Project Echo homeBack to home

Privacy Policy

Effective date: May 25, 2026

1. Introduction

Project Echo (“Project Echo,” “we,” “us,” or “our”) provides a feedback, roadmap, and changelog platform for teams. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our websites, applications, and related services (collectively, the “Services”).

By using the Services, you agree to this Privacy Policy. If you do not agree, please do not use the Services.

2. Information we collect

2.1 Information you provide

  • Account data: such as your name, email address, organization name, and password or authentication details when you register or sign in (including when you use third-party sign-in such as Google).
  • Content you submit: feedback, requests, comments, votes, attachments, roadmap items, changelog entries, and similar content you or your end users provide through the Services.
  • Communications: messages you send to us (for example, support requests) and your preferences where you provide them.

2.2 Information collected automatically

  • Usage and device data: such as IP address, browser type, operating system, referring URLs, pages viewed, and dates and times of access.
  • Cookies and similar technologies: we and our service providers may use cookies, local storage, and similar technologies to operate the Services, remember preferences, and understand usage patterns.

3. How we use information

We use the information we collect to:

  • Provide, operate, maintain, and improve the Services;
  • Create and manage accounts, authenticate users, and process transactions;
  • Communicate with you about the Services, security updates, and administrative messages;
  • Respond to inquiries and provide customer support;
  • Monitor and analyze trends, usage, and activities in connection with the Services;
  • Detect, investigate, and help prevent security incidents, fraud, and abuse;
  • Comply with legal obligations and enforce our terms and policies.

4. Legal bases (EEA, UK, Switzerland)

Where applicable data protection laws require a legal basis, we rely on: (a) performance of a contract with you; (b) our legitimate interests that are not overridden by your rights (such as securing and improving the Services); (c) your consent where required; and (d) compliance with legal obligations.

5. How we share information

We do not sell your personal information. We may share information with the following categories of recipients:

  • Service providers who process data on our behalf to host the Services, provide authentication, databases, email delivery, analytics, customer support tools, and security monitoring. Examples may include cloud hosting providers and authentication vendors.
  • Your organization if you use the Services under a team or company account, administrators may access usage and content in accordance with your organization’s settings.
  • Professional advisors such as lawyers and accountants, where necessary.
  • Authorities when required by law, legal process, or to protect the rights, privacy, safety, or property of Project Echo, our users, or others.
  • Business transfers in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate confidentiality and data protection commitments.

6. International transfers

We may process and store information in the United States and other countries where we or our service providers operate. These countries may have data protection laws that differ from those in your country. Where required, we use appropriate safeguards (such as standard contractual clauses approved by relevant regulators) for cross-border transfers.

7. Data retention

We retain information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods may vary depending on the nature of the data and your relationship with us.

8. Security

We implement technical and organizational measures designed to protect information against unauthorized access, loss, or alteration. No method of transmission over the Internet or electronic storage is completely secure; we cannot guarantee absolute security.

9. Your rights and choices

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal information, to object to certain processing, to data portability, and to withdraw consent where processing is based on consent. You may also have the right to lodge a complaint with a supervisory authority.

To exercise these rights, contact us using the details below. We may need to verify your identity before fulfilling your request.

10. Children

The Services are not directed to children under 16 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete it.

11. Third-party links and services

The Services may contain links to third-party websites or integrate with third-party services (such as single sign-on providers). This Privacy Policy does not apply to those third parties. We encourage you to read their privacy policies.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the effective date. Where changes are material, we will provide additional notice as required by law.

13. Contact us

If you have questions about this Privacy Policy or our privacy practices, contact us at privacy@projectecho.io.