Privacy Policy

Privacy Policy

Last updated: January 2026

1. Information We Collect

WhenBRRR collects information you provide directly, including:

  • Account Information: Email address, name, company name when you create an account
  • Usage Data: Marketing budget configurations, channel allocations, and integration settings
  • Payment Information: Processed securely through Stripe; we do not store full credit card numbers
  • Integration Data: Data from connected platforms (HubSpot, Salesforce) with your authorization

2. How We Use Your Information

We use collected information to:

  • Provide and improve the WhenBRRR market intelligence platform
  • Calculate Money Tide Index (MTI) and Sales Nimbus Index (SNI) recommendations
  • Generate personalized budget allocation recommendations
  • Send service updates, security alerts, and product announcements
  • Provide customer support and respond to inquiries

3. Data Security

We implement industry-standard security measures:

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • SOC 2 Type II compliant infrastructure
  • Regular security audits and penetration testing
  • Immutable audit logging with blockchain-style integrity verification

4. Data Sharing

We do not sell your personal data. We may share information with:

  • Service Providers: Cloud infrastructure (AWS/Railway), payment processing (Stripe)
  • Integrations: Only with platforms you explicitly connect (HubSpot, Salesforce, NimbusOS)
  • Legal Requirements: When required by law or to protect rights

5. Your Rights (GDPR/CCPA)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("Right to be Forgotten")
  • Portability: Export your data in machine-readable format
  • Object: Opt out of certain data processing

To exercise these rights, contact us at privacy@whenbrrr.com

6. Cookies & Analytics

We use cookies for:

  • Essential: Authentication and session management
  • Analytics: Understanding platform usage (can be opted out)
  • Preferences: Remembering your settings

You can manage cookie preferences in your browser settings or through our cookie consent banner.

7. Data Retention

We retain your data for:

  • Active accounts: Duration of account activity plus 2 years
  • Audit logs: 7 years for compliance purposes
  • Deleted accounts: 30 days before permanent deletion

8. Contact Us

Data Protection Officer

Email: privacy@whenbrrr.com

For GDPR inquiries: dpo@whenbrrr.com

BRRRBOT

AI Budget Assistant

👋 Hey there! I'm BRRRBOT, your AI budget allocation assistant.

I can help you:

  • Understand your MTI and market regime
  • Explain allocation recommendations
  • Navigate features and settings
  • Optimize your marketing budget

What would you like to know?

Just now