Privacy Policy

Last updated: March 19, 2026

1. Introduction

MerchMuse ("we", "our", "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Name (if provided)
  • Authentication data through our identity provider (Clerk)

Usage Data

We automatically collect:

  • Design images you upload for listing generation
  • Generated listings and your edits
  • Credit usage and subscription history
  • Device information and IP address
  • Usage patterns and feature interactions

Payment Information

Payment processing is handled by Polar. We do not store your full credit card information on our servers. Polar's privacy policy governs their handling of payment data.

3. How We Use Your Information

We use your information to:

  • Provide and improve the Service
  • Generate AI-powered listings from your designs
  • Process payments and manage subscriptions
  • Send service-related communications
  • Detect and prevent fraud or abuse
  • Analyze usage patterns to improve features

4. Data Storage and Security

Your data is stored on Cloudflare's infrastructure with encryption at rest and in transit. Design images are stored in secure cloud storage (Cloudflare R2). We implement industry-standard security measures to protect your data.

5. Data Retention

  • Account data is retained while your account is active
  • Design images and listings are retained until you delete them or close your account
  • Usage logs are retained for up to 90 days
  • Payment records are retained as required by law

6. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your designs and listings
  • Opt out of marketing communications

7. Third-Party Services

We use the following third-party services:

  • Clerk - Authentication and user management
  • Polar - Payment processing
  • OpenAI - AI listing generation
  • Cloudflare - Hosting and infrastructure

Each service has its own privacy policy governing their data practices.

8. AI Processing

When you upload a design, it is processed by AI systems to generate listings. Your images may be temporarily processed by OpenAI's vision models. We do not use your designs to train AI models without explicit consent.

9. Cookies

We use essential cookies for authentication and session management in the app. On the public landing site and in the web app, we ask for consent before enabling PostHog analytics cookies. If you decline analytics cookies, we may still use privacy-preserving cookieless audience measurement with no browser storage. We do not use advertising or third-party tracking cookies.

Your analytics cookie choice is respected across our first-party site and app subdomains, and you can change it at any time through the Cookie Settings control in the site footer.

10. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

11. International Data Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place for international transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service.

13. Contact Us

For privacy-related questions or to exercise your rights, contact us at:

Email: privacy@merchmuse.art