Privacy Policy

Last updated: June 2, 2026

ExperiOps ("we", "us", or "our") operates experiops.com. This policy explains what data we collect, why we collect it, and what rights you have over it. We've written it to be readable, not just legally complete.

Questions? Email us at [email protected].

What we collect

Account information

When you sign up via Auth0, we receive your email address, first name, and last name from your identity provider. We store these to identify your account and personalise your experience. Passwords are never stored by ExperiOps — Auth0 handles all credential management.

Project data

Everything you enter when registering a project — name, description, URLs, images, revenue figures, user metrics, and development status — is stored so we can deliver our maintenance service. This data is private by default and only visible to you, your listed collaborators, and our team.

Collaborator information

If you list collaborators on a project, we store their name and email address. By adding a collaborator you confirm you have their permission to share this information with us.

Contact form submissions

When you use our contact form we collect your name, email, and message. We use this only to respond to your enquiry.

Usage and analytics data

We use Statsig for product analytics and feature flagging, Google Analytics for aggregate traffic measurement, and the Meta (Facebook) Pixel for conversion tracking and advertising measurement. These services collect information such as pages visited, events triggered, browser type, and approximate location derived from your IP address. Statsig also records session replays — recordings of how you interact with the app — to help us improve usability.

Why we collect it

Providing the service

Running your account, storing your projects, communicating with you about your project's maintenance.

Improving the product

Understanding which features are used, where users get stuck, and what we should build next.

Security

Detecting and preventing fraud, abuse, and unauthorised access to your account.

Legal obligations

Complying with applicable laws and regulations when required.

Third-party services

We share data with the following third parties only to the extent necessary to operate the service:

Auth0

Handles authentication. Receives your email and identity credentials. Privacy policy →

Statsig

Product analytics and session replay. Receives your user ID, email, and interaction data. Privacy policy →

Google Analytics

Aggregate traffic measurement. Receives anonymised usage data and IP-derived location. Privacy policy →

Cloudflare Turnstile

Bot protection on forms. Cloudflare may process your IP address and browser signals. Privacy policy →

Meta Pixel

Conversion tracking and advertising measurement. Receives anonymised event data and may use cookies to match visits to ad interactions. Privacy policy →

Stripe

Payment processing. Only engaged when a maintenance agreement is finalised. Privacy policy →

Cookies and tracking

We use a session cookie to keep you logged in. Analytics services (Statsig, Google Analytics) and the Meta Pixel set their own cookies to track usage across sessions. The Meta Pixel may also use cookies to match site visits to Facebook ad interactions for conversion measurement. We do not sell your data to advertisers.

Data retention

We keep your account and project data for as long as your account is active. If you delete your account, we remove your personal data within 30 days, except where we are required to retain it for legal or contractual reasons.

Your rights

Depending on where you live, you may have rights including:

Access — request a copy of the data we hold about you.
Correction — ask us to fix inaccurate data.
Deletion — ask us to delete your account and associated data.
Portability — request your data in a machine-readable format.
Objection — object to processing based on legitimate interests.

To exercise any of these rights, email [email protected]. We'll respond within 30 days.

Security

We use SSL/TLS for all data in transit, enforce authentication on all user-facing routes, and use Auth0 so your credentials are never stored by us. No system is perfectly secure — if you discover a vulnerability please contact us at [email protected].

Changes to this policy

We'll update the "Last updated" date at the top of this page when we make material changes. For significant changes we'll notify you by email.

Contact

ExperiOps
[email protected]
experiops.com