Privacy Policy

We collect the following categories of information:

• Account information — email address and authentication credentials, handled by our authentication provider (Supabase Auth).
• Your files — the .3mf files you upload, their embedded metadata (title, designer, print settings, etc.), and derived thumbnails.
• Usage information — library organization data such as folders, tags, and search/sort preferences, and basic technical logs needed to operate and secure the Service.
• Billing information — for paid plans, payment details are collected and processed directly by Stripe; we do not store full card numbers.

We use the information we collect to:

• Provide, maintain, and improve the Service;
• Authenticate you and keep your account and library secure;
• Process payments and manage subscriptions;
• Send transactional and lifecycle emails (e.g., password resets, storage warnings, subscription and grace-period notices); and
• Respond to support requests.

We do not sell your personal information.

Your files are stored using cloud object storage. Uploads and downloads occur via short-lived, signed URLs directly between your device and storage — your file contents do not pass through our application servers. Thumbnails are generated as smaller derivative images for fast browsing.

We rely on the following third-party providers to operate the Service. Each processes a limited subset of your information as needed to provide their respective function:

• Supabase — authentication and database hosting.
• Cloud storage & delivery provider — file storage and slicer-open delivery.
• Stripe — subscription billing and payment processing.
• Resend — transactional and lifecycle emails.
• Vercel — application hosting.

Files you delete are moved to trash and permanently removed from our storage after 30 days. If you cancel a paid subscription, we retain your library for a 30-day grace period (with reminder emails) before permanently deleting it; your account itself is not deleted and can be reactivated.

You can request deletion of your account and all associated data at any time by contacting us at the address in Section 8.

Depending on your location, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. You can manage most of this directly within the Service (account settings, library, and billing pages), or by contacting us.

We use essential cookies to keep you signed in and to maintain your session. We do not currently use third-party advertising or analytics cookies.

PrintStash is not directed to children under 16, and we do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us so we can remove it.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service before the changes take effect.

Questions about this Privacy Policy, or requests regarding your personal information, can be sent to support@printstash.io.