Privacy Policy

Last Updated: April 2026

1. Information We Collect

When you purchase or interact with our Next.js boilerplate, we collect only the basic information needed to securely manage your account and deliver the codebase. This includes your authenticated email address and order history. We do not track your hidden behavioral data or sell your personal information to third parties.

2. Payment Security

All financial transactions are processed explicitly through Stripe via their secure, PCI-compliant checkout infrastructure. We do not store, proxy, or ever have access to your raw credit card details within our database.

3. Cookies & Authentication

We use NextAuth.js to maintain secure, verified sessions when you log in. This utilizes encrypted, HTTP-only cookies to keep your account safe. These cookies automatically expire when you log out or after a period of inactivity, protecting you from cross-site scripting (XSS) attacks.