authentication (Better Auth), and scoped database access. No online service is 100% secure; we encourage strong, unique passwords for any linked accounts.

8. Children

The service is not directed at children under 18. We do not knowingly collect data from them.

9. Changes

We may update this policy. Material changes will be announced via the site or email. The "Effective date" above always reflects the current version.

10. Contact

Questions? Email shubham@ideafast.pro.

Privacy Policy