Skip to main content
← Back to Home

Privacy Policy

Effective date: March 16, 2026

1. Introduction

DesktopEpics ("we," "our," or "us") operates the desktopepics.com website and streaming platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

  • Email address (required for account creation)
  • Authentication credentials (managed securely by Supabase Auth)

Payment Information

  • Payment details are processed by Stripe — we never store card numbers on our servers
  • We store a reference to your Stripe customer ID for subscription management
  • Billing address (if provided to Stripe)

Viewing Activity

  • Which videos you watch, playback progress, and completion status
  • Video playback quality metrics collected by Mux (no personally identifiable information)

Device and Browser Information

  • Device type, browser, and operating system
  • IP address (truncated/hashed for analytics)
  • Pages visited and interaction patterns

Cookies and Similar Technologies

We use cookies to operate the platform, process payments, and understand usage patterns. See Section 5 below and our Cookie Policy for full details.

3. How We Use Your Information

  • Provide and improve the streaming service
  • Process subscription payments via Stripe
  • Send transactional emails (account confirmation, password reset, subscription updates) via SendGrid
  • Track watch progress so you can resume episodes
  • Analyze aggregate viewing patterns to improve content
  • Ensure platform security and prevent fraud

4. Third-Party Services

We use the following third-party services and share only the data each needs to function:

Supabase

Database hosting and authentication. Receives: email address, hashed password.

Stripe

Payment processing. Receives: payment method, billing address. PCI-DSS compliant.

Mux

Video delivery. Receives: playback events, device type. No personally identifiable information.

Google Analytics (GA4)

Aggregate browsing behavior. Anonymized. Respects consent preferences.

PostHog

Product analytics. Anonymized events. Respects consent preferences.

SendGrid

Transactional email delivery. Receives: email address.

DigitalOcean

Media file storage (thumbnails, images). No personally identifiable information.

Cloudflare

CDN and security. Receives: IP address, request headers.

Vercel

Application hosting. Server logs may contain IP addresses.

5. Cookies and Tracking Technologies

We use the following categories of cookies:

  • Essential: Supabase auth session cookies (sb-*), Stripe fraud detection (__stripe_mid, __stripe_sid)
  • Analytics (require consent): Google Analytics (_ga, _ga_*), PostHog (ph_*)
  • Functional: Cookie consent preference (de_cookie_consent)

Analytics cookies are set to "denied" by default until you provide consent via the Cookie Preferences tool accessible from the footer of every page. See our Cookie Policy for complete details.

6. Video Privacy Protection Act (VPPA) Disclosure

In accordance with the Video Privacy Protection Act (18 U.S.C. § 2710), DesktopEpics will not disclose personally identifiable information that reveals which specific video materials you have requested or obtained, except:

  • With your separate, informed, written consent
  • Pursuant to a court order
  • To law enforcement under specific statutory provisions

VPPA consent is collected separately from this Privacy Policy via a dedicated consent mechanism presented when you first access video content as a logged-in user. You may revoke this consent at any time from your Account settings.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate personal data
  • Request deletion of your account and associated data
  • Opt out of analytics tracking via Cookie Preferences or by emailing us

For California Residents (CCPA/CPRA):

  • Right to know what personal information is collected and how it is used
  • Right to request deletion of your personal information
  • Right to opt out of the sale or sharing of personal information (see our Do Not Sell page)
  • Right to non-discrimination for exercising your CCPA rights

We will respond to verified requests within 45 days. To exercise any of these rights, contact us at privacy@desktopepics.com.

8. Do Not Track / Global Privacy Control

DesktopEpics honors Global Privacy Control (GPC) signals. When a GPC signal is detected from your browser, analytics tracking is automatically disabled for your session.

9. Data Retention

  • Account data is retained for the duration of your account plus 30 days after a deletion request
  • Analytics data is retained for 24 months, then automatically purged
  • Payment records are retained per Stripe's policies and tax/legal requirements
  • VPPA consent records are retained for legal compliance purposes

10. Children's Privacy

DesktopEpics is not directed at children under 13. We do not knowingly collect personally identifiable information from children under 13. If we learn that we have collected such information, we will delete it promptly.

11. Security

We implement industry-standard security measures including encrypted data transmission (TLS/SSL), signed video playback tokens, server-side entitlement checks, and Stripe PCI-DSS compliant payment processing. However, no method of transmission over the internet is 100% secure.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify registered users of material changes via email. The updated effective date will be shown at the top of this page.

13. Contact

For privacy-specific inquiries, contact us at: privacy@desktopepics.com

DesktopEpics Studios
Henry County, Georgia, United States