Privacy.

Last updated 2026-04-24.

What we store at signup

Your email, a salted PBKDF2 hash of any password you set, an API key (stored only as a SHA-256 hash — we cannot recover the raw key), your plan, and your signup timestamp. If you join the waitlist instead of signing up, we also keep the segment and tool-spend bucket you picked, the A/B variant you saw, your IP, and your browser string — that lets us size the launch and invite the right people first.

Billing data

When you pay, Stripe is the processor. We receive and store a Stripe customer id, a Stripe subscription id, and your plan status / renewal date. We never see or store your card details — those live only with Stripe.

What we do not do

We do not sell your email. We do not send you marketing on behalf of anyone else. We do not add you to a third-party mailing list. If you unsubscribe or delete your account, we delete your record within 7 days, except anything Stripe retains for legal-record purposes.

Cookies

One local-storage entry (nestry_v) records which homepage headline variant you saw so it stays consistent on return visits. Your API key lives in local storage (nestry_key) while you are signed in. No third-party trackers.

Data requests

Email [email protected] to request export or deletion. 72-hour response window.