Skip to main content

Privacy Policy

Last updated: 1/18/2026

Introduction

At Modulary, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information in accordance with the General Data Protection Regulation (GDPR).

Data Controller

The data controller responsible for your personal data is Modulary, operated by an individual. You can contact us at info@modulary.app for any data protection inquiries.

Information We Collect

We collect the following types of personal information:

  • Email address and name for account creation and authentication
  • Payment information processed securely through Stripe (we do not store credit card details)
  • Usage data and analytics to improve our service
  • Cookies and similar technologies for functionality and analytics
  • Content you create on the platform (courses, materials, etc.)

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Performance of contract: To provide you with the services you have subscribed to
  • Consent: To send you marketing communications (you can withdraw this at any time)
  • Legitimate interest: To improve our services and prevent fraud
  • Legal obligation: To comply with applicable tax and legal requirements

How We Use Your Information

We use your personal data to:

  • Provide and maintain our services
  • Send you service updates, security alerts, and support messages
  • Analyze usage to improve our products and services
  • Comply with legal obligations and enforce our terms

Data Retention Period

We retain your personal data for the following periods:

  • Account data: While your account is active and up to 3 years after cancellation
  • Billing data: 5 years to comply with tax obligations
  • Usage data: 2 years from collection
  • Marketing data: Until you withdraw your consent

After these periods, we will securely delete your data.

Data Sharing and Third Parties

We share your data only with the following service providers, all of which have appropriate data protection safeguards:

Stripe

Finalidad: Payment processing

Ubicación: European Union

Garantías: PCI-DSS certified. Processed by Stripe Payments Europe, Ltd. (Ireland).

Supabase

Finalidad: Database and authentication

Ubicación: European Union (Ireland)

Garantías: SOC 2 Type II certified. Data hosted on AWS eu-west-1 (Ireland), within the European Economic Area.

Vercel

Finalidad: Application hosting and distribution

Ubicación: European Union

Garantías: SOC 2 certified. Edge servers in the European Union.

Resend

Finalidad: Transactional email delivery

Ubicación: European Union

Garantías: Infrastructure in the European Union.

International Transfers

All our service providers operate within the European Union or the European Economic Area. Our database (Supabase) is hosted in Ireland, payments are processed by Stripe Payments Europe in Ireland, and our application and email servers operate from the EU. Therefore, your data remains within the EEA and no international transfers outside this territory are made.

Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Right of access: Obtain confirmation of whether we process your data and access to it
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data when no longer necessary
  • Right to restriction: Request limitation of processing in certain circumstances
  • Right to portability: Receive your data in a structured, commonly used format
  • Right to object: Object to processing based on legitimate interest
  • Right to withdraw consent: Withdraw your consent at any time without affecting the lawfulness of prior processing

To exercise these rights, contact us at: info@modulary.app

We will respond to your request within one month of receipt.

Right to Complain

If you believe that the processing of your personal data violates the regulations, you have the right to lodge a complaint with the supervisory authority in your country of residence.

Data Security

We implement appropriate technical and organizational security measures to protect your data, including encryption in transit and at rest, role-based access control, regular security audits, and automatic backups. However, no system is completely secure and we cannot guarantee absolute security of information.

Cookies and Tracking

We use essential cookies for authentication and optional analytics cookies. You can manage your cookie preferences through our cookie consent banner. For more information, see our Cookie Policy.

Children's Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so we can delete it.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by email or through a prominent notice on our platform before they take effect. We recommend reviewing this policy periodically.

Contact

If you have questions about this privacy policy or about the processing of your personal data, you can contact us at info@modulary.app.

Modulary
Email: info@modulary.app