Legal
Privacy policy
Last updated April 2026.
What we collect
Your account email, the content you publish, and standard request metadata like IP and user-agent so we can keep the service online and debug problems. If you enable subscriber emails for your changelog, we store the addresses your readers give us.
How we use it
To run Brief: authenticate you, render your changelog, send the emails you ask us to send, and bill you if you're on a paid plan. We use aggregate analytics to understand how the product is used — never to sell your data or track your readers across the web.
Cookies
We use a small number of first-party cookies for login state and CSRF protection. No third-party ad cookies, ever. If that changes, this page will change first.
Who sees your data
The infrastructure providers that host the app (databases, object storage, email delivery) process data on our behalf under standard data-processing agreements. We don't share your data with anyone else without a court order or your explicit opt-in.
Your rights
Export your data from Settings → Export, or email us and we'll do it for you. Delete your account from Settings → Danger zone; this permanently removes your content within thirty days. If you're in the EU, UK, or California, you have the usual rights under GDPR/CCPA — same channel, we'll handle it.
Changes
If we change how we handle data in a way that affects you, we'll tell you by email before the change takes effect. The current version of this policy is always linked from the footer.