1. What we collect
Account data: name, email, avatar, and OAuth identity provider (currently Google) when you sign in. We do not collect a password because we do not have one.
Content data: pages, PageSpecs, Markdown, uploaded assets, custom hostnames, and webhook URLs that you create. We store these to render and deliver them on your behalf.
Usage data: page view events (referrer, country, user-agent class), API request metadata (endpoint, latency, status), and agent call logs. Used to deliver the service and bill quotas.
Billing data: handled by Stripe. We receive only the subset needed to provision your plan (customer id, subscription status, current period). We do not see your card.
2. How we use it
To operate the service: render and deliver your published pages, run takedowns, enforce quotas, and audit agent activity.
To bill paid plans and prevent abuse: quota tracking, fraud signals, Turnstile verification on high-risk actions.
To improve Page4: aggregate analytics, error rate dashboards, capacity planning. We do not train AI models on customer content.
3. Who we share with
Cloudflare: our infrastructure provider. All compute, storage, and network egress happens on Cloudflare. Subprocessor list available on request.
Stripe: payment processing. They receive billing data needed to charge you.
Google OAuth: identity verification. Google sees that you logged into Page4; we receive your email and basic profile.
We do not sell personal data and do not share with advertising networks. We share with law enforcement only in response to valid legal process.
4. How long we keep it
Active accounts: data is retained while your account is active.
Cancelled accounts: 30-day soft-deletion grace period, then hard-deleted from D1 and R2. Backups may persist up to 90 days before rotation.
Audit logs: retained for 1 year by default, longer if required by contract or regulation.
Anonymized aggregate analytics may be retained indefinitely.
5. Your choices
Access: download all your pages and PageSpecs via the REST API at any time.
Correction: edit page content and account profile in the dashboard.
Deletion: delete a page (soft delete + 30 days to hard delete) or your entire account from /settings/profile. We confirm via email.
Portability: PageSpec is open and exportable. Markdown sources are preserved.
6. Security
Encryption in transit (TLS 1.2+) and at rest (Cloudflare D1, R2, KV defaults). Session cookies are HttpOnly + Secure + SameSite=Lax with HMAC signing. Webhook secrets are stored AES-GCM encrypted.
API keys are stored as HMAC-SHA256 with a server-side pepper. We never store the raw token.
We report suspected breaches to affected users within 72 hours of confirmation, where feasible.
7. Children
Page4 is not intended for users under 16. We do not knowingly collect data from anyone under 16. If you believe a child has created an account, contact us and we will delete it.
8. Cookies and tracking
We use a single HttpOnly session cookie (p4_session) to keep you logged in. We do not use third-party advertising cookies on Page4 dashboards or marketing pages.
Published pages on page4.you may include a no-store cookie for password-unlocked content. Custom-domain pages inherit the security policy of the page owner.
9. International transfers
Cloudflare may process data globally for delivery. We rely on standard contractual clauses or equivalent safeguards for cross-border transfers where applicable.
EU/UK customers can request a copy of our subprocessor list and data processing addendum (DPA) by emailing support@page4.you.
10. Contact and changes
Privacy questions: privacy@page4.you (or support@page4.you until that mailbox is provisioned).
We will notify registered users at least 30 days before any material change to this policy. Last updated date reflects the most recent revision.