Privacy Policy

This Privacy Policy explains how yasutsu (“yasutsu”, “we”, “us”, or “our”) collects, uses, stores, and discloses personal data when you access our website, dashboard, and related services (“Services”). It also describes the rights you have under applicable privacy laws.

yasutsu is the data controller for all personal data processed in connection with the Services.

Data protection contact: support@yasu.lol

If you have questions or wish to exercise your rights, contact us via email.

We collect the following categories of personal data:

• ·Account data: username, email address & password.
• ·Content data: profile customization such as display name, bio, assets, social links, and other profile settings.
• ·Usage data: interactions with the dashboard, feature usage, timestamps, and referral sources.
• ·Device and log data: IP address, browser type, operating system, and device identifiers.
• ·Payment data: limited billing metadata processed via our payment processor. We do not store full card data.

We collect data directly from you, automatically through your device, and from carefully selected service providers.

• ·Provide, personalise, and maintain the Services to you.
• ·Authenticate users, secure accounts, and prevent fraud or abuse.
• ·Deliver transactional communications, updates, and service notices.
• ·Process payments and manage premium subscriptions.
• ·Monitor performance, conduct analytics, and improve user experience.
• ·Comply with legal obligations and respond to lawful requests.

We process personal data based on the following legal grounds:

• ·Contract: Processing is necessary to deliver the Services you request.
• ·Consent: For optional features such as marketing emails or non-essential cookies.
• ·Legal obligation: To comply with accounting, tax, and regulatory requirements.
• ·Legitimate interests: To maintain security, prevent abuse, and improve our Services. We balance these interests against your rights.

Authorised staff members may access personal data only when necessary for service delivery, customer support, security incident response, or compliance purposes. All staff access is restricted to the minimum necessary data and subject to strict confidentiality obligations.

We share personal data only when necessary and subject to appropriate safeguards:

• ·Service providers that support infrastructure, analytics, email delivery, customer support, and payments.
• ·Law enforcement or regulators when required by applicable law.

We require third parties to process personal data only according to our instructions and in compliance with applicable privacy laws.

We retain personal data only for as long as necessary to fulfil the purposes outlined in this Policy or to comply with legal obligations.

• ·Account data is stored while your account is active and deleted within 30 days after closure.
• ·Content data (profile customizations, assets) can be deleted by you at any time. Backups may persist for up to 30 days.
• ·Security logs and regulatory records may be retained for up to 90 days unless a longer retention period is legally required.

We maintain technical and organisational safeguards to protect personal data against unauthorised access, alteration, disclosure, or destruction:

• ·Encryption of data in transit (TLS/SSL) and at rest.
• ·Role-based access controls with principle of least privilege.
• ·Multi-factor authentication for staff accounts.
• ·Automated security monitoring and alerting systems.
• ·Regular security audits and vulnerability assessments.
• ·Strict confidentiality agreements for all staff.

No system is fully secure, but we continuously refine our controls and respond to emerging threats.

You have the following rights regarding your personal data:

• ·Access, rectify, or erase your personal data.
• ·Restrict or object to specific processing activities.
• ·Withdraw consent at any time without affecting prior processing.
• ·Lodge a complaint with your local supervisory authority.

To exercise your rights, contact support@yasu.lol

Our Services are not directed to children under 13 years of age, and we do not knowingly collect personal data from them. If we learn that we have collected personal data from a child without lawful consent, we will delete it promptly.

We may update this Privacy Policy to reflect changes in technology, law, or our Services. We will post the revised Policy with an updated “Last Updated” date.

For questions about this Privacy Policy, please email support@yasu.lol