Privacy Policy

1. Introduction

TLS Notif takes the protection of your personal data seriously. This policy describes the data we collect, how we use it and your rights.

2. Data we collect

Account data: name, email address, password (stored hashed by Google Firebase Authentication, never in plain text), Telegram username or number if you choose to provide it, preferred language.

Messages sent via the contact form: name, email and message content.

Minimal technical data required for Service security: connection logs and IP addresses used for abuse prevention.

Payment data: payments will be processed by Paddle.com as Merchant of Record. We never store or see your banking details.

3. How we use your data

Your data is used exclusively to: provide the Service (sending alerts on your chosen channels, account management), send transactional emails (confirmation codes, account notifications), answer your support requests, ensure security and prevent abuse, and comply with our legal obligations.

We run no targeted advertising and use no advertising trackers.

4. Data sharing

Your data is never sold. It is shared only with the technical processors strictly necessary to run the Service: Google Firebase (authentication, database and hosting), Resend (transactional email delivery), Paddle (payment processing, as Merchant of Record), and with authorities where required by law.

5. Hosting and security

The Service is hosted on Google Cloud infrastructure in the European Union (Netherlands region / Europe multi-region). Communications are encrypted (TLS), passwords are hashed, confirmation codes are stored hashed and expire after 10 minutes, and data access is governed by strict security rules.

6. Data retention

Account data is kept while the account is active, then deleted within 30 days of a deletion request. Contact messages are kept for a maximum of 12 months. Confirmation codes are deleted automatically after 10 minutes.

7. Your rights

You have the right to access, rectify, delete, port and object to the processing of your data. You can update your information from your personal space or exercise your rights by writing to contact@tls-notification.com; we respond within 30 days.

You may also contact the competent supervisory authority, in particular the INPDP in Tunisia. Residents of the European Union benefit from the rights provided by the GDPR.

8. Cookies

The website only uses strictly necessary cookies and storage: your language preference (the “tls_lang” cookie) and the Firebase authentication session. No advertising or tracking cookies are used.

9. Changes to this policy

Any substantial change to this policy will be announced by email or by a notice on the website.

10. Contact

For any question about your personal data: contact@tls-notification.com.