Legal

Privacy Policy

Last updated: May 26, 2026 · Effective immediately

      🔒 Short version: Your shop data stays under your control. We collect only what is needed to run the service. We never sell your data.
    

This Privacy Policy explains how Sicada ("we", "our", "us"), operated by Nazih Annous, Tbilisi, Georgia, collects, uses, and protects your personal information when you use our service at sicada.app.

1. Information We Collect

Account information: When you register, we collect your name and email address.

Business data: Products, sales records, inventory, and settings you enter into the app.

Payment information: We do not store your card details. Payments are processed by Paddle, who handles all payment data securely.

Usage data: Basic technical information such as your browser type, IP address, and pages visited, used to maintain and improve the service.

2. How We Use Your Information

To provide and operate the Sicada service
To authenticate your account and keep it secure
To process subscription payments through Paddle
To send important service notifications and updates
To respond to your support requests
To improve the service based on usage patterns

3. Data Storage

Your data is stored securely on servers hosted by Railway (railway.app) in the United States. We use PostgreSQL for database storage. All connections are encrypted using TLS/SSL.

Your shop's product, sales, and settings data belongs to you. We do not access it except for technical support purposes when explicitly requested.

4. Third-Party Services

We use the following third-party services:

Paddle (paddle.com) — Payment processing and subscription management
Railway (railway.app) — Cloud hosting and infrastructure
Resend (resend.com) — Transactional email delivery

Each of these providers has their own privacy policy and security practices. We share only the minimum data necessary for them to operate.

5. Cookies

Sicada uses session cookies to keep you logged in and remember your language preference. We do not use advertising or tracking cookies. You can disable cookies in your browser settings, though this may affect the functionality of the app.

6. Data Retention

We retain your account data for as long as your account is active. If you delete your account, your personal data will be removed within 30 days. Anonymised, aggregated data may be retained for analytical purposes.

7. Your Rights

You have the right to:

Access the personal data we hold about you
Correct inaccurate or incomplete data
Delete your account and associated data
Export your data in a portable format
Object to certain types of processing

To exercise any of these rights, contact us at [email protected].

8. Data Security

We implement industry-standard security measures including encrypted connections (HTTPS), hashed passwords, and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

9. Children's Privacy

Sicada is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via an in-app notice. The updated policy will be effective from the date of publication on this page.

11. Contact Us

For any privacy-related questions or requests, please contact:

Nazih Annous
Sicada
Tbilisi, Georgia
[email protected]

This policy applies to all users of sicada.app and its associated services.