MRR Save

This Privacy Policy explains how MRR Save LLC ("we", "us") collects, uses, shares, and protects personal data when you use MRR Save (mrrsave.com) and its embeddable cancellation widget. It applies to the founders and teams who sign up for MRR Save (our "Customers") and, in the ways described below, to the end users of our Customers' products who interact with the widget.

1. Who we are and our two roles

MRR Save plays two distinct privacy roles, and it matters which one applies to you:

Controller— for our direct Customers' account and usage data, we decide why and how the data is processed.
Processor / operator— when our Customers install the widget on their own product, the end-user data captured at the cancel moment (such as a cancellation reason or whether an offer was accepted) is processed on the Customer's behalf and under their instructions. That Customer is the controller of their end users' data; this policy describes our handling, but the Customer's own privacy policy governs that relationship.

2. Information we collect

Information you provide directly

Account information — your name and email address, collected when you sign in with Google or with an email magic link.
Workspace and team data — workspace name, team member invitations, and roles.
Configuration — cancellation survey questions, retention offers, branding, dunning and win-back settings.
Support communications — anything you send us by email or other support channels.
Optional API keys — if you bring your own LLM API key, we store it to power AI features for your workspace.

Information collected automatically

Usage data — pages and features used, actions taken in the dashboard, and timestamps.
Device and connection data — IP address, browser type, operating system, and similar technical information.
Authentication cookies — a session cookie that keeps you signed in.

Information from third parties

Google — when you sign in with Google, we receive your name, email address, and profile identifier.
Stripe — when you connect your Stripe account, we receive subscription, customer, and payment-event data needed to auto-apply offers, run dunning, and measure recovered revenue. We do not receive or store full card numbers; payments are handled by Stripe.

Data we process on behalf of our Customers (end users)

Cancellation responses — the reason an end user selects or writes when they click cancel, and the outcome (saved, offer accepted, or cancelled).
Subscription identifiers — the Stripe customer and subscription IDs needed to apply an offer or attribute an outcome.
AI-clustered exit interviews — free-text responses may be sent to an LLM provider to group recurring cancellation themes.

Sensitive data. MRR Saveis not designed to collect special categories of data (such as health, biometric, or children's data). Please do not configure surveys that solicit it.

3. How we use information

Provide the service — run the cancellation widget, apply retention offers in Stripe, send dunning and win-back emails, and render your dashboard.
Analytics and insight — calculate save rate, recovered MRR, cohort retention, and cluster exit-interview themes so you can see who churned and why.
Product improvement — analyze aggregated usage to find where the dashboard confuses users and prioritize fixes.
Communications — send service, security, and billing notices; with your consent where required, product updates.
Security and fraud prevention — detect abuse, protect accounts, and maintain audit logs.
Legal compliance — meet our legal and regulatory obligations.

4. Legal basis for processing (GDPR and LGPD)

Where the GDPR (EU) or LGPD (Brazil) applies, we rely on the following legal bases:

Performance of a contract — to provide the service you signed up for.
Legitimate interests — to secure, analyze, and improve the service, balanced against your rights.
Consent — for non-essential cookies and optional marketing, where required. You may withdraw consent at any time.
Legal obligation — to comply with applicable law (for example, tax and accounting rules).

5. How we share information

We share personal data only as described here:

Service providers (sub-processors) — including Stripe (payments and subscription data), an LLM provider such as Anthropic (AI clustering of exit responses), Resend (transactional and notification email), Google (authentication), and our cloud hosting and database providers.
Our Customers — end-user cancellation data is made available to the Customer who operates the relevant widget.
Legal and safety — when required by law, legal process, or to protect rights, property, or safety.
Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this policy.

We do not sell your personal dataand we do not "share" it for cross-context behavioral advertising as those terms are defined under California law.

6. International data transfers

We and our service providers may process data in countries other than yours, including the United States and the European Union. Where required, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses and equivalent mechanisms under the LGPD for these transfers.

7. Data retention

Account data — kept while your account is active and for a limited period afterward to meet legal and accounting obligations, then deleted or anonymized.
Cancellation and analytics data — retained for the period you configure or for as long as needed to provide historical dashboards, then deleted or aggregated.
Logs — security and operational logs are kept for a limited period and then deleted.
On deletion — when you close your account or a Customer ends their use, we delete or anonymize the associated data within a reasonable period, except where retention is legally required.

8. Your rights

Depending on where you live, you may have some or all of the following rights. To exercise them, contact us at privacy@mrrsave.com. We respond within the timeframe required by applicable law.

Access a copy of your personal data.
Correct inaccurate or incomplete data.
Delete your data ("right to be forgotten").
Restrict or object to certain processing.
Data portability — receive your data in a usable format.
Withdraw consent and opt out of marketing.
Lodge a complaint with your supervisory authority — the EU data protection authority, the California Attorney General, or the ANPD in Brazil.

California (CCPA/CPRA). California residents have the right to know, delete, and correct personal information, and to opt out of sale or sharing. We do not sell or share personal information. We will not discriminate against you for exercising these rights.

If you are an end user of one of our Customers, please direct rights requests to that Customer; we will assist them as their processor.

9. Cookies and tracking

We use a small number of cookies. A strictly necessary session cookie keeps you signed in. We do not use advertising cookies. Where non-essential cookies are used, we request consent as required by the GDPR and ePrivacy rules, and you can manage cookies through your browser settings.

10. Security

We protect data with encryption in transit and at rest, access controls and authentication, scoped credentials for third-party connections, and operational monitoring. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

11. Children's privacy

MRR Save is a business tool and is not directed to children. We do not knowingly collect personal data from children under the age required by your jurisdiction. If you believe a child has provided us data, contact us and we will delete it.

12. Changes to this policy

We may update this policy from time to time. We will post the new version with an updated date and, for material changes, notify you by email or in-app notice before the change takes effect.

13. Contact us

For privacy questions or to exercise your rights, contact privacy@mrrsave.com, or write to MRR Save LLC, 123 Example Street, Wilmington, DE 19801, USA.