Privacy Policy

Last updated: March 2026

MacroScope ("we," "our," or "us") operates the website macroscopeapp.com and related services. We are based in Sweden. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services, in accordance with the EU General Data Protection Regulation (GDPR) and applicable Swedish law.

1. Information We Collect

We collect information you provide directly to us when you create an account, subscribe to a plan, or contact us:

  • Account information: email address and password when you register
  • Payment information: processed securely through Stripe — we never store your full card details
  • Usage data: pages visited, features used, and interactions with our models and dashboards
  • Device information: browser type, operating system, and IP address collected automatically

2. Legal Basis for Processing

Under the GDPR, we process your personal data based on the following legal grounds:

  • Contract performance: to provide and manage your account and subscription
  • Legitimate interest: to improve our services, prevent fraud, and ensure platform security
  • Consent: for optional marketing communications — you may withdraw consent at any time
  • Legal obligation: to comply with applicable laws, tax requirements, and regulatory obligations

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and manage your subscription
  • Send you service-related communications and updates
  • Send marketing communications such as our Weekly Letter (only with your consent)
  • Respond to your inquiries and support requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect, prevent, and address technical issues or fraud

4. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your data only with the following categories of processors:

  • Payment processing: Stripe, to process subscription payments securely
  • Hosting & infrastructure: Vercel (hosting) and Supabase (authentication and database)
  • Analytics: we may use analytics services to understand usage patterns and improve the platform — any such services will be listed here when added
  • Legal requirements: when required by law, regulation, or legal process

All third-party processors are bound by data processing agreements and are required to handle your data in compliance with applicable data protection laws.

5. International Data Transfers

Some of our service providers (Stripe, Vercel, Supabase) are based in the United States. Where personal data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or the service provider's participation in recognized data transfer frameworks.

6. Data Security

We implement industry-standard security measures to protect your personal information. All data is transmitted over encrypted connections (TLS/SSL), passwords are hashed, and payment data is handled entirely by Stripe's PCI-compliant infrastructure. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

7. Cookies

We use essential cookies to maintain your session and preferences (such as authentication state and theme selection). These cookies are strictly necessary for the service to function and do not require consent under GDPR. We do not use third-party tracking cookies for advertising purposes. If we add analytics cookies in the future, we will update this policy and obtain your consent where required.

8. Data Retention

We retain your account information for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required to retain it for legal, tax, or regulatory purposes. Aggregated, anonymized data that cannot identify you may be retained indefinitely.

9. Your Rights Under GDPR

As a data subject under the GDPR, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — request correction of inaccurate or incomplete data
  • Erasure — request deletion of your personal data ("right to be forgotten")
  • Restriction — request that we limit processing of your data
  • Data portability — receive your data in a structured, machine-readable format
  • Objection — object to processing based on legitimate interest
  • Withdraw consent — withdraw consent for marketing communications at any time

To exercise any of these rights, please contact us at support@macroscopeapp.com. We will respond within 30 days. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY) if you believe your data rights have been violated.

10. Age Requirement

MacroScope is intended for users aged 18 and older. We do not knowingly collect personal data from individuals under 18. If we become aware that we have collected data from a person under 18, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date and, where appropriate, by email. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please reach out at support@macroscopeapp.com or visit our contact page.