Privacy Policy

1. Introduction

Proofling is operated by Jake Baden North trading as Donkeh Labs (ABN 87 636 703 254). This Privacy Policy explains how we collect, use, disclose, and protect information when you use Proofling.

Proofling helps businesses ask for testimonials privately, capture responses and consent, approve proof cards, publish proof walls, and share individual testimonials.

2. Information We Collect

• Account information such as name, email address, avatar, organization name, and authentication provider details.
• Workspace and campaign information such as product names, websites, proof wall settings, email copy, labels, sending state, and subscription status.
• Customer contact information you provide, such as recipient names, email addresses, company details, and campaign membership.
• Testimonial content such as responses, consent state, proof card approval state, public proof wall content, and public testimonial share pages.
• Integration data such as Stripe account metadata, selected products or prices, event metadata, scheduling state, and encrypted restricted API keys where you choose to connect Stripe automation.
• Billing information processed by Stripe, such as subscription, invoice, checkout, and payment status metadata. Proofling does not store full card numbers.
• Technical information such as IP address, browser, device, logs, error reports, cookies, and usage events needed to operate, secure, and improve the Service.
• Support communications you send to us.

3. How We Use Information

• Provide, maintain, secure, and improve Proofling.
• Authenticate users and manage workspaces.
• Send testimonial requests, follow-ups, response links, opt-out links, and account emails.
• Capture and display testimonial responses, consent, proof cards, proof walls, and share pages.
• Operate Stripe-triggered testimonial automation when enabled by a workspace.
• Process billing, subscriptions, invoices, plan access, and usage limits.
• Respond to support requests and troubleshoot product issues.
• Detect fraud, abuse, security incidents, bounced emails, complaints, and unsubscribes.
• Comply with legal obligations and enforce our Terms.

4. Public Content

Proofling keeps responses private until a workspace user approves them for publication. Once approved, proof walls and testimonial share pages are public and may be indexed, shared, embedded, previewed, or viewed by others.

Do not publish testimonial content unless you have the right consent and the content is accurate and not misleading.

5. Customer Recipients

If a business uses Proofling to contact you, we process your contact details and response on behalf of that business. You may use the opt-out or unsubscribe options in Proofling emails where available, or contact the business that sent the request.

You can also contact support@proofling.com if you need help locating or removing a Proofling request or published testimonial.

6. Third-Party Services

We use trusted service providers to operate Proofling. These providers may process information only as needed to provide their services to us.

• Supabase for authentication, database, and storage infrastructure.
• Vercel for website and application hosting.
• Stripe for billing, checkout, subscriptions, and optional Stripe automation metadata.
• Resend or other email infrastructure for sending product and testimonial request emails.
• Google and GitHub for OAuth login when you choose those sign-in methods.
• Error monitoring, logging, analytics, or support tools where enabled to operate and improve the Service.

7. Cross-Border Disclosure

Proofling is operated from Australia, but service providers may process information in Australia, the United States, the European Union, and other locations where they or their infrastructure operate.

We take reasonable steps to use providers that maintain appropriate security and privacy protections.

8. Security

We use technical and organizational safeguards such as HTTPS, authentication, access controls, encryption at rest where supported, encrypted integration secrets, and provider security controls.

No internet service is perfectly secure. You are responsible for keeping your account credentials safe and for limiting workspace access to trusted people.

9. Data Retention

We retain account, workspace, customer, campaign, testimonial, billing, and integration records while needed to provide Proofling, comply with legal obligations, resolve disputes, prevent abuse, and maintain business records.

You may request deletion of account or workspace data by contacting support@proofling.com. Some records may be retained where required for security, billing, legal, tax, or audit reasons.

10. Cookies and Similar Technologies

Proofling uses cookies and similar technologies for authentication, security, preferences, CSRF protection, and product operation. Some third-party services may also use cookies as part of authentication, billing, or abuse prevention.

11. Your Rights

Depending on your location, you may have rights to access, correct, delete, export, restrict, or object to the processing of your personal information.

To exercise privacy rights, contact support@proofling.com. We may need to verify your identity and, for customer recipient data, may direct you to the business that controls the campaign.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised effective date. Material changes may also be notified through the Service or by email.

13. Contact

Questions should be directed to support@proofling.com or Jake Baden North trading as Donkeh Labs (ABN 87 636 703 254), Adelaide, SA 5157, Australia.