Privacy Policy
Introduction
Welcome to Millionaire Day. We are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
Our Commitment
Data Controller
The data controller responsible for your personal data is:
Company Information
Contact
Personal Data We Collect
We collect the following categories of personal data to provide and improve our services:
Account Information
Email address, full name, profile picture (optional), and account creation date.
Technical Data
IP address, browser type, device information, operating system, and session identifiers.
Subscription & Payment
Subscription plan, payment history (via Polar.sh), and billing dates. We never store card details.
Usage Data
Pages visited, features used, and time spent on the platform to improve our services.
Payment Security
Legal Basis for Processing
We process your personal data based on the following legal grounds under GDPR:
Contract Performance
To provide our services and fulfill our contractual obligations to you.
Consent
For marketing communications and optional cookies. You may withdraw consent at any time.
Legitimate Interests
For security, fraud prevention, and service improvement.
Legal Obligations
To comply with applicable laws and regulations.
How We Use Your Data
We use your personal data to deliver and improve our services:
Account Management
Create and manage your account, authenticate your sessions.
Service Delivery
Provide access to our daily SaaS ideas and premium features.
Payment Processing
Process subscriptions and handle billing through Polar.sh.
Communications
Send transactional emails and marketing communications (with consent).
Security & Compliance
Ensure platform security and comply with legal requirements.
Data Sharing & Third Parties
We may share your data with trusted third-party service providers:
| Service | Provider | Purpose |
|---|---|---|
| Payment Processing | Polar.sh | Secure payment handling |
| Frontend Hosting | Vercel | Website delivery and CDN |
| Backend Infrastructure | Railway | API and data processing |
| AI Content Generation | Anthropic (Claude) | Idea generation and analysis |
| Email Delivery | Resend | Transactional and marketing emails |
Data Protection
International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequacy decisions where applicable
- Binding corporate rules of our service providers
Data Retention
We retain your personal data only for as long as necessary:
Your Rights Under GDPR
You have comprehensive rights regarding your personal data:
Access
Request a copy of your personal data
Rectification
Correct inaccurate or incomplete data
Erasure
Request deletion of your data
Restrict
Limit how we use your data
Portability
Receive data in machine-readable format
Withdraw
Withdraw consent at any time
Exercise Your Rights
Security Measures
We implement appropriate technical and organizational measures to protect your data:
Encryption
Data in transit protected with HTTPS/TLS
Password Hashing
Secure bcrypt password hashing
Access Controls
Strict authentication and authorization
Security Audits
Regular security assessments
Secure Hosting
Reputable cloud providers
Children's Privacy
Age Restriction
Complaints & Contact
If you have concerns about how we handle your personal data, you have the right to lodge a complaint with your local data protection authority.