Back

Privacy Policy

Last updated: February 23, 2026

1. Introduction

RoundupHero ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at rounduphero.com.

By using RoundupHero, you agree to the collection and use of information in accordance with this policy.

Data Controller

RoundupHero is operated by:

Quoleady OÜ
Registration code: 16433296
VAT: EE102498918
Vesivärava tn 50-201, Kesklinna linnaosa
Tallinn, Harju maakond, 10152, Estonia

2. Information We Collect

2.1 Information You Provide
  • Account Information: Name, email address, and profile photo when you register
  • LinkedIn Data: When you sign in with LinkedIn, we receive your name, email, and profile URL. We may also access your LinkedIn profile to verify your professional identity.
  • Profile Information: Job title, company, bio, location, and professional expertise categories
  • Content: Roundups you create, expert quotes you submit, and communications within the platform
  • Payment Information: When you subscribe to a paid plan, payment is processed by Stripe. We do not store your full credit card details.
2.2 Information Collected Automatically
  • Usage Data: Pages visited, features used, and interactions with the platform
  • Device Information: Browser type, operating system, and device identifiers
  • Log Data: IP address, access times, and referring URLs

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the RoundupHero platform
  • Process your account registration and manage your profile
  • Enable the creation and management of expert roundups
  • Facilitate connections between roundup authors and experts
  • Send you transactional emails (invitations, notifications, confirmations)
  • Process payments and manage subscriptions
  • Verify professional identities through LinkedIn
  • Respond to your inquiries and provide customer support
  • Detect and prevent fraud, abuse, and security issues
  • Comply with legal obligations

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

  • Contract Performance: Processing necessary to provide our services to you
  • Legitimate Interests: Improving our platform, preventing fraud, and ensuring security
  • Consent: Where you have given explicit consent for specific processing
  • Legal Compliance: Processing required by applicable laws

5. Information Sharing

We may share your information with:

  • Other Users: Your profile information and submitted content may be visible to other platform users as part of the roundup process
  • Service Providers:
    • Stripe (payment processing)
    • SendPulse (email delivery)
    • Amazon Web Services (cloud storage and hosting)
    • LinkedIn (authentication and profile verification)
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

6. Cookies and Similar Technologies

We use cookies and similar technologies to operate our platform:

6.1 Essential Cookies (Required)

These cookies are necessary for the platform to function and cannot be disabled:

  • Session Cookie: Maintains your login state and preferences during your visit. Expires after 24 hours of inactivity or when you close your browser.
  • Remember Me Cookie: If you choose to stay logged in, this cookie keeps you authenticated for up to 30 days.
  • CSRF Token: Protects against cross-site request forgery attacks.
6.2 Third-Party Cookies
  • Stripe: When you make a payment, Stripe may set cookies to process transactions securely and prevent fraud.
  • LinkedIn: During LinkedIn authentication, LinkedIn may set cookies on their domain.
6.3 What We Don't Use

We do not use:

  • Advertising or marketing cookies
  • Third-party analytics or tracking cookies
  • Social media tracking pixels

You can manage cookies through your browser settings. Note that disabling essential cookies may prevent you from using certain features of the platform.

7. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes described in this policy:

  • Account Data: Retained while your account is active and for a reasonable period afterward
  • Roundup Content: Published roundups and quotes are retained indefinitely unless deleted
  • Transaction Records: Retained for 7 years for tax and legal compliance
  • Log Data: Retained for up to 1 year for security and debugging purposes

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Secure password hashing
  • Regular security assessments
  • Access controls and authentication
  • Secure cloud infrastructure (AWS)

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

9. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Data Portability: Request a machine-readable copy of your data
  • Objection: Object to certain processing of your data
  • Restriction: Request limitation of processing
  • Withdraw Consent: Withdraw previously given consent

To exercise these rights, please visit your Account Settings or contact us.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses where required.

11. Children's Privacy

RoundupHero is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the platform after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us.