Privacy Policy & Data Processing

We collect only the data necessary to ensure high-velocity delivery. Your subscriber lists are your proprietary asset; we act solely as a Data Processor.

GDPR Compliant CCPA Ready Encrypted at Rest

01 // Data Collection

When you initialize a Workspace on The B.R.A.T. Shoppe, we collect specific information to authenticate your entity and authorize high-volume transmission.

  • Identity Data Corporate email, entity legal name, and physical business address for invoice generation.
  • Technical Data Originating IP addresses, API Key usage logs, and browser User-Agent strings for security auditing.
  • Transactional Metadata Recipient email addresses, subject lines, and delivery timestamps required for routing.
  • Payment Data Last 4 digits of credit card and billing history (Processed via Stripe, we do not store full PAN).

02 // Usage Protocols

We use your data strictly to facilitate the API transmission service. We do not sell, rent, or monetize your subscriber lists.

To route transactional alerts via optimized server paths.
To prevent fraud and detect compromised API keys.
To generate delivery reports (bounces, delivered, opened).

03 // Trusted Infrastructure

To maintain 99.99% uptime, we utilize a select group of sub-processors. All transfers are protected by DPA (Data Processing Agreements).

Partner Function Location
AWS / Google Cloud Cloud Hosting & Storage USA / EU (Selectable)
Stripe Payment Processing Global
Zendesk Technical Support Tickets USA

04 // Data Retention

We maintain a minimal data footprint to reduce liability.

30 Days

Message Content

Body and attachments are automatically purged.

90 Days

Log Meta-Data

Headers and routing logs kept for troubleshooting.

Upon account termination, all personal data is scheduled for hard deletion within 90 days, compliant with GDPR "Right to Erasure".