This Privacy Policy explains how Peer Assembly Ltd ("we," "us," "our") collects, uses, discloses, and protects information when you use Markdown Vault (the "Service").
We may collect account information such as name, email address, password hash, and account settings.
We may collect user content such as markdown files, notes, uploads, and collaboration content you create or store.
We may collect usage data such as log data, browser type, device information, pages and features used, timestamps, and referring URLs.
We may collect technical data such as IP address, cookie identifiers, session data, diagnostics, and crash or error logs.
For paid plans, we may collect billing data such as subscription status, billing address, and transaction metadata. Payment card details are generally processed by our payment provider, not stored by us.
We use personal information to provide, operate, and maintain the Service.
We use personal information to authenticate users and secure accounts.
We use personal information to store, sync, and display user content.
We use personal information to process subscriptions and payments.
We use personal information to communicate service-related notices, such as updates, security alerts, and billing notices.
We use personal information to improve performance, reliability, and user experience.
We use personal information to detect, prevent, and investigate abuse, fraud, and security incidents.
We use personal information to comply with legal obligations.
Where required, we process personal data under these legal bases: performance of a contract, legitimate interests such as security analytics and product improvement, consent where required, and compliance with legal obligations.
We use cookies and similar technologies for authentication and session management, security and fraud prevention, preferences and functionality, and analytics.
You can control cookies via browser settings and, where applicable, consent tools. Some essential cookies are required for core Service functionality.
We may share information with service providers and processors such as hosting, infrastructure, analytics, email delivery, customer support, and payment processors under contractual safeguards.
We may share information with collaboration recipients when you intentionally share content or workspaces.
We may share information for legal and compliance reasons when required by law, regulation, legal process, or to protect rights, safety, and security.
We may share information with business transferees in connection with mergers, acquisitions, financing, or asset sales.
We do not sell personal information in the traditional sense of exchanging it for money.
We retain personal information for as long as needed to provide the Service, meet legal and accounting obligations, resolve disputes, and enforce agreements.
Retention periods vary by data type and purpose. You may request deletion of your account, subject to lawful exceptions.
We use reasonable technical and organizational safeguards designed to protect personal information. No system is 100 percent secure, and we cannot guarantee absolute security.
If information is transferred across borders, we use appropriate safeguards as required by applicable law, such as contractual protections.
Depending on your location, you may have rights to access personal information, correct inaccurate information, delete personal information, restrict or object to certain processing, request data portability, withdraw consent where processing is based on consent, appeal certain privacy decisions, and opt out of targeted advertising or sale or share where applicable.
To exercise rights, contact us at [[email protected]]. We may need to verify your identity.
Residents of certain U.S. states may have specific rights regarding access, deletion, correction, portability, and opt-out of certain processing. We will not discriminate for exercising applicable privacy rights.
The Service is not directed to children under 13 or other applicable minimum age. We do not knowingly collect personal information from children under that age. If you believe a child has provided personal data, contact us so we can delete it.
The Service may link to or integrate with third-party services. Their privacy practices are governed by their own policies, not this one.
We may update this Privacy Policy from time to time. If changes are material, we will provide notice, such as website notice or email. The Effective Date will indicate the latest version.
For privacy questions or requests:
Markdown Vault
Effective Date: May 1, 2026