Privacy Policy
Effective: May 17, 2026
This Privacy Policy describes how LicensePulse ("LicensePulse", "we", "us") collects, uses, and shares information when you use our website at https://licensepulse.app and our application at https://app.licensepulse.app (together, the "Service").
If you have questions, write to us at privacy@licensepulse.app.
1. Information we collect
1.1 You give us
- Account information — name, work email, company name, password (hashed), role.
- Billing information — submitted to and processed by Stripe. We never see full card numbers.
- Customer content — license usage files you upload, contract documents you attach, organization data you enter.
1.2 We collect automatically
- Application logs — page views, feature usage, browser type, IP address, referring page.
- Error data — stack traces and request metadata when something fails.
- Cookies — see our Cookie Policy at https://licensepulse.app/cookies.
1.3 We collect from integrations you authorize
When you connect Microsoft 365, Salesforce, Jira, GitHub, Slack, or Google Workspace, we receive only the scopes you grant — typically read access to seat counts, license assignments, and basic user profiles. We do not read message content, calendar entries, or files outside what's needed to compute license usage.
1.4 From your on-prem agent
If you install the LicensePulse on-prem agent on a license server, it sends us per-feature usage records (feature name, total seats, seats in use, list of active usernames, denial counts). It does not send hostnames, source code, project files, or any data outside the license daemon's reporting.
2. How we use information
We use the information we collect to:
- Provide the Service — render dashboards, generate reports, sync integrations, run the agent.
- Improve the Service — diagnose bugs, measure feature adoption, plan roadmap.
- Communicate — send service announcements, security alerts, billing receipts, and (if you opt in) product updates.
- Bill — process subscription payments via Stripe.
- Comply with law — respond to lawful requests and enforce our Terms.
We do not sell personal information. We do not share customer content with advertisers. We do not use customer content to train models.
3. Legal bases (GDPR)
If you're in the EU, UK, or Switzerland, our legal bases for processing are:
- Performance of a contract — to deliver the Service you signed up for.
- Legitimate interests — to improve the Service, prevent fraud, and secure our systems (we balance these against your rights).
- Consent — for optional cookies and product-update emails.
- Legal obligation — to keep tax / accounting records.
4. Sharing
We share information only with:
- Sub-processors — listed at https://licensepulse.app/subprocessors. Each is bound by a written data-processing contract.
- Your team — other users in your LicensePulse organization can see organization data per their assigned role.
- Authorities — if required by valid legal process. We notify you unless legally prohibited.
- Acquirers — in the event of a merger, acquisition, or asset sale, with notice to you and continuation of these privacy commitments.
5. International transfers
LicensePulse hosts data in the United States. For EU/UK customer data, we transfer under the Standard Contractual Clauses (2021 EU SCCs, UK addendum) incorporated into our DPA. The DPA is available at https://licensepulse.app/dpa.
6. Retention
- Account data — kept while your account is active and for 90 days after deletion.
- Customer content (usage data, contracts) — kept while your account is active and deleted within 30 days of account closure unless you request earlier deletion.
- Billing records — retained for 7 years to meet US tax and accounting requirements.
- Application logs — 90 days.
7. Your rights
Under GDPR, CCPA, and similar laws you can:
| Right | What it means | How to exercise |
|---|---|---|
| Access | Get a copy of your data | Email privacy@licensepulse.app |
| Correction | Fix inaccurate data | Edit in-app or email us |
| Deletion | Have your data erased | Email privacy@licensepulse.app |
| Portability | Receive your data in a machine-readable format | Use in-app export, or email us |
| Restriction / Objection | Limit certain processing | Email privacy@licensepulse.app |
| Opt out of "sale" / "sharing" (CCPA) | We don't sell — but you have the right anyway | Email privacy@licensepulse.app |
| Withdraw consent | For consent-based processing | Email or in-app toggle |
| Lodge a complaint | With your data protection authority | Find yours at edpb.europa.eu (EU) or oag.ca.gov/privacy (CA) |
We respond within 30 days (GDPR) or 45 days (CCPA, extendable to 90).
8. Children
The Service is not directed to children under 16. We do not knowingly collect data from children. If you believe a child has provided us data, contact privacy@licensepulse.app and we will delete it.
9. Security
We protect your data with industry-standard measures: TLS in transit, AES-256 at rest, role-based access, hashed passwords, hashed API keys, regular backups. See our Trust & Security page at https://licensepulse.app/trust for the full description. No system is perfectly secure — if you spot a vulnerability, please report it to security@licensepulse.app.
10. Changes
We may update this Policy. Material changes are announced by email and in-app at least 30 days before they take effect. The "Effective" date at the top reflects the latest version.
11. Contact
For privacy questions or to exercise your rights:
LicensePulse privacy@licensepulse.app
For California residents, our designated agent for CCPA requests is the privacy contact above.