Your privacy is critically important to us. We have a few fundamental principles:
- We are thoughtful about the personal information we ask you to provide and the personal information that we collect about you through the operation of our services.
- We store personal information for only as long as we have a reason to keep it.
- We aim to make it as simple as possible for you to control what information is shared publicly (or kept private), indexed by search engines, and permanently deleted.
- We aim for full transparency on how we gather, use, and share your personal information.
Our commitments
In short, and as explained in more detail throughout this policy: we keep your data private, we comply with the European General Data Protection Regulation (GDPR), and we don't sell or monetize your personal data.
1. General information
This policy sets out our privacy practices and explains how we handle the information we collect when you visit and use our sites, services, mobile applications, products, and content ("Services").
2. What we may collect
We collect information about which Nolt pages you access, information about your mobile device (such as device or browser type), information you send us (such as an email address used to register or communicate with us), and referral information. When you use our Services, we may collect and store your Internet Protocol (IP) address. We may use this information to fight spam and other abuse, to personalize our Services, or to generate aggregate, non-identifying information about how people use our Services. When you create your Nolt account and authenticate via a third-party service like Twitter or Google, we may collect, store, and periodically update the profile information associated with that third-party account.
3. Email from Nolt
Sometimes we'll send administrative emails about account or service changes, or new policies. You can't opt out of these. You can always opt out of non-administrative emails such as thread notifications. We won't email you to ask for your password or other account information. If you receive such an email, send it to us so we can investigate.
4. Disclosure of your information
As a rule, we don't share your personal information outside Nolt, and we won't sell or otherwise monetize your personal information. We may share your personal information with third parties in limited circumstances, including: (1) with your consent; (2) with a vendor or partner who meets our data protection standards; or (3) when we have a good-faith belief that it is required by law, such as pursuant to a subpoena or other legal process. If we're going to share your information in response to legal process, we'll give you advance notice so you can challenge it (for example, by seeking court intervention), unless we're prohibited from doing so by law or court order. We will object to requests for information about users of our site that we believe to be improper.
5. Payment information
We do not store your payment card details. When you make a payment, your card data is collected and stored by our third-party payment processor (Paddle), not by us. This provider is responsible for securely handling your payment card data in accordance with its own terms and applicable card-industry standards.
6. Modifying your personal information or deleting your account
If you have a Nolt account, you can access and modify your personal information, or delete your account, here. If you delete your account, your account and content may be unrecoverable. To protect information from accidental or malicious destruction, we may not immediately delete residual copies from our active servers and may not remove information from our backup systems.
7. Your data protection rights
In accordance with the European General Data Protection Regulation (GDPR), you have a right of access to, correction of, and removal of your personal data, which you may exercise by sending us an email request at hello@nolt.io. Your requests will be processed within 30 days. We may require that your request be accompanied by a photocopy of proof of identity or authority.
8. Cookies
We use cookies and similar technologies, such as pixels and local storage, to recognize you when you return to our Services. We use them in various ways — for example, to log you in, remember your preferences, evaluate email effectiveness, and personalize information. Some third-party services that we use, such as Google Analytics, may place their own cookies in your browser. This Privacy Policy covers the use of cookies by Nolt only, and not the use of cookies by third parties.
9. Analytics and third-party tracking
We use tools like Google Analytics to understand how people use our own website. We do not embed third-party tracking inside the Nolt product itself. A board owner can choose to add their own analytics or tracking to their board, but that is their choice and is governed by their own arrangements — we do not perform third-party tracking of end users within the product on your behalf.
10. Third-party services
Nolt uses third-party vendors and hosting partners for the hardware, software, networking, storage, and related technology we need to run Nolt. A list of data sub-processors can be found here.
11. Security
We use encryption (HTTPS/TLS) to protect data transmitted to and from our site. While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and we take reasonable measures to do so. You use the Service at your own risk, and you're responsible for taking reasonable measures to secure your account (such as using a strong password).
12. Governing law
This Privacy Policy and any dispute arising out of or relating to it are governed by the laws of Canada, without regard to conflict-of-law principles.
13. Changes
Although most changes are likely to be minor, we may change our Privacy Policy from time to time. We encourage visitors to check this page frequently for any changes to the Privacy Policy. Your continued use of the Services after any change to this Privacy Policy will constitute your consent to that change.
14. Change log
10th July 2026 - Added payment-processor disclosure; clarified analytics and third-party tracking; added governing-law clause; added this change log (Section 14).
15. Attribution
This Privacy Policy is greatly inspired by Medium's and Automattic's.
Contact
Questions? Let us know at hello@nolt.io.