Privacy Policy

Effective Date: May 8, 2026
Last Updated: May 8, 2026

monodit ("monodit", "we", "us", or "our") respects your privacy and is committed to protecting your personal information.

This Privacy Policy explains what personal information we collect, how we use it, when we share it, and what choices you have when you use the monodit web application (the "Service").

This Policy applies to the monodit web app. Additional features, including gallery-related functionality, may be introduced over time, and this Policy will apply to those features unless otherwise stated.

If you have questions about this Privacy Policy or our privacy practices, contact support@monodit.com.

1. Who We Are

monodit is a web-based dashboard service that allows users to create, customize, and sync dashboards, including custom widgets and themes.

2. Scope

This Privacy Policy applies to personal information collected through the monodit web application.

The Service is intended for a global audience, including users in Europe, the United States, and Canada.

3. Children

monodit is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13.

If we become aware that we have collected personal information from a child under 13, we will take reasonable steps to delete that information. If the laws of your jurisdiction require a higher minimum age for the use of online services, that higher age requirement may apply.

4. Information We Collect

We collect the following categories of information.

A. Account and Profile Information

Email address
Password, if you choose password-based sign-in
Display name
Profile image, if you upload one
OAuth profile information, if you sign in through a third-party provider, such as name, email address, and profile image

B. Service Data and User Content

Dashboard content and configuration
Custom widget source code
Custom theme source code
Uploaded assets and files
Gallery submissions and related metadata
Account preferences and settings

C. Billing and Subscription Information

If you use paid features, billing and subscription processing may be handled by Lemon Squeezy. We may receive and store limited billing-related information such as:

Customer identifier
Subscription identifier
Subscription status
Renewal date
Internal plan status
Payment outcome metadata needed to manage subscriptions, support, fraud prevention, refunds, or disputes

We do not directly store or process full payment card numbers or card security codes.

D. Automatically Collected Information

When you use the Service, we may automatically collect:

IP address
Browser type and device information
Session data
User agent
Request and access logs
Cookie and authentication session information
Product usage and analytics events
Error, performance, and security telemetry

E. AI Provider Information

If you configure AI features, we may collect and store:

Your selected AI provider
Your provider API key, encrypted at rest
Technical metadata related to AI requests, such as success or failure status, latency, and operational diagnostics

We do not store the prompts or generated outputs themselves as part of normal service operation.

F. Location Information

monodit does not collect or store location information as a platform feature.

If a widget or browser permission flow requests location access, that access occurs within the context of that feature or your browser environment. monodit does not treat such location data as platform-level stored account data based on the current product design.

5. How We Use Information

We use personal information for the following purposes:

To create and manage accounts
To authenticate users and maintain sessions
To provide dashboard sync and related functionality
To provide, maintain, and improve the Service
To process subscriptions and manage billing
To provide customer support
To protect the security and integrity of the Service
To detect, prevent, and investigate abuse, fraud, and unauthorized access
To monitor performance, debug issues, and maintain reliability
To analyze usage and improve product features
To operate gallery-related submission, discovery, and moderation features
To provide AI-related features at your direction

6. Legal Bases for Processing

If you are located in the EEA, UK, or another jurisdiction that requires a legal basis for processing, we generally process personal information on the following bases:

Contract: where processing is necessary to provide the Service you requested
Legitimate interests: where processing is necessary for security, abuse prevention, product improvement, analytics, and service reliability
Consent: where required by law, including for certain optional features or activities
Legal obligation: where processing is necessary to comply with applicable law

7. AI Features

If you choose to use AI-related features:

Your configured API key may be stored in encrypted form on our servers
Requests may be sent to third-party AI providers you choose to connect to through the Service, including providers such as OpenAI, Anthropic, Google Gemini, and OpenRouter
We may collect technical metadata about AI operations, such as request success or failure and latency
We do not store prompts or generated outputs as part of our normal service-side data retention for AI operations

You are responsible for reviewing the privacy terms of any third-party AI provider you choose to use.

8. Cookies and Similar Technologies

We use cookies and similar technologies for core service functionality, including authentication, session management, security, and service operation.

We may also use limited analytics or diagnostic technologies to understand usage, improve the Service, and detect abuse.

