← MarketMaster.dev

Privacy Policy

Last updated: July 6, 2026

This Privacy Policy explains how Decent4 ("we", "us", "our"), operator of MarketMaster.dev (the "Service"), collects, uses, and shares information about you. By using the Service you agree to this Policy. If you do not agree, please do not use the Service.

This document is provided as general information and is a starting template, not legal advice. Have it reviewed by qualified counsel before relying on it.

1. Who we are

The Service is operated by Decent4, located in the United States. For any privacy question or request, contact us at [email protected].

2. Information we collect

CategoryExamplesWhy
Account dataEmail address, a securely hashed password (scrypt — we never store your plaintext password)Create and secure your account
Newsletter / signupsEmail address you submit to our signup formSend updates you ask for
Content you submitThe pillar content, notes, and prompts you paste into the studio; generated assets and packages you saveProvide the core generation features
Connected-service credentialsAPI keys / tokens for your own Mailchimp, Buffer, Slack incoming webhooks, automation webhooks, or Google Search Console (OAuth refresh token)Deliver to the tools you connect, on your instruction. Stored encrypted at rest (AES-256-GCM).
Billing dataSubscription status, plan, and price identifiersProvide paid features. Payments are processed by Stripe (see §4); we do not receive or store your full card number.
Usage / abuse-preventionGeneration counts per billing period; short-lived rate-limit counters keyed by IPEnforce plan limits and prevent abuse
Analytics & cookiesSee §3Understand and improve the Service

3. Cookies & analytics

We use two kinds of cookies / similar technologies:

4. How information is shared (service providers)

We do not sell your personal information. We share data with vendors who process it on our behalf to run the Service:

ProviderPurpose
VercelApplication hosting
NeonDatabase (accounts, subscriptions, saved packages)
StripePayment processing for subscriptions
Anthropic (Claude)AI text generation on the content you submit
OpenAI / Google (Gemini)AI image backgrounds, when that feature is used
GoogleSearch Console data (only after you connect it via OAuth)
DataForSEOKeyword-volume lookups for a topic you analyze
ResendTransactional email (e.g. password reset)
Google Analytics, DataFastProduct analytics (consent-gated)
Mailchimp / Buffer / your webhookOnly when you connect them and ask us to deliver to them

We may also disclose information to comply with law, enforce our Terms, or protect rights and safety.

5. Your AI inputs

Content you paste into the studio is sent to our AI providers to generate your assets. We do not use your content to train our own models. Each provider processes it under its own terms; if you bring your own API key, your content is sent using that key.

6. Your rights & choices

Depending on where you live (e.g. under the GDPR in the EU/UK, or the CCPA/CPRA in California), you may have the right to access, correct, delete, or export your personal data, and to object to or restrict certain processing. To exercise any right:

We will not discriminate against you for exercising these rights. We do not sell or "share" personal information for cross-context behavioral advertising.

7. Data retention

We keep personal data for as long as your account is active or as needed to provide the Service, then delete or anonymize it, except where a longer period is required for legal, accounting, or abuse-prevention purposes. Deleting your account removes your data as described in §6.

8. Security

We use industry-standard safeguards: passwords are hashed with scrypt, connected-service credentials are encrypted at rest (AES-256-GCM), sessions are signed, and traffic is served over HTTPS. No method of transmission or storage is perfectly secure, so we cannot guarantee absolute security.

9. International transfers

We operate in the United States and our providers may process data there and elsewhere. Where required, we rely on appropriate safeguards for cross-border transfers.

10. Children

The Service is not directed to children under 13 (or the minimum age in your jurisdiction), and we do not knowingly collect their personal data.

11. Changes

We may update this Policy from time to time. Material changes will be reflected by updating the date above and, where appropriate, by additional notice.

12. Contact

Decent4 — [email protected]