AnsiPress Privacy Policy

Effective: March 17, 2026 · Last updated: March 17, 2026

1. Definitions

The following terms have specific meanings throughout this Privacy Policy:

AnsiPress — The platform, website, and services operated by AnsiPress.
BYOS (Bring Your Own Server) — A service model where the customer provides their own server and AnsiPress connects to it via SSH to manage the software stack.
Fully Managed — A service model where AnsiPress provisions servers on AnsiPress-owned cloud provider accounts using Terraform/OpenTofu. The customer pays a single unified bill covering infrastructure and management and does not interact directly with the cloud provider.
Customer Data — Data, files, databases, and content stored on servers managed by AnsiPress, which remain the property of the customer.
Platform Data — Data collected by AnsiPress in connection with operating and delivering the service, including account information, server configurations, and usage analytics.

2. Information We Collect

2.1 Account Information

When you register for an AnsiPress account, we collect your email address, a hashed password (bcrypt), and display name. If you sign up via Single Sign-On (SSO), we receive your name, email, and profile picture from Google or GitHub. We do not store your OAuth access tokens beyond the authentication flow.

2.2 Waitlist and Contact Information

When you join our waitlist or submit our contact form, we collect your name, email address, and optionally company name, website, use case description, and message. We also record UTM parameters and referral source for marketing attribution.

2.3 BYOS Service Data

For BYOS customers, we collect and store:

Server IP addresses and hostnames
Server operating system and version
SSH public keys generated by AnsiPress for server access
Provisioning and Ansible playbook execution logs
Website and application configurations (domains, PHP version, database names)

We do not store the content of your databases or files. You retain full ownership and control of your server and all data on it.

2.4 Fully Managed Service Data

For Fully Managed customers, AnsiPress provisions servers using its own cloud provider accounts via Terraform/OpenTofu. Customers do not provide cloud credentials. We collect and store:

Your preferred region and server size/tier selection
Resource usage metrics (CPU, RAM, disk, bandwidth)
Provisioning logs and server lifecycle events
Website and application configurations

AnsiPress owns the underlying cloud infrastructure. You own your application data and content.

2.5 Payment Information

Payments are processed by Stripe. We store your Stripe customer ID, subscription status, plan details, and billing history. We never store full card numbers, CVV codes, or raw bank account numbers. Stripe's Privacy Policy governs the handling of payment card data.

2.6 Automatically Collected Information

When you use the AnsiPress website and dashboard, we automatically collect IP addresses, browser type, device type, pages visited, and timestamps via Vercel Analytics and Speed Insights. Error data and stack traces are collected by Sentry for debugging purposes.

3. How We Use Your Information

Purpose	Data Used	Legal Basis
Account creation and authentication	Email, password hash, SSO profile	Contract performance
Providing BYOS service	Server IP, SSH keys, configs, logs	Contract performance
Providing Fully Managed service	Region/size preferences, usage metrics, configs	Contract performance
Processing payments and billing	Stripe customer ID, subscription data	Contract performance
Sending transactional emails	Email address	Contract performance
Preventing fraud and abuse	IP, device data, rate limiting data	Legitimate interest
Error monitoring and debugging	Error data, stack traces (Sentry)	Legitimate interest
Website analytics and improvement	Page views, clicks, device info (Vercel)	Legitimate interest
Responding to support requests	Email, account details, server logs	Legitimate interest
Marketing communications (with consent)	Email address	Consent

4. How We Store and Protect Your Information

4.1 Infrastructure Security

User data is stored in Neon PostgreSQL with SSL/TLS encryption in transit and encryption at rest. Authentication tokens are stored exclusively in HTTP-only, Secure, SameSite cookies — never in localStorage or sessionStorage. Passwords are hashed using bcrypt. SSH private keys stored by AnsiPress are encrypted at rest.

