Privacy Policy

This Privacy Policy explains how Actuably handles personal data when you use our website, calculators, resources, self-service tools, account features, billing flows, and support channels.

It is written for a Europe-first privacy standard and is intended to remain practical for users in other jurisdictions. If local law gives you stronger rights, those rights continue to apply.

The operator of Actuably is the controller for personal data processing described in this policy where we decide why and how that data is processed, unless a separate agreement or feature notice says otherwise.

Some providers may act as processors for Actuably, and some providers may act as independent controllers for their own legal or service obligations, as described below.

You can contact Actuably through the contact page or the support links in account settings for privacy questions, access requests, correction requests, deletion requests, or objections.

Contact data: when you contact us, we process the details you provide, such as name, company, business email, country, phone number, reason for contact, and message content.

Account data: if account features are enabled, we process sign-in details, account identifiers, profile information, authentication events, and account settings such as notification, product, and privacy preferences.

Billing data: if paid plans are enabled, we process subscription status, plan information, billing identifiers, payment-provider references, and related records needed to manage access and billing.

Technical and security data: we process limited technical data such as request metadata, IP-derived rate-limit data, security events, page paths, device or browser data, and error or performance signals needed to run and protect Actuably.

Calculator data: calculator inputs are generally processed in your browser for the live calculator experience. We do not intentionally store calculator inputs on our servers unless a feature clearly says so, you save them through an account feature, or you send them to us in a contact or support request.

We process personal data to provide and secure Actuably, respond to requests, manage accounts, operate subscriptions, maintain records, improve performance, and comply with legal obligations.

Under GDPR, our legal bases may include performance of a contract, steps before entering into a contract, legitimate interests, consent, and legal obligations, depending on the feature and context.

Where consent is required for a specific use, such as certain marketing, research contact, or non-essential tracking, you can withdraw that consent without affecting processing that was lawful before withdrawal.

Actuably uses limited browser storage for functionality, such as remembering your theme preference.

If authentication, billing, or security features are enabled, those providers may use cookies or similar technologies needed for sign-in, fraud prevention, checkout, or reliability.

If analytics or performance monitoring is enabled, it is limited to operational and aggregate measurement. We do not use those tools to intentionally capture calculator inputs, contact-message contents, passwords, payment-card details, or authentication secrets.

We do not use browser storage to silently persist calculator inputs by default. Where local law requires consent for non-essential cookies or similar technologies, we ask for consent or provide an appropriate control.

Where analytics or performance monitoring is enabled, we use it to understand page performance, reliability, and aggregate usage patterns.

We minimize analytics data where practical. For example, pageview URLs are reduced to paths so query strings and fragments are not sent through the analytics event path.

The current monitoring integration is only rendered in production Vercel deployments.

We share personal data only where needed to operate Actuably, such as with hosting, monitoring, authentication, database, email, and payment providers.

These providers process data for limited service purposes. If we enable a provider that acts as an independent controller, such as a payment processor for checkout, that provider may also process data under its own legal obligations.

We may disclose data if required by law, to protect the service or users, or in connection with a business transfer, subject to applicable safeguards.

Some service providers may process personal data outside your country, including outside the European Economic Area, the United Kingdom, or Switzerland.

Where required, we use appropriate safeguards such as adequacy decisions, standard contractual clauses, contractual controls, or other lawful transfer mechanisms.

We keep personal data only for as long as needed for the purposes described in this policy, including service delivery, security, legal compliance, dispute handling, and accounting.

Account and subscription records are kept while your account or subscription is active and for a reasonable period afterward where required. Contact and support messages are kept as long as needed to handle the request and maintain ordinary business records. Application security-event records are designed to be removed after about 30 days, and rate-limit records after they expire, unless needed for investigation or legal reasons.

Depending on where you are, you may have rights to access, correct, delete, restrict, export, or object to the processing of your personal data.

Where processing is based on consent, you may withdraw consent. Where processing is based on legitimate interests, you may object and we will assess the request under applicable law.

If you are in the European Economic Area, the United Kingdom, or Switzerland, you also have the right to complain to your local data protection authority.

We use technical and organizational measures designed to protect personal data, including access controls, security headers, request safeguards, rate limits, and sensitive-log minimization.

No online service can be guaranteed to be perfectly secure. You are responsible for keeping your own account credentials secure and for avoiding unnecessary confidential information in free-text contact or support messages.

Actuably is designed for professional and educational use by adults. It is not directed to children, and we do not knowingly collect personal data from children.

We may update this Privacy Policy when Actuably, data practices, providers, or legal requirements change.

The updated date at the top of the page shows when this policy was last changed. If a change materially affects active account or paid users, we will take reasonable steps to make the change visible.