Privacy Policy

Last updated: 2026-01-07

1Information We Collect

We collect the following personal data when you use the Service:

1.1 Personal data provided via Google Sign-In

When you sign in using Google OAuth, we may receive and store the following data from your Google account:

  • Email address
  • Name
  • Profile picture (avatar)
  • Google User ID (a unique identifier provided by Google)

We do not collect or store your Google password.

1.2 Technical data

We automatically collect limited technical information necessary to operate the Service, including:

  • IP address
  • Browser type and version
  • Device and operating system information
  • Request metadata (timestamps, pages accessed)

This data is used for security, debugging, and service reliability purposes.

2Cookies and Similar Technologies

2.1 What cookies we use

We use strictly necessary cookies and similar technologies to ensure the core functionality of the Service, including user authentication and security.

Authentication cookies

Used to keep you signed in and securely identify your session (e.g. access and refresh tokens).

Security & Infrastructure

Used to protect the Service and ensure reliable delivery (e.g. hosting and edge security).

  • do not track you for advertising purposes
  • are not used for cross-site tracking
  • are required for the Service to function correctly

2.2 Consent for cookies

Because we use only strictly necessary cookies, user consent via a cookie banner is not required under applicable EU ePrivacy regulations.

3How We Collect Information

  • Through Google OAuth (Google Sign-In) during authentication
  • Automatically through strictly necessary cookies and similar technologies
  • Through third-party service providers used to operate the Service

4Purpose of Data Processing

We process personal data only for the following purposes:

Authenticating and identifying users
Providing access to user accounts
Operating, maintaining, and securing the Service
Improving product functionality

We do not use personal data for advertising or marketing purposes.

5Use of Google User Data

Our use of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.

  • Google user data is used only for authentication and account management
  • We do not sell, rent, or use Google user data for advertising
  • Google user data is not shared with third parties except where necessary to operate the Service

6Third-Party Service Providers

Supabaseuser authentication and database storage
Vercelapplication hosting and delivery

7Data Storage and Security

Personal data is stored in cloud infrastructure managed by our service providers.

Encrypted connections

All data transmitted via HTTPS

Restricted access

Strict production access controls

No system can be guaranteed to be fully secure.

8Data Retention

We retain personal data for as long as your account remains active or as necessary to provide the Service. You may request deletion of your account and associated personal data at any time.

9User Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data
  • Request correction or deletion of your data
  • Withdraw consent where applicable

Requests can be sent to: contact@certificate.tips

10. Changes to This Policy

We may update this Privacy Policy from time to time. The current version will always be available on this page.

11. Contact

If you have questions about this Privacy Policy, please contact us at: contact@certificate.tips