Legal

Privacy Notice

Last updated: 19 April 2026

1. Who we are

The Atlanta Folio is operated by Brandon Tucker ("we," "us"), a sole proprietor based in Georgia, USA. We are the data controller for the personal data we collect about you in connection with the Service.

2. What we collect

  • Account data: email address, hashed password, account creation date.
  • Usage data: the favorites you save, the entries you view (aggregated), and the device and browser information needed for the Service to function (e.g., IP address).
  • Membership data: a record that you've made the lifetime purchase, including the Paddle customer and transaction identifiers needed to honor your access and process refunds.
  • Support communications: any messages you send us.

Payment data (card details, billing address) is collected and processed entirely by Paddle.com. We do not see or store your payment card details.

3. Why we use it

  • To create and operate your account (contract performance).
  • To deliver the Service and your saved favorites (contract performance).
  • To verify and honor your membership (contract performance).
  • To prevent fraud and keep the Service secure (legitimate interest).
  • To respond to your support requests (legitimate interest).
  • To comply with legal obligations (legal obligation).

4. Who we share it with

  • Paddle.com — our Merchant of Record for sales, billing, tax compliance, refunds, and invoicing.
  • Hosting & backend providers (Lovable Cloud, Supabase) — to store account data and serve the Service.
  • Professional advisers (legal, accounting) where necessary.
  • Authorities where required by law.

5. International transfers

Some of our service providers process data in the United States. Where your data is transferred internationally, we rely on standard contractual clauses or equivalent safeguards.

6. Data retention

We retain your account data for as long as your account is active and for a reasonable period afterward to honor your lifetime access and handle any refund or support requests. Membership records are kept for as long as legally required for tax and accounting purposes (typically 7 years). When data is no longer needed, we delete or anonymize it.

7. Your rights

You have the right to access, correct, delete, or restrict the processing of your personal data; to object to processing; to data portability; and, where applicable, to withdraw consent or lodge a complaint with your local data protection authority. To exercise any of these rights, contact us at Brandon.r.tucker@gmail.com. We will respond within one month.

8. Security

We use appropriate technical and organisational measures to protect your data, including encryption in transit, access controls, and row-level security on our database.

9. Cookies

We use only essential cookies and local storage required to keep you signed in and to operate the Service. We do not use marketing or third-party tracking cookies.

10. Contact

Questions about this notice or your data? Reach us at Brandon.r.tucker@gmail.com.