← Back to Home

Privacy Policy

Last updated: February 20, 2026

1. Introduction

Studio Lifesaver LLC ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our website, applications, and services (collectively, the "Service").

By using the Service, you consent to the data practices described in this policy. If you do not agree with this Privacy Policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

2.2 Information Collected Automatically

2.3 Information from Third Parties

3. How We Use Your Information

We use your information for the following purposes:

4. How We Share Your Information

We do not sell your personal information. We share information only in the following circumstances:

4.1 With Other Users

Profile information (name, bio, skills, portfolio, ratings, reviews) is visible to other authenticated users of the platform. Assistants who are hired for a job may have their contact information and tax documents shared with the hiring Studio as necessary for the engagement.

4.2 With Third-Party Service Providers

We share information with the following third-party service providers who process data on our behalf:

Stripe, Inc. (San Francisco, CA)

Purpose: Payment processing for subscriptions and per-job fees.
Data shared: Name, email, payment card details (transmitted directly to Stripe), transaction amounts.
Privacy Policy: stripe.com/privacy

Google LLC (Mountain View, CA)

Purpose: Address geocoding (Google Maps API) and calendar availability (Google Calendar API).
Data shared: Email and profile data (Sign-In), street addresses (Maps), calendar availability windows (Calendar).
Privacy Policy: policies.google.com/privacy

Twilio Inc. / SendGrid (San Francisco, CA)

Purpose: Transactional and notification email delivery.
Data shared: Email addresses, names, and email content (job notifications, account alerts, review requests).
Privacy Policy: twilio.com/legal/privacy

Amazon Web Services (AWS) (Seattle, WA)

Purpose: Secure cloud file storage (Amazon S3) for profile images, portfolio photos, and W-9 tax documents.
Data shared: Uploaded files and associated metadata.
Privacy Policy: aws.amazon.com/privacy

Render Services, Inc. (San Francisco, CA)

Purpose: Application hosting and infrastructure.
Data shared: All data processed by the Service transits through Render's infrastructure, including IP addresses and request metadata.
Privacy Policy: render.com/privacy

MongoDB, Inc. (New York, NY)

Purpose: Database hosting (MongoDB Atlas) for application data storage.
Data shared: All application data (user profiles, messages, jobs, contracts) is stored in MongoDB Atlas with encryption at rest and in transit.
Privacy Policy: mongodb.com/legal/privacy-policy

PostHog, Inc. (San Francisco, CA)

Purpose: Product analytics and session recording (with user consent) to improve the Service.
Data shared: Usage data, device information, IP address (anonymized), and session recordings of user interactions. No personally identifiable information is shared for advertising purposes.
Privacy Policy: posthog.com/privacy

4.3 For Legal Reasons

We may disclose your information if required by law, subpoena, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others; investigate fraud; or respond to a legal process.

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change and any choices you may have regarding your information.

5. Data Security

We implement industry-standard security measures to protect your information:

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

To exercise any of these rights, contact us at support@gottasecond.com. We will respond within 30 days.

8. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

To exercise your California privacy rights, contact us at support@gottasecond.com or use the "Do Not Sell or Share My Personal Information" link in our website footer. We will verify your identity and respond within 45 days.

9. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) and applicable local data protection laws provide you with additional rights.

9.1 Legal Basis for Processing

We process your personal data under the following legal bases:

9.2 Your GDPR Rights

In addition to the rights listed in Section 7, you have the right to:

9.3 International Data Transfers

Your data is primarily processed in the United States. For transfers of personal data from the EEA/UK to the United States, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other lawful transfer mechanisms, to ensure adequate protection of your personal data.

9.4 Data Protection Contact

For GDPR-related inquiries, contact us at: privacy@gottasecond.com

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 18, we will promptly delete it. If you believe a child has provided us with personal information, please contact us immediately.

11. Cookies, Tracking, and Do Not Track

We use the following technologies:

We do not use advertising cookies or sell data to third-party advertisers.

Do Not Track Signals

Some web browsers transmit "Do Not Track" (DNT) signals to websites. We honor DNT signals. If your browser sends a DNT signal, we will not load non-essential analytics or tracking technologies for your session. You may also manage your cookie preferences through our consent banner displayed on your first visit.

12. International Data Transfers

Our Service is hosted in the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to this transfer. For transfers from the EEA/UK, see Section 9.3.

13. Communications to Non-Users

Our platform allows registered users to send review requests to email addresses of individuals who may not have a GottaSecond account. If you receive such an email:

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email or in-app notification. The "Last updated" date at the top of this page indicates the most recent revision. Your continued use of the Service after changes constitutes acceptance of the updated policy.

15. Contact Us

For questions, concerns, or requests related to this Privacy Policy or your personal data, contact us at:

Studio Lifesaver LLC
Email: support@gottasecond.com