Privacy Policy

Last updated: 2026-03-01

1. Introduction

FreezeSub ("we", "our", "us") operates as a Stripe App that helps merchants reduce subscription churn by offering subscribers a temporary pause instead of cancellation. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

By installing FreezeSub from the Stripe Marketplace or visiting freezesub.com, you agree to the practices described in this policy.

2. Data We Collect

2.1 Merchant Data

When you install FreezeSub, we receive the following from Stripe:

  • Your Stripe Account ID
  • Account email address
  • Business name
  • App configuration settings (pause durations, branding preferences)

2.2 Subscriber Data

When FreezeSub intercepts a cancellation event, we process the following subscriber data on your behalf:

  • Stripe Customer ID (not name, email, or payment details)
  • Stripe Subscription ID
  • Subscription plan details (plan ID, billing cycle)
  • Pause reason (selected by subscriber from predefined options)
  • Pause duration selected
  • Pause and resume timestamps

Important: We never store payment card numbers, full subscriber names, email addresses, or any personally identifiable information (PII) beyond what Stripe provides in subscription events. All payment processing remains exclusively within Stripe's systems.

2.3 Website Analytics

When you visit freezesub.com, we may collect standard web analytics data including: page views, referrer URLs, browser type, and approximate geographic location. We do not use cross-site tracking or sell this data.

3. How We Use Your Data

We use collected data exclusively to:

  • Provide and operate the FreezeSub pause/resume service
  • Track and bill for saves (pauses that prevented cancellation)
  • Generate analytics dashboards for merchants
  • Automatically resume paused subscriptions at the correct time
  • Provide customer support
  • Improve the product and identify bugs

We do not sell your data. We do not use subscriber data for advertising or marketing purposes. We do not share merchant or subscriber data with third parties except as required to operate the service (e.g., Stripe's own systems) or as required by law.

4. Data Retention

Pause records are retained for 24 months from the date of creation to support analytics, auditing, and dispute resolution. After 24 months, records are automatically deleted.

If you uninstall FreezeSub, your data will be deleted within 90 days of uninstallation, unless you request earlier deletion (see Section 7).

5. Data Security

We implement industry-standard security measures including:

  • TLS encryption in transit for all API communications
  • AES-256 encryption at rest for stored data
  • Stripe webhook signature verification on all incoming events
  • Principle of least privilege for internal data access
  • Regular security audits
  • No storage of Stripe secret keys — only OAuth tokens scoped to required permissions

6. Third-Party Services

FreezeSub integrates with the following third-party services:

  • Stripe — payment processing and subscription management. Stripe's privacy policy: stripe.com/privacy
  • Vercel — hosting infrastructure. Vercel's privacy policy: vercel.com/legal/privacy-policy

7. Your Rights

As a merchant using FreezeSub, you have the right to:

  • Access — request a copy of data we hold about your account
  • Correction — request correction of inaccurate data
  • Deletion — request deletion of your data
  • Portability — request your data in a machine-readable format
  • Objection — object to processing of your data

To exercise these rights, email hello@freezesub.com. We will respond within 30 days.

8. Cookies

The FreezeSub marketing website (freezesub.com) uses minimal cookies:

  • Session cookies necessary for basic site operation
  • Anonymous analytics (no cross-site tracking)

The FreezeSub Stripe App itself does not use cookies — it operates within Stripe's iframe sandbox.

9. GDPR & CCPA

FreezeSub acts as a data processor on behalf of merchants (who are the data controllers for their subscribers' data). If you are a merchant subject to GDPR or CCPA requirements, you are responsible for ensuring appropriate legal bases for processing subscriber data through FreezeSub.

For EU merchants, FreezeSub processes data in compliance with GDPR requirements. Data is stored within the European Economic Area or transferred under appropriate safeguards (Standard Contractual Clauses where applicable).

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or within the Stripe Dashboard. Continued use of FreezeSub after changes constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions, contact us at: hello@freezesub.com

FreezeSub · freezesub.com