Privacy Policy

Last updated: October 14, 2025

Short Version

We don't want to manage or sell your personal information, so we don't collect any more than absolutely necessary. Registration and payments are done through third parties - we don't store any passwords or credit card information.

1. Introduction

Journal Briefs LLC ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our JournalBriefs service ("Service").

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using the Service:

  • Account Information: Email address from your social login provider (Google, etc.)
  • Email Preferences: Delivery email address (if different from registration email), timezone
  • Subscription Preferences: List of subscribed journals, subscription tier
  • Communications: Messages you send to our support team

Important: We use social login providers exclusively (such as Google) for authentication. We never store passwords. Authentication is handled entirely by the social provider, and we only receive your email address from them.

Payment Information: All payment processing is handled by third-party payment processors (such as Stripe). We never store credit card numbers, CVV codes, or other payment details. We only receive confirmation of successful payments and subscription status from our payment processor.

2.2 Information Automatically Collected

When you use the Service, we automatically collect operational data:

  • Journal Subscriptions: Which journals you are subscribed to
  • Processing Metrics: Number of articles processed for your account, number of emails delivered
  • Performance Data: Daily processing times for generating summaries
  • Error Logs: System errors and delivery failures for troubleshooting

We do not track browsing behavior, page views, time spent on pages, or other usage analytics beyond what is necessary to operate the Service.

2.3 Information from Third Parties

We may receive information from:

  • Social Login Providers: Email address and basic profile information when you authenticate through Google or other supported providers
  • Payment Processors: Transaction confirmations, subscription status, and payment success/failure notifications (no payment details)
  • Academic Publishers: Article metadata and availability information

3. How We Use Your Information

We use your information to:

  • Provide the Service: Generate summaries, send email digests, manage your subscriptions
  • Process Payments: Handle billing, invoicing, and subscription management
  • Improve the Service: Analyze processing performance, optimize features, develop new capabilities
  • Personalize Experience: Customize content based on your journal selections and delivery preferences
  • Communicate: Send transactional emails (digests, billing notifications, service updates) and support responses
  • Security: Detect and prevent fraud, abuse, and security incidents
  • Legal Compliance: Meet legal obligations and enforce our Terms of Service

We do not send promotional or marketing emails. All emails from us are transactional in nature (article digests, billing notifications, service updates, or support responses).

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

  • Contract: Processing necessary to provide the Service you requested
  • Consent: You have given clear consent for specific processing
  • Legitimate Interests: Processing necessary for our legitimate business interests
  • Legal Obligation: Processing necessary to comply with the law

5. How We Share Your Information

We do not sell your personal information. We may share your information with:

5.1 Service Providers

Third-party companies that help us operate the Service:

  • Cloud hosting and storage providers
  • Social authentication providers (Google, etc.)
  • Payment processing services (e.g., Stripe) - note that these providers handle payment information directly and never share it with us
  • Email delivery services
  • Analytics providers
  • Customer support tools

5.2 Legal Requirements

We may disclose your information if required by law or in response to:

  • Court orders or legal processes
  • Government or regulatory requests
  • Protection of our rights or property
  • Prevention of fraud or security threats

5.3 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your information may be transferred as part of that transaction. We will notify you of any such change.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption of data in transit (HTTPS/TLS) and at rest
  • No password storage - authentication handled exclusively by trusted social login providers
  • No payment information storage - all payment processing handled by PCI-compliant third-party processors
  • Regular security audits and updates
  • Access controls and authentication
  • Employee training on data protection

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Active Accounts: While your account is active and for a reasonable period thereafter
  • Deleted Accounts: Most data is deleted within 90 days, except where retention is required by law
  • Transactional Records: Billing and payment records retained for 7 years for tax and legal compliance
  • Analytics Data: Aggregated, anonymized data may be retained indefinitely

8. Your Rights and Choices

Depending on your location, you may have the following rights:

8.1 Access and Portability

Request a copy of your personal data in a structured, commonly used format.

8.2 Correction

Update or correct inaccurate personal data through your account settings.

8.3 Deletion

Request deletion of your personal data, subject to legal retention requirements.

8.4 Opt-Out

Since we do not send promotional or marketing emails, there is no need to opt out. All emails you receive from us are transactional (article digests, billing notifications, or service updates). You can adjust your digest delivery preferences or pause digests entirely in your account settings.

8.5 Withdraw Consent

Where processing is based on consent, withdraw it at any time without affecting prior processing.

8.6 Object to Processing

Object to processing based on legitimate interests.

To exercise these rights, contact us at support@journalbriefs.com. We will respond within 30 days.

9. Cookies and Tracking

JournalBriefs does not use cookies or tracking technologies. We do not track your browsing behavior, use analytics cookies, or employ any third-party tracking services.

Your browser may store minimal technical information required for authentication with your social login provider (Google, etc.), but this is managed by the provider, not by us. We do not set any cookies ourselves.

This means:

  • No advertising cookies
  • No analytics or tracking cookies
  • No cross-site tracking
  • No behavioral profiling

10. Third-Party Links

The Service may contain links to third-party websites and services, including journal publishers. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for countries with equivalent data protection
  • Binding corporate rules for intra-group transfers

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your rights

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on this page
  • Updating the "Last updated" date
  • Sending email notification for significant changes

Your continued use of the Service after changes constitutes acceptance of the updated policy.

15. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Journal Briefs LLC
Email: support@journalbriefs.com

Data Protection Officer (if applicable):
For EEA residents, you may also contact your local data protection authority with concerns.