Open Factory Ledger Privacy Policy

Effective date: 2026-04-19

This Privacy Policy explains how Open Factory Ledger handles personal data.

Data We Collect

• Self-reported revenue entries: product slug, MRR amount, source label, date, and idempotency key.
• Usage logs: product events, timestamps, route names, status codes, error logs, user agent strings, and operational metadata.
• IP hash: if enabled, a one-way hash of IP address plus salt for abuse prevention, security review, and debugging.
• Email address: only if you contact us, subscribe to updates, or if accounts are added later.
• Analytics: none by default; privacy-preserving analytics may be added later.

Purposes

We use data to operate the public dashboard, publish weekly updates, keep self-reported revenue entries consistent, prevent abuse, debug errors, secure the product, honor requests, and understand aggregate product usage if analytics are added.

Legal Bases

For GDPR purposes, we rely on Article 6(1)(b) contract where processing is needed to provide requested access, submissions, updates, or support. We rely on Article 6(1)(f) legitimate interest for security, fraud prevention, debugging, service analytics, rate limiting, and reliability work. Where consent is required, such as some marketing or cookie uses, we will request consent.

Processors

Open Factory Ledger may use these processors:

• Hosting infrastructure for app hosting, logs, storage, and backups.
• Privacy-preserving analytics if added.

Processor lists may change as the product matures. We choose processors that support reasonable security and data-processing terms.

Retention

Open Factory Ledger retains self-reported revenue entries only, plus operational logs needed to run, secure, debug, and back up the service. If analytics are added, analytics retention will be documented before collection begins.

User Rights

Depending on your location, you may request access, deletion, correction, export, restriction, objection, or unsubscribe. California residents may also request information about categories of personal information collected, purposes, sources, and disclosures. We do not sell personal information. For requests, contact @publicmargin until a product support email is configured.

International Transfers

Open Factory Ledger and processors may operate in countries other than yours. Where required, transfers should use appropriate safeguards such as data-processing agreements or standard contractual clauses.

Children

Open Factory Ledger is not directed to children under 13, and we do not knowingly collect personal data from children.

Cookies and Local Storage

Open Factory Ledger may use essential cookies or local storage for security, admin access, abuse controls, and user preferences. If analytics are added, we will keep them privacy-preserving where practical and update this policy.

Contact

Privacy requests: contact @publicmargin until a product support email is configured.