MoneyBackMachine

Privacy Policy

Last Updated: January 26, 2026

MoneyBackMachine ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Email address, password (encrypted), and optional profile information when you create an account.
  • Situation Descriptions: The details you provide about your consumer issues, billing disputes, or refund requests to generate templates.
  • Payment Information: Payment card details are processed securely by Stripe and are not stored on our servers. We may store transaction IDs and purchase history.
  • Communications: Information you provide when you contact us for support or feedback.
  • Success Reports: If you voluntarily share outcomes from using our templates, including company names, amounts saved, and testimonials.

1.2 Information Collected Automatically

  • Device Information: Browser type, operating system, device type, and unique device identifiers.
  • Log Data: IP address, access times, pages viewed, referring URL, and other standard server log information.
  • Cookies and Tracking: We use cookies and similar technologies as described in our Cookie Policy.
  • Usage Data: How you interact with our Service, including features used and time spent on pages.

2. How We Use Your Information

We use collected information for the following purposes:

  • To provide, maintain, and improve our Service.
  • To generate personalized negotiation scripts and complaint letters based on your situation.
  • To process payments and send related notifications.
  • To send you technical notices, updates, and support messages.
  • To respond to your comments, questions, and customer service requests.
  • To monitor and analyze trends, usage, and activities in connection with our Service.
  • To detect, investigate, and prevent fraudulent transactions and other illegal activities.
  • To personalize and improve your experience.
  • To aggregate anonymized success data for displaying platform statistics (e.g., "Users have saved $X").

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal data based on:

  • Contract Performance: Processing necessary to provide our Service and fulfill our contractual obligations to you.
  • Legitimate Interests: Processing for our legitimate business interests, such as fraud prevention, security, and service improvement.
  • Consent: Where you have given explicit consent for specific processing activities, such as marketing communications.
  • Legal Obligations: Processing necessary to comply with applicable laws.

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (payment processing, hosting, analytics).
  • Legal Requirements: If required by law, regulation, or legal process.
  • Protection of Rights: To protect our rights, privacy, safety, or property, and that of our users or others.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate confidentiality provisions.
  • With Your Consent: When you have given us explicit permission.

4.1 Third-Party Service Providers

ProviderPurposeData Shared
StripePayment processingPayment details, email
Firebase (Google)Authentication, databaseAccount data, documents
Anthropic (Claude)AI content generationSituation descriptions
Google CloudHosting, infrastructureAll service data

5. Data Retention

We retain your personal information for as long as necessary to:

  • Provide you with our Service and maintain your account.
  • Comply with legal, accounting, or reporting requirements.
  • Resolve disputes and enforce our agreements.

Generally, we retain account data for as long as your account is active. Generated documents are retained for 2 years after creation. You may request deletion at any time.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Encryption of data in transit (TLS/SSL) and at rest.
  • Secure cloud infrastructure (Google Cloud Platform).
  • Access controls and authentication requirements.
  • Regular security assessments and updates.
  • Secrets management through Google Secret Manager.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

7. Your Rights and Choices

7.1 All Users

  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate personal data.
  • Deletion: Request deletion of your personal data.
  • Account Closure: Close your account at any time.
  • Marketing Opt-Out: Unsubscribe from marketing emails.

7.2 EEA/UK Users (GDPR Rights)

  • Right to access your personal data.
  • Right to rectification of inaccurate data.
  • Right to erasure ("right to be forgotten").
  • Right to restrict processing.
  • Right to data portability.
  • Right to object to processing.
  • Right to withdraw consent at any time.
  • Right to lodge a complaint with a supervisory authority.

7.3 California Residents (CCPA Rights)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to Know: Request information about the categories and specific pieces of personal information we have collected.
  • Right to Delete: Request deletion of your personal information.
  • Right to Opt-Out: We do not sell personal information, but you may opt out of any future sales.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise any of these rights, please contact us at privacy@moneybackmachine.com.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws than your country. We take appropriate safeguards to ensure your personal information remains protected, including:

  • Standard Contractual Clauses approved by the European Commission.
  • Data processing agreements with all service providers.
  • Compliance with applicable data transfer frameworks.

9. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

10. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice (such as email notification).

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

MoneyBackMachine
Email: privacy@moneybackmachine.com
Website: https://moneybackmachine.com

For GDPR-related inquiries, you may also contact your local data protection authority.