Privacy Policy

MyOpenGraph ("we", "our", or "us") operates myopengraph.com (the "Service"). This policy explains what information we collect, how we use it, and what rights you have in relation to it. We keep this simple because we are a small service and we have no interest in doing anything shady with your data.

We collect the minimum information needed to provide the Service:

• Email address — Collected when you sign in via magic link or OAuth. Used solely for authentication.
• OAuth profile data — If you sign in with GitHub, we receive your GitHub email and user ID. We do not store your username, avatar, or any other profile fields.
• Template content — The HTML markup, font selections, dimensions, and placeholder values you save are stored in our database to power the Service.
• Usage data — Basic request logs (IP address, timestamp, endpoint) retained for up to 30 days for security and debugging purposes.

We do not use analytics trackers, advertising scripts, or third-party tracking pixels on any page.

We use the information we collect to:

• Authenticate you and maintain your session.
• Store and serve your OG image templates.
• Render and cache your images at the edge.
• Send transactional emails related to your account and subscription (sign-in links, payment receipts, billing alerts). We do not send marketing emails.
• Diagnose errors and maintain service reliability.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

The Service relies on the following sub-processors:

• Supabase — Database and authentication. Your data is stored on Supabase-managed infrastructure. Supabase Privacy Policy →
• Vercel — Hosting and edge network. Request logs are subject to Vercel's data retention policies. Vercel Privacy Policy →
• Google Fonts API — Font files are fetched server-side at render time. No font requests are made from your browser.
• Dodo Payments — Payment processing and subscription management. Your billing information is handled by Dodo Payments and is not stored on our servers. Dodo Payments Privacy Policy →
• Resend — Transactional email delivery. Your email address is passed to Resend solely to deliver account and billing notifications. Resend Privacy Policy →

Your account data is retained for as long as your account is active. If you delete your account, we will delete your personal information and all associated templates within 30 days. Anonymized request logs are purged after 30 days.

We use a single session cookie to keep you signed in. We do not use advertising cookies or third-party tracking cookies. No cookie consent banner is required because we use no non-essential cookies.

Depending on your location you may have rights including access to, correction of, or deletion of your personal data. To exercise any of these rights, email us at privacy@mail.myopengraph.com . We will respond within 30 days.

If we make material changes we will update the "Last updated" date at the top of this page. Continued use of the Service after changes constitutes acceptance of the revised policy.

Questions about this policy? Email us at privacy@mail.myopengraph.com .