AnySlate - Modern Markdown Editor

Privacy Policy

Your privacy is our priority. AnySlate is built with a privacy-first approach.

Last updated: November 22, 2026

Information We Collect

AnySlate collects minimal data: account information (email, name, encrypted password), payment information processed by Stripe (we only store last 4 digits), optional usage data (anonymous, opt-in only), and communication data (support emails, feedback). Importantly, we collect NO document data - all documents are stored locally on your device.

Data Storage and Security

Account data is stored on US-based servers (AWS, SOC 2 certified) with AES-256 encryption at rest and TLS 1.3 in transit. Document data is stored ONLY on your device - we have zero access. Security measures include bcrypt password hashing, regular security audits, and vulnerability scanning.

No Tracking

We do not use analytics, tracking cookies, or any third-party services that collect your personal information by default. Optional usage data is anonymous and opt-in only. Your writing sessions are completely private.

Your Rights

You have full control over your data. GDPR rights include access, rectification, erasure, data portability, and right to object. CCPA rights include right to know, delete, and opt-out. Email [email protected] to exercise your rights.

Data Sharing

We only share data with payment processor (Stripe) for necessary payment processing, service providers for transactional emails and support, and legal requirements when legally required. We NEVER sell data to advertisers, data brokers, or marketing companies.

Data Retention

Account data is retained for duration of subscription + 3 years. Payment data is retained for tax compliance (7 years). Support data is retained until issue resolution + 2 years. Inactive accounts are deactivated after 3 years with 30-day reactivation window.

Security Measures

We implement industry-standard security: AES-256 encryption for data at rest, TLS 1.3 for data in transit, bcrypt password hashing, regular security audits, vulnerability scanning, limited employee access, and incident response plans.

Changes to Privacy Policy

We may update this privacy policy from time to time. Major changes include email notification + 30-day notice. Minor changes are website updates only. You can review version history on our website. Last updated: November 7, 2026.

Children's Privacy

Age Requirement: 13 years or older

We do not knowingly collect data from children under 13. If we learn a child created an account, we immediately delete it and notify parents/guardians. Contact [email protected] if your child created an account.

International Transfers

Data is primarily stored on US-based servers. EU users benefit from Standard Contractual Clauses (SCCs) and GDPR-compliant transfers. By using AnySlate, you consent to data transfer to the US with the same privacy protections.

Compliance

AnySlate is compliant with:

  • GDPR - Full data portability, right to erasure, transparent data handling
  • CCPA - California privacy rights respected, no sale of personal information
  • PCI DSS - Stripe handles all payments, we never store card details

Questions About Privacy?

If you have any questions or concerns about our privacy policy, feel free to reach out.

Privacy TeamContact Us

We typically respond within 24-48 hours.

← Back to Home