Privacy Policy

Last updated: March 1, 2026

1. Information We Collect

• Email address (when you sign in or claim a document)
• IP addresses (hashed for rate limiting — we do not store raw IPs)
• Published content (markdown and rendered HTML)
• Document metadata (titles, word counts, timestamps)

2. How We Use Your Information

• Operating and providing the service
• Rate limiting and abuse prevention
• Sending transactional emails (magic links, publish notifications)
• No marketing emails

3. What We Don't Collect

• No tracking scripts or analytics pixels
• No third-party advertising
• No user behavior analytics beyond view counts
• We do not sell, rent, or share personal data with third parties

4. Data Storage

All data is stored on Cloudflare's global network (D1 database, R2 object storage, KV key-value store). Data is encrypted in transit (HTTPS) and at rest.

5. Data Retention

• Anonymous documents: Automatically deleted after 7 days
• Authenticated documents: Retained until you delete them or cancel your subscription
• IP hashes in rate limit records: Cleared hourly
• Account data: Retained until you request deletion

6. Your Rights

• Delete your documents at any time via the API or dashboard
• Request complete account deletion by emailing security@mdlib.dev
• Access your data via the dashboard

7. Third-Party Services

• Stripe (payment processing)
• Cloudflare (infrastructure)
• Resend (transactional email)

8. Contact

For privacy questions or data requests: security@mdlib.dev