Privacy Policy
Last updated: February 21, 2026 · Version 2.0
EstiNest (“we,” “us,” or “our”) operates the website estinest.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.
1. Information We Collect
1.1 Account Information
When you sign in with Google OAuth, we receive and store:
- Email address — for account identification, billing, and support communications
- Display name — for personalizing your experience
- Profile picture URL — from your Google account
- Google account ID — a unique identifier (not your password)
We do not receive or store your Google password.
1.2 Payment Information
Payment processing is handled entirely by Stripe and PayPal. We never receive, process, or store your credit card numbers, bank account details, or other financial instrument data. We only receive:
- Subscription status (active, canceled, etc.)
- Plan tier and billing interval
- Stripe customer ID and subscription ID
- Transaction confirmation (for receipts)
1.3 Calculator Data
All financial calculations are performed locally in your browser. Your financial inputs, scenarios, and results are stored in your browser's localStorage and never transmitted to our servers.
1.4 Automatically Collected Information
We collect anonymized usage data through:
- Google Analytics 4 (GA4) — anonymized page views, feature usage, and performance metrics. IP addresses are anonymized. Google Signals and ad personalization signals are disabled.
- Cloudflare Web Analytics — privacy-focused, cookie-free performance monitoring. No personal data is collected.
2. How We Use Your Information
We use your email address for:
- Account management — identifying your account, syncing subscriptions
- Transactional communications — payment receipts, subscription changes, security alerts, account updates. These do not require marketing consent.
- Billing and support — processing payments via Stripe/PayPal, responding to support requests
- Marketing emails — product updates, tips, and offers. Sent only with your explicit opt-in consent. You can unsubscribe at any time.
We never:
- Sell your email address or personal data to third parties
- Send your email address to Google Analytics, Google Ads, or any advertising platform
- Include your email in URL parameters or public API responses
- Log your email in plaintext in application logs
3. Marketing Communications (CAN-SPAM Compliance)
We comply with the US CAN-SPAM Act and GDPR marketing regulations:
- Marketing emails are sent only to users who explicitly opt in via a separate checkbox (not bundled with terms acceptance)
- Every marketing email contains a clear, one-click unsubscribe link
- Unsubscribe requests are processed immediately (within seconds, not days)
- Unsubscribing does not require logging in or providing additional information
- We record the date, time, and IP address of your opt-in for compliance auditing
- Transactional emails (receipts, account alerts) are exempt from opt-in requirements
4. Payment Processing
We use Stripe and PayPal as our payment processors. These services have their own privacy policies:
Your payment information is transmitted directly to these processors via their secure, PCI DSS-compliant systems. We never have access to your full card number or bank details.
5. Data Security
We implement the following security measures:
- Encryption in transit — TLS 1.3 for all connections (enforced by Cloudflare)
- Encryption at rest — User data stored in Cloudflare KV with encrypted storage
- HMAC-signed sessions — Session tokens are signed with SHA-256 and expire automatically
- HttpOnly, Secure cookies — Session cookies cannot be accessed by JavaScript
- Content Security Policy — Strict CSP headers prevent XSS attacks
- Email hashing — Emails are stored with a salted SHA-256 hash for analytics aggregation. The hash cannot be reversed without the salt.
- Admin access controls — Admin users see masked emails (j***@gmail.com) by default. Viewing full emails creates an audit log.
- Rate limiting — Login endpoints are rate-limited to prevent brute-force attacks
6. Advertising
6.1 Google AdSense
Free-tier users may see ads served by Google AdSense. Google uses cookies to serve ads based on your visits. You can opt out at Google Ad Settings. Pro and Mastery subscribers see no ads.
6.2 Analytics Restrictions
We explicitly prevent your email or personal information from being sent to:
- Google Analytics 4 event payloads
- Google Ads conversion tracking
- Any third-party advertising pixel or tracker
Only anonymized identifiers (user ID), plan type, and aggregated engagement metrics are sent to analytics platforms.
7. Cookies
| Cookie | Type | Purpose | Duration |
|---|---|---|---|
estinest_session | Essential | User authentication session | 30 days |
estinest_admin_session | Essential | Admin authentication session | 8 hours |
_ga / _ga_* | Analytics | Google Analytics visitor tracking | 2 years |
__cf_bm | Essential | Cloudflare bot management | 30 minutes |
8. Data Retention
- Active accounts: Data retained while account is active, refreshed on each login
- Deleted accounts: Soft-deleted for 90 days (allowing account recovery), then permanently deleted
- Login audit logs: Retained for 90 days
- Error logs: Retained for 30 days
- Consent records: Retained for 5 years (legal compliance requirement)
- Monthly aggregated metrics: Retained for 2 years (no PII)
9. Your Rights
You have the right to:
- Access your personal data — view your profile via your account settings
- Correct inaccurate data — update your Google profile (synced on login)
- Delete your account — use the “Delete Account” option in settings, or email support@estinest.com
- Opt out of marketing emails — click “Unsubscribe” in any marketing email or update preferences in your account
- Data portability — request a copy of your data by emailing support@estinest.com
- Withdraw consent — for cookies and tracking via browser settings or the GA4 opt-out browser add-on
9.1 For EU/EEA Residents (GDPR)
If you are located in the European Economic Area, you have additional rights under GDPR including the right to lodge a complaint with your local data protection authority. Our legal basis for processing is:
- Contract performance — for account management and subscription services
- Legitimate interest — for transactional communications and security
- Consent — for marketing communications and analytics
9.2 For California Residents (CCPA)
California residents may request disclosure of personal information collected and exercise their right to delete. We do not sell personal information. Contact us at support@estinest.com.
10. Third-Party Services
| Service | Purpose | Data Shared |
|---|---|---|
| Google OAuth | Authentication | Email, name, profile picture (from Google) |
| Stripe | Payment processing | Email (for receipts), payment data (to Stripe only) |
| PayPal | Alternative payments | Email, payment data (to PayPal only) |
| Google Analytics 4 | Usage analytics | Anonymized page views, plan type. NO email or PII. |
| Cloudflare | CDN, security, analytics | Anonymized performance data. No PII. |
| OpenAI | AI explanations | Calculator inputs (no email or identity data) |
11. Children's Privacy
EstiNest is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.
12. Changes to This Policy
We may update this privacy policy from time to time. Material changes will be communicated via email (for opted-in users) or a notice on our website. The “Last updated” date at the top indicates the most recent revision.
13. Contact Us
For privacy-related inquiries, data access requests, or concerns:
- Email: support@estinest.com
- Website: https://estinest.com
We aim to respond to all privacy requests within 30 days.