4.2 Server Security

Servers managed by AnsiPress (both BYOS and Fully Managed) have CrowdSec (intrusion prevention), UFW (firewall), and SSH hardening applied. SSL/TLS certificates are issued via Let's Encrypt using acme.sh.

4.3 Application Security

Public forms are protected by Cloudflare Turnstile to prevent bot abuse. API rate limiting is enforced using Redis. CORS policies restrict API access to authorized origins.

4.4 Organizational Security

Access to customer data follows the principle of least privilege. System activity is monitored for anomalous behavior. We do not sell customer data to third parties.

5. Third-Party Services

AnsiPress uses the following third-party services to operate the platform. Each sub-processor has its own privacy policy governing how it handles data.

Service	Purpose	Data Shared
Neon (PostgreSQL)	Primary database	All structured data
Stripe	Payment processing	Billing info, email
Resend	Transactional email delivery	Email address, email content
Cloudflare Turnstile	Bot protection on forms	IP, browser fingerprint
Vercel	Website hosting & analytics	Page views, IP, device info
Sentry	Error tracking & debugging	Error data, stack traces, IP
Google (SSO)	OAuth authentication	Profile info (on login)
GitHub (SSO)	OAuth authentication	Profile info (on login)
Hetzner / AWS / DigitalOcean	Fully Managed server infrastructure	Server specs, region preferences

6. Cookies and Tracking

AnsiPress uses a minimal set of cookies. We do not use advertising cookies or sell data to ad networks.

Cookie	Type	Purpose
access_token	HTTP-only, Secure — Session	JWT for authenticating API requests
refresh_token	HTTP-only, Secure — Persistent	Refreshing the access token without re-login
cf-turnstile-*	Session — Cloudflare Turnstile	Bot detection on public forms
Vercel Analytics	Analytics (no PII)	Aggregated page view and performance metrics

Authentication tokens are stored in HTTP-only cookies only — never in localStorage or sessionStorage. This prevents cross-site scripting (XSS) attacks from accessing your session.

7. Data Retention

Data Type	Retention Period	Notes
Account data	Until account deletion request	Deleted within 30 days of request
BYOS server records	Until disconnected + 30 days	SSH key revoked on disconnect; software remains on your server
Fully Managed server data	Until cancellation + 30 days	30-day grace period to export data; servers decommissioned after
Payment records	7 years	Required for tax and legal compliance
Audit logs	1 year	Security and compliance purposes
Error/Sentry data	90 days	Automatically purged by Sentry
Analytics data	Aggregated, indefinitely	No PII retained by Vercel analytics
Waitlist data	Until unsubscribe	Deleted immediately on unsubscribe

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Access — Request a copy of the personal data we hold about you.
Correction — Request correction of inaccurate or incomplete data.
Deletion — Request deletion of your account and associated personal data.
Portability — Request your data in a machine-readable format.
Restriction — Request that we restrict processing of your data.
Objection — Object to processing based on legitimate interest.
Withdraw Consent — Withdraw consent for marketing communications at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

To unsubscribe from marketing emails, use the unsubscribe link in any email we send or visit ansipress.com/unsubscribe.

9. International Data Transfers

AnsiPress is operated from India. Your data may be transferred to and processed in countries other than your own — including the United States and the European Union — by our sub-processors (such as Neon, Vercel, Stripe, Sentry, and cloud providers).

Where we transfer personal data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or the sub-processor's own compliance certifications. By using AnsiPress, you acknowledge and consent to these transfers.

10. Children's Privacy

AnsiPress services are intended for individuals 18 years of age and older. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal data, please contact us at [email protected] and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of material changes by:

Posting the updated policy at this URL with a new "Last updated" date
Sending an email notification to registered users for significant changes

Continued use of the platform after the effective date of the updated policy constitutes acceptance of the changes.

12. Contact Us

For privacy-related inquiries, data requests, or concerns:

Email: [email protected]
Contact Form: ansipress.com/contact

AnsiPress is operated by AnsiPress.