Welcome to Garden Letters. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our letter creation service.

We collect the following types of information: • Account Information: When you sign in, we collect your email address and name (if provided by your OAuth provider). • Letter Content: When you save a letter, we store the text, styling choices, and sharing settings you provide. • Payment Information: We process payments through Stripe. We do not store your full payment card details on our servers. • Usage Data: We collect information about how you use the service, including credit transactions, letter views, and account activity.

How we handle the content you create: • Saved letters: Text, names, card style, and sharing settings are stored in our database so you can edit, share, and reopen them. • Public letters: If you choose to show a letter in the public garden, its content and display names are visible to anyone browsing the gallery. • Private letters: Private letters require a share code to open. Only people with the link and code can view them. • AI backgrounds and music: Custom AI-generated background images and music assets are stored on Cloudflare R2 and linked to your letter. We do not sell your letters or generated assets to third parties.

We use the information we collect to: • Provide Garden Letters features, including backgrounds, music, and sharing • Process payments and manage your credits • Display public letters in the explore gallery when you opt in • Send service-related communications when necessary • Maintain the security and integrity of our platform • Comply with legal obligations

We implement industry-standard security measures to protect your information: • All data is transmitted using encrypted connections (HTTPS) • Payment information is processed securely through Stripe • Access to account and letter data is restricted to authorized systems and personnel • We regularly review and update our security practices

We use cookies and similar technologies to: • Maintain your login session • Remember your preferences • Analyze service usage to improve Garden Letters You can control cookie settings through your browser preferences.

We rely on the following services and infrastructure: • Cloudflare D1: Managed SQL database for accounts, letters, credits, and related records. • Cloudflare R2: Storage for AI-generated background images and music assets. • Better Auth and OAuth providers (e.g. Google): For sign-in; session and account data are stored in our D1 database. • Stripe: Payment processing. • Cloudflare Workers: Application hosting, edge runtime, and security. • AI providers: For background image and song generation, used only to deliver the features you request. These providers have their own privacy policies, which we encourage you to review.

You have the right to: • Access your personal information • Correct inaccurate information • Delete individual letters or your entire account and associated data • Opt out of marketing communications • Withdraw consent for data processing where applicable To exercise these rights, please contact us using the information provided below.

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date.

If you have any questions about this Privacy Policy or our data practices, please contact us at: Email: contact@gardenletters.net We are committed to addressing your concerns and protecting your privacy.