BigBangIdeas collects and uses personal data to operate the service, manage accounts, provide premium access, process subscriptions, improve the product, respond to users and protect the platform.
1. Data controller
Service: BigBangIdeas
Controller: [LEGAL_COMPANY_NAME]
Registered address: [REGISTERED_ADDRESS]
Privacy contact: [CONTACT_EMAIL]
2. Data collected by BigBangIdeas
BigBangIdeas may collect the following categories of data depending on how the service is used:
| Category | Examples | Purpose |
|---|---|---|
| Account data | Email address, hashed password, account status, login and session information. | To create accounts, authenticate users, secure access and provide the service. |
| Subscription and access data | Plan, subscription status, entitlement status, access start date, access end date, revoked access information. | To determine premium access rights and manage subscription-based access. |
| Billing data | Stripe customer ID, checkout session ID, subscription ID, invoice ID, payment intent ID, charge ID, dispute ID, amount, currency, payment status, refund status and billing dates. | To process subscriptions, manage billing, prevent fraud, handle disputes, provide support and maintain accounting records. |
| Product analytics data | Page views, pricing views, demo exploration, domain views, opportunity views, search events, CTA clicks, feedback events, path, referrer, session key, IP address, user-agent and event metadata. | To understand product usage, improve the user experience, measure feature interest, diagnose issues and protect the service. |
| Demo and premium navigation data | Domains viewed, opportunities viewed, locked or unlocked demo interactions, score-related page views and exploration activity. | To improve the exploration experience, understand user interest and maintain product analytics. |
| Support and feedback data | Messages sent to BigBangIdeas, optional email address, rating, source, related page and metadata. | To respond to requests, fix issues, understand user needs and improve BigBangIdeas. |
| Technical and security data | IP address, user-agent, session data, request metadata, error information and security logs. | To secure the service, prevent abuse, debug issues and maintain reliability. |
3. Account and authentication
When a user creates an account, BigBangIdeas uses account and authentication data to identify the user, secure the account and provide access to the relevant parts of the service.
Passwords are processed through Django/allauth authentication mechanisms and are not stored as plain text by BigBangIdeas.
4. Billing, subscriptions and Stripe
Payments and subscriptions are processed through Stripe. BigBangIdeas stores the billing information needed to operate the service, including Stripe identifiers, subscription status, invoice references, payment status, refund status, dispute status, billing dates and related metadata.
BigBangIdeas does not intend to store full payment card numbers on its own servers. Payment card processing is handled by Stripe.
If a payment dispute, chargeback, refund request or billing issue occurs, BigBangIdeas may retain and use relevant account, access, payment and usage records to investigate the issue, respond to support requests, defend its rights and comply with accounting, tax, legal or payment processor requirements.
5. Product analytics
BigBangIdeas uses product analytics to understand how users move through the website, demo and premium product. Analytics events may include page views, pricing views, checkout started, domain exploration, opportunity views, search, CTA clicks and feedback submitted.
These analytics help BigBangIdeas improve the product, identify useful domains, understand conversion points, diagnose issues and protect the service from abuse.
6. Legal bases
Depending on the situation, BigBangIdeas may rely on the following legal bases:
- Contract: to create accounts, provide the service, manage subscriptions and deliver premium access.
- Legitimate interests: to improve BigBangIdeas, understand usage, secure the service, prevent fraud and respond to users.
- Legal obligations: to retain billing, accounting, tax, compliance or dispute records where required.
- Consent: where consent is required, for example for optional non-essential cookies or future marketing tools.
7. Cookies and similar technologies
BigBangIdeas uses cookies and similar technologies that are necessary for the website and application to function, including session cookies and security cookies used for authentication and CSRF protection.
BigBangIdeas does not currently use advertising cookies or third-party marketing pixels by default. Product analytics are mainly based on server-side events and session information.
If BigBangIdeas later adds non-essential analytics tools, advertising pixels, heatmaps or third-party trackers, this policy will be updated and, where required, consent will be requested before those tools are used.
8. Service providers
BigBangIdeas may rely on trusted service providers to operate the service, including:
- hosting and database providers;
- Stripe for checkout, subscriptions, billing, customer portal, invoices, disputes and payments;
- authentication services, including Google authentication if enabled and used;
- email providers for transactional or support emails if configured;
- technical monitoring, logging or analytics providers if added later.
9. International transfers
Some service providers may process personal data outside the user’s country or outside the European Economic Area. This may include payment, hosting, authentication, email, support or infrastructure providers.
When required, BigBangIdeas relies on appropriate legal mechanisms made available by these service providers, such as contractual protections or other recognized transfer safeguards.
10. Data retention
BigBangIdeas keeps personal data only for as long as reasonably necessary for the purposes described in this policy, unless a longer period is required or permitted by law.
- Account data: kept while the account is active, then deleted or anonymized after a reasonable closure period.
- Subscription and billing data: kept as needed for accounting, tax, payment dispute, fraud prevention and compliance purposes.
- Product analytics: kept for a limited period useful for product improvement, security analysis and business reporting.
- Support and feedback data: kept as long as needed to handle requests, improve the product and maintain useful support history.
- Security logs: kept for a limited period needed to protect the service and investigate incidents.
11. Security
BigBangIdeas uses reasonable technical and organizational measures to protect personal data, including authentication controls, hashed passwords, CSRF protection, session security, access checks and Stripe webhook signature verification.
No online service can be guaranteed to be perfectly secure. Users are responsible for using a strong password, keeping credentials confidential and contacting BigBangIdeas if unauthorized access is suspected.
12. User rights
Depending on location and applicable law, users may have rights over their personal data, including the right to access, rectify, erase, restrict processing, object to processing, request portability and withdraw consent where processing is based on consent.
Requests can be sent to: [CONTACT_EMAIL].
BigBangIdeas may need to verify the requester’s identity before responding. BigBangIdeas may also need to keep certain billing, security or legal records where retention is required or permitted by law.
Users located in the European Union may also have the right to lodge a complaint with their local data protection authority.
13. Automated scoring and opportunity analysis
BigBangIdeas may display scores, rankings and structured analysis about SaaS opportunities. These scores relate to SaaS ideas and market research. They are not automated legal, credit, employment, insurance, financial or eligibility decisions about users.
14. Updates to this policy
BigBangIdeas may update this Privacy Policy as the service evolves, including when new features, providers, analytics tools, billing flows, cookies or security measures are added.
15. Contact
Privacy questions or data requests can be sent to: [CONTACT_EMAIL].