Privacy Policy

Last updated: 6/16/2026

Our Commitment to Privacy

At HatchR, we take your privacy seriously. We believe in privacy-first software design and are committed to protecting your personal information and data.

Information We Collect

Account Information

  • Email address (for authentication)
  • Name (optional)
  • Authentication tokens

Production Data

  • Batch and egg collection records
  • Breed information
  • Order data (without customer PII)
  • Farm and flock data

Usage Data

  • Page visits and feature usage (via Vercel Analytics)
  • Error logs and diagnostics
  • Session data

How We Use Your Information

  • To provide and maintain the HatchR service
  • To authenticate your account
  • To store and manage your production data
  • To improve our service and fix bugs
  • To communicate important updates

Data Security

We implement industry-standard security measures:

  • Encryption: All data is encrypted in transit (SSL/TLS) and at rest
  • Access Control: Role-based access control and authentication
  • Backups: Daily automated backups with encryption
  • Infrastructure: Hosted on secure, SOC 2 compliant infrastructure

Privacy-First Design

HatchR is designed with privacy in mind:

  • No Customer PII: We don't store your customers' personal information
  • Minimal Data Collection: We only collect what's necessary
  • Data Ownership: You own your data and can export it anytime
  • No Selling: We never sell your data to third parties

Your Rights (GDPR)

If you're in the EU, you have the right to:

  • Access: Request a copy of your data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in a machine-readable format
  • Object: Object to processing of your data

To exercise these rights, contact us at privacy@hatchr.io

Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your data within 30 days, except where required by law or for legitimate business purposes (e.g., billing records).

Third-Party Services

We use the following third-party services:

  • Vercel: Hosting and analytics (privacy-friendly)
  • Google OAuth: Authentication (optional)
  • PostgreSQL: Database (encrypted)

These services have their own privacy policies and security measures.

Cookies

We use essential cookies for:

  • Authentication (NextAuth session cookies)
  • Farm context (current farm selection)
  • Security (CSRF protection)

We do not use tracking or advertising cookies.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this privacy policy or our data practices, please contact us: