Privacy Policy

Last updated: 14 July 2026

The short version: your page is public because that's the product, your customers' data never touches us, and we don't sell anything about you to anyone.

1. What we collect

  • Account basics — your email, name, and password (stored hashed, never in plain text).
  • OAuth profile info — if you sign up with GitHub, Google, or X, we receive your name, email, and profile picture from them.
  • Your page content — bio, images, startup details, and anything else you choose to publish. This is public by design.
  • Revenue aggregates — if you connect Stripe (read-only), we compute and cache totals like monthly and all-time revenue. We never receive or store your customers’ names, emails, or card details.
  • Subscriber emails — when someone subscribes to your page, we store their email so you can reach them. Page owners see their own subscribers only.
  • Analytics — page views and outbound clicks on public pages, with the referrer and country (from Cloudflare). We do not log IP addresses in analytics and we do not use advertising trackers.

2. How we use it

  • To run the product: show your page, compute leaderboards, refresh revenue, deliver subscriber lists.
  • To keep it safe: abuse prevention, rate limiting, debugging.
  • To talk to you: transactional emails (verification, password reset, receipts). The optional footer newsletter is a separate list you choose to join.
  • If you opt into the Profit Tracker Bot, to post your revenue milestones publicly.

3. Where it lives

Treebie runs on Cloudflare (Workers, D1, R2), so your data is stored in Cloudflare’s infrastructure. Payments are handled by Stripe. Transactional email is sent through our email provider. Newsletter signups from the site footer go to Kit (ConvertKit). If social-proof popups are enabled, WiserNotify may set its own cookies on marketing pages.

We do not sell your data. Ever. We share it only with the service providers above, as needed to run Treebie.

4. Cookies

We use one session cookie to keep you signed in, and localStorage for small preferences (like a dismissed banner). No cross-site tracking, no ad cookies.

5. Your rights

You can edit or unpublish your page at any time. You can disconnect Stripe at any time, which stops revenue refreshes. To export or permanently delete your account and data, email jacob@modernmaker.xyz and we will handle it within 30 days.

If you are in the EU/EEA or UK, you have the rights the GDPR gives you (access, correction, deletion, portability, objection). Email us to exercise any of them.

6. Changes

If we change this policy in a meaningful way, we will update the date at the top and, for significant changes, note it in the product.

7. Contact

Privacy questions go to jacob@modernmaker.xyz — a human reads it.