We may share personal information in the following circumstances:

A. Service Providers and Infrastructure Partners

We may share information with vendors and service providers that help us operate the Service, such as:

Cloudflare
Authentication and email delivery providers
OAuth identity providers such as Google and GitHub
Lemon Squeezy for billing and subscription management
AI providers you choose to connect to through the Service

These parties may process personal information on our behalf or as independent controllers or processors depending on the nature of the service.

B. Public Content

If you submit content to a public gallery or similar public feature, certain information may become visible to others, including:

Submitted widget or theme content
Description and related metadata
Version information
Your chosen display name

Please do not submit information to public features that you do not want others to see.

C. Legal and Safety Reasons

We may disclose information if we believe doing so is necessary to:

Comply with law, regulation, legal process, or governmental request
Enforce our terms or policies
Protect the rights, property, or safety of monodit, our users, or others
Detect or respond to fraud, abuse, or security incidents

D. Business Transfers

If monodit is involved in a merger, acquisition, financing, reorganization, sale of assets, or similar transaction, personal information may be transferred as part of that transaction, subject to applicable law.

10. International Data Transfers

Because monodit serves a global audience and uses providers that may operate in multiple countries, your personal information may be processed in countries other than your own.

Where required by applicable law, we take appropriate steps to provide safeguards for cross-border transfers.

11. Data Retention

We retain personal information only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

In general:

Account information, workspace data, custom themes, custom widgets, uploaded assets, and gallery submissions are retained while your account remains active
If you delete your account, we will begin deletion of active account data and associated workspace data, generally within 30 days
Backup copies may persist for a limited period and are generally deleted on a rolling basis within 60 days
Session, authentication, and security logs may be retained for up to 90 days
Product analytics data may be retained for up to 12 months
Limited billing and subscription metadata may be retained for up to 5 years where needed for accounting, fraud prevention, dispute resolution, legal compliance, or recordkeeping

We may retain de-identified or aggregated information for longer where permitted by law.

12. Your Rights and Choices

Depending on your location, you may have rights regarding your personal information, including the right to:

Access the personal information we hold about you
Correct inaccurate information
Delete your information
Export certain data
Object to or restrict certain processing
Withdraw consent where processing is based on consent
Lodge a complaint with a supervisory authority or regulator

monodit provides data export functionality for certain categories of data, including workspace data, custom themes, and custom widgets.

Bucket or storage data export may not be self-service in all cases. If you need assistance with additional data export requests, you may contact support@monodit.com.

13. Account Deletion

monodit may provide self-service account deletion through the settings page. When you request account deletion, we will delete or de-identify personal information associated with your account, subject to limited retention needs for security, legal compliance, billing records, dispute resolution, and backups as described in this Policy.

14. Security

We use reasonable technical and organizational measures designed to protect personal information against unauthorized access, disclosure, alteration, and destruction.

These measures may include access controls, encryption for sensitive credentials such as stored AI provider API keys, logging, and platform-level security restrictions.

No method of transmission over the internet or method of storage is completely secure, and we cannot guarantee absolute security.

15. Third-Party Services

The Service may integrate with or link to third-party services. Their privacy practices are governed by their own policies, not this Privacy Policy.

We encourage you to review the privacy policies of third-party providers you use with monodit.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last Updated" date and may provide additional notice where required by law.

Your continued use of the Service after an updated Privacy Policy becomes effective means the updated Policy will apply, subject to applicable law.

17. Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our handling of personal information, contact support@monodit.com.

1. Who We Are​

2. Scope​

3. Children​

4. Information We Collect​

A. Account and Profile Information​

B. Service Data and User Content​

C. Billing and Subscription Information​

D. Automatically Collected Information​

E. AI Provider Information​

F. Location Information​

5. How We Use Information​

6. Legal Bases for Processing​

7. AI Features​

8. Cookies and Similar Technologies​

9. When We Share Information​

A. Service Providers and Infrastructure Partners​

B. Public Content​

C. Legal and Safety Reasons​

D. Business Transfers​

10. International Data Transfers​

11. Data Retention​

12. Your Rights and Choices​

13. Account Deletion​

14. Security​

15. Third-Party Services​

16. Changes to This Privacy Policy​

17. Contact Us​