Privacy policy

Freedom With Truth ("we", "us") runs an educational membership community at freedomwithtruth.com. This policy explains what personal data we collect, why we collect it, who we share it with, and the rights you have over your data. We collect the minimum we need to run the service.

We collect only what is needed to provide the service:

• Account data: your name, email address, and authentication identifiers from Supabase (the auth provider). If you sign in with Google, we receive your name, email, and profile picture from Google.
• Subscription data: the plan you are on, your subscription status, the payment-provider subscription ID (Razorpay or DodoPayments), and renewal dates. We do not store card numbers, CVVs, or full payment instruments.
• Community linking data: if you link your Discord or Telegram account to access the community, we store the platform user ID needed to grant access.
• Communications: if you write to us via the contact form or by email, we keep your message and reply thread to provide support.
• Operational logs: minimal request logs (IP address, user-agent, timestamp) for security, abuse prevention, and rate limiting. These are short-lived and not used to profile you.

We do not collect biometric data, location data beyond IP-derived approximations, or sensitive special-category data.

We use the data above to:

• Create and authenticate your account.
• Process payments and manage your subscription.
• Grant access to community channels (Discord, Telegram) and verify membership status.
• Send transactional emails: welcome emails, payment receipts, schedule changes, refund acknowledgements, and support replies.
• Respond to your support and contact requests.
• Detect and prevent abuse, fraud, and platform misuse.
• Comply with legal and tax obligations.

We do not sell, rent, or trade your personal data. We do not run third-party advertising trackers on this site.

We use a small number of third-party providers to operate the service. Each handles a specific function and is bound by their own privacy and security commitments:

• Supabase - authentication and primary database (account, subscription records).
• Vercel - hosting and request serving.
• Razorpay - payment processing for INR (India) subscriptions.
• DodoPayments - payment processing for USD (international) subscriptions.
• Resend - transactional email delivery (welcome emails, contact-form notifications, receipts).
• Cloudflare - DNS and inbound email routing for the domain.
• Discord and Telegram - community channels you opt into. We share only the linkage needed to grant you access; your activity inside those channels is governed by the platform's own privacy policy.
• Google - if you choose to sign in with Google, your authentication is handled by Google under their privacy policy.

We do not share your personal data with any party outside this list, except where required by law (court orders, regulators, tax authorities) or to protect the safety of the community.

We use a small number of strictly necessary cookies to keep you signed in and to remember your session. We do not use advertising cookies, cross-site tracking pixels, or third-party analytics that profile you across sites.

Account, subscription, and payment records are kept for as long as your membership is active and for a reasonable period afterwards to handle refunds, disputes, accounting, and tax compliance (typically up to 7 years where required by Indian tax law).

Support email threads are kept for as long as needed to resolve the matter and for a reasonable follow-up window. Operational logs are kept short-term (typically 30 to 90 days). Discord and Telegram linkage records are removed when you cancel and unlink.

Some of our processors (Supabase, Vercel, DodoPayments, Resend, Cloudflare) operate infrastructure outside India. By using the service you acknowledge that your data may be processed in jurisdictions with different data-protection laws. We choose providers that publish standard contractual safeguards (or equivalent) for cross-border transfers.

You can, at any time:

• Access the personal data we hold about you.
• Correct inaccurate data (most fields are editable from your dashboard; for the rest, write to us).
• Delete your account and associated data, subject to records we are legally required to retain (tax, accounting, dispute history).
• Export a copy of your data in a portable format.
• Object to specific processing or withdraw consent where consent is the legal basis.
• Complain to the data-protection authority in your jurisdiction.

To exercise any of these rights, write to us via the contact page or to hello@freedomwithtruth.com. We respond within 30 days.

We use encrypted transport (HTTPS) for all traffic, encrypted storage at rest with our database provider, and least-privilege access for the small team that operates the service. No system is fully immune to breach. If a security incident affects your data, we will notify you without undue delay and as required by law.

The service is not intended for anyone under 18. We do not knowingly collect data from minors. If you believe a minor has provided us data, write to us and we will delete it.

We may update this policy as the service evolves. Material changes will be announced to active members at least 30 days before they take effect. The "last updated" date at the top of this page reflects the most recent revision.

Questions, requests, or complaints about your data can be sent via the contact page or directly to hello@freedomwithtruth.com. The data controller for this service is Freedom With Truth, operating from India.