Privacy Policy

At Benjar, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (benjar.org), dashboard (app.benjar.org), and API services (collectively, the "Service").

By using the Service, you consent to the data practices described in this policy. If you do not agree, please discontinue use of the Service.

1. Information We Collect

1.1 Information You Provide

When you create an account or interact with the Service, we may collect:

Account information: Name, email address, and password
Billing information: Payment method details (processed and stored securely by Dodo Payments; we do not store full credit card numbers)
Communications: Emails or messages you send to us

1.2 Information Collected Automatically

When you use the Service, we automatically collect:

Usage data: API endpoints called, credit consumption, request timestamps, and response status codes
Device and browser data: IP address, browser type and version, operating system, and device identifiers
Cookies and similar technologies: Session cookies for authentication and preferences (see Section 7)

2. How We Use Your Information

We use the information we collect for the following purposes:

Purpose	Data Used
Provide and maintain the Service	Account info, usage data
Process payments and manage subscriptions	Billing info, account info
Track credit usage and enforce plan limits	Usage data, account info
Send transactional notifications (billing, security)	Email address
Respond to support requests	Communications, account info
Improve the Service and develop new features	Usage data, device data
Prevent fraud and enforce our Terms	IP address, usage data, device data
Comply with legal obligations	All data as required

We do not sell your personal information to third parties. We do not use your data for targeted advertising.

3. Third-Party Service Providers

We share your information only with trusted third parties who assist in operating the Service:

Provider	Purpose	Data Shared
Dodo Payments	Payment processing (Merchant of Record)	Billing details, email, transaction amounts
Resend	Transactional email delivery	Email address, email content

These providers are contractually required to protect your data and use it only for the services they provide to us. We do not share your data with any advertising or marketing third parties.

4. Data Retention

We retain your data for as long as necessary to provide the Service and fulfil the purposes described in this policy:

Account data: Retained as long as your account is active. Deleted within 30 days of account deletion request.
Usage and API logs: Retained for up to 12 months for analytics and debugging, then anonymised or deleted.
Billing records: Retained for up to 7 years as required by applicable tax and financial regulations.
Support communications: Retained for up to 24 months after resolution.

5. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate or incomplete data
Deletion: Request deletion of your personal data (subject to legal retention requirements)
Portability: Request your data in a structured, machine-readable format
Objection: Object to processing of your data for specific purposes
Withdraw consent: Where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact us at hello@benjar.org. We will respond within 30 days.

6. Data Security

We implement industry-standard security measures to protect your data:

Encryption in transit: All data transmitted between your browser/application and our servers is encrypted using TLS 1.2 or higher
Encryption at rest: Sensitive data is encrypted at rest using AES-256 encryption
API key security: API keys are hashed and stored securely; they cannot be retrieved in plain text after creation
Access controls: Internal access to user data is restricted to authorised personnel only
Secure payment handling: Payment data is handled entirely by Dodo Payments; we never store full credit card numbers

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

7. Cookies

We use cookies and similar technologies for the following purposes:

Essential cookies: Required for authentication and session management. Cannot be disabled.
Preference cookies: Store your display preferences (e.g., theme settings).

We do not use advertising or tracking cookies. We do not use third-party analytics cookies that track you across other websites.

8. Children's Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will take steps to delete that information promptly.

9. International Data Transfers

Your data may be processed in countries other than your own. We ensure that appropriate safeguards are in place to protect your data in compliance with applicable data protection laws.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. For material changes, we will notify you by email or through the dashboard. Continued use of the Service after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: hello@benjar.org
Website: benjar.org