Xite Apps/Growth Inbox/Privacy Policy

Privacy Policy

This policy explains how Xite Apps handles personal data on the website and in Growth Inbox web flows such as checkout, sign-in links, resend login emails, and subscription cancellation requests.

Last updated: February 25, 2026

Privacy PolicyTermsAcceptable Use

Scope

This policy applies to the Xite Apps website, including the Growth Inbox pages and related API routes used for downloads, subscription checkout, email sign-in, resend login emails, and cancellation requests. It does not cover third-party sites or services you open from links on this website.

Data We Collect

  • Email addresses you submit for checkout, sign-in, resend-login, support, or subscription cancellation.
  • Subscription and transaction status data needed to provision and maintain access (for example, payment status and plan state).
  • Technical and security data such as IP address, user agent, request timestamps, and rate-limit events.
  • Download request metadata used to protect the service from abuse and enforce basic download limits.
  • Messages you send to support.

Payment card details are generally processed by the payment provider and are not stored directly by this website.

How We Use Data

  • Provide downloads, subscriptions, sign-in links, and access token refresh flows.
  • Send transactional emails (for example, login links, resend requests, and cancellation confirmations).
  • Prevent abuse, fraud, and unauthorized use of the website and API endpoints.
  • Investigate errors, maintain reliability, and improve the service.
  • Comply with legal obligations and respond to lawful requests.

Legal Bases (UK/EU Users)

Where UK GDPR or EU GDPR applies, we typically process data to perform a contract (for example, providing subscription access), for legitimate interests (for example, security, abuse prevention, and service maintenance), and where required to comply with legal obligations. Marketing communications, if any, are handled in line with applicable direct-marketing rules.

Sharing and Processors

We may share data with service providers that help us operate the website and Growth Inbox services, such as payment processors, email delivery providers, hosting/infrastructure providers, and storage providers. These providers process data on our behalf under their own terms and applicable data protection obligations.

We do not sell personal data.

Data Retention

We keep data for as long as reasonably necessary to provide the service, maintain subscription records, prevent abuse, comply with legal obligations, and resolve disputes. Retention periods vary by data type (for example, transactional records, logs, and support correspondence).

Your Rights

Depending on your location, you may have rights to access, correct, delete, or object to certain processing of your personal data, and to request restriction or portability where applicable. You may also object to direct marketing at any time.

International Transfers

Some providers may process data outside your country. Where applicable, we rely on appropriate safeguards offered by those providers (such as contractual protections) to support lawful transfers.

Security

We use reasonable technical and organizational measures to protect personal data. No system is completely secure, so we cannot guarantee absolute security.

Contact

For privacy requests or questions, contact xiteimageeditor@gmail.com.