Privacy Policy

Last Updated: January 2026

Overview

User Manager ("the Platform") is a comprehensive user management and platform integration service developed by Plicca. We respect your privacy and are committed to protecting your data through transparent practices and robust security measures.

What Data We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Organization name and details
  • Account preferences and settings

Platform Credentials

To manage users across external platforms, we collect and store:

  • API tokens and authentication credentials for connected platforms
  • OAuth tokens for integrated services
  • User account information from connected platforms (names, emails, roles)

Activity Logs

We maintain audit logs of:

  • User actions and account changes
  • Platform connector operations
  • Synchronization activities
  • Administrative actions

Usage Data

We collect non-personal technical information such as:

  • IP address
  • Browser type and version
  • Pages visited and features used
  • Device information

How We Use Your Data

We use the collected data for the following purposes:

  1. Service Delivery: To provide, operate, and maintain the User Manager platform and its features
  2. Platform Integration: To authenticate and synchronize user data across connected platforms (Slack, Hex, Dagster, Anthropic, ChatGPT, Claude, Cursor, Cube, Felt, etc.)
  3. Account Management: To manage your account, process transactions, and handle customer service requests
  4. Security: To detect, prevent, and address fraud, abuse, and security incidents
  5. Compliance: To comply with legal obligations and enforce our Terms of Service
  6. Analytics: To understand usage patterns and improve our services
  7. Communications: To send you service updates, security alerts, and support messages

Data Storage and Security

Where Data is Stored

Your data is stored in secure, encrypted databases hosted on Neon (PostgreSQL). We maintain data redundancy and backups to ensure availability and recovery capabilities.

Security Measures

  • End-to-end encryption for sensitive credentials
  • HTTPS/TLS encryption for all data in transit
  • Role-based access control (RBAC) for data access
  • Regular security audits and penetration testing
  • Secure password hashing and credential storage
  • Authentication via secure session tokens

Data Retention

We retain your account data for as long as your account is active. Audit logs are retained for compliance and security purposes. You can request data deletion through your account settings, subject to legal retention requirements.

Data Sharing

With External Platforms

User Manager connects to and shares data with external platforms (Slack, Hex, Dagster, and others) only to:

  • Authenticate users on your behalf
  • Sync user information between systems
  • Manage user access and permissions

These integrations are controlled by you through our connector system, and you retain full control over what data is shared.

With Service Providers

We may share limited data with trusted service providers who help us operate the platform:

  • Cloud infrastructure providers (data hosting)
  • Analytics providers (aggregated usage data)
  • Payment processors (billing information)

All service providers are bound by confidentiality agreements and only access data necessary to provide their services.

Legal Compliance

We may disclose data when required by law, court order, or government request, and we will notify you of such requests unless legally prohibited.

No Sales

We do not sell, rent, or trade your personal data to third parties.

Auth Bridge Extension

If you use our Auth Bridge Chrome Extension, please note:

  • The extension runs locally on your device and accesses browser cookies and local storage
  • Cookie and local storage data is not transmitted to our servers without your explicit action
  • The extension communicates with User Manager only when you explicitly authorize it
  • See the Auth Bridge Extension Privacy Policy for detailed privacy information about the extension

Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal obligations)
  • Portability: Request your data in a portable format
  • Opt-out: Opt out of certain data processing activities
  • Withdraw Consent: Withdraw consent for data processing at any time

To exercise any of these rights, contact us at privacy@plicca.com.

Cookies and Tracking

We use cookies and similar tracking technologies to:

  • Maintain your session and remember your login
  • Remember your preferences and settings
  • Analyze platform usage and performance (via Vercel Analytics)
  • Prevent security threats

You can control cookie settings through your browser. Some features may not work properly if cookies are disabled.

Third-Party Links

Our platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these external services. We encourage you to review their privacy policies before providing any personal information.

Children's Privacy

User Manager is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we discover we have collected such information, we will delete it immediately.

Changes to This Policy

We may update this privacy policy occasionally to reflect changes in our practices, technology, legal requirements, and other factors. We will notify you of material changes by updating the "Last Updated" date above and/or sending you a notification. Your continued use of the platform after such modifications constitutes your acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this privacy policy or our privacy practices, please contact us:

Company: Plicca

Email: privacy@plicca.com

Website: https://plicca.com

GDPR and Data Protection

For residents of the European Union and other jurisdictions with similar data protection laws, we comply with applicable regulations including GDPR. Your data is processed based on:

  • Your explicit consent for certain processing activities
  • Legitimate interests in providing and improving our services
  • Performance of our contractual obligations to you
  • Compliance with legal obligations

You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.