Privacy Policy

This privacy notice for Kobumura LLC (doing business as SnappShot) describes how and why we might collect, store, use, and share your information when you use SnappShot.

SnappShot is a multi-tenant analytics dashboard. We connect to third-party services you already use — RevenueCat, Meta Ads, Google Ads, Twilio, Google Analytics, your own database, your git repository, and others — pull metrics from them on your behalf, and render those metrics in a single dashboard for you and your team.

If you do not agree with the terms of this policy, please do not use SnappShot. If you have questions or concerns, email us at help@kobumura.com.

Summary of key points

What personal information do we process? When you create a SnappShot account, we collect identity and contact details (name, email, phone if provided). When you connect a data source, we store encrypted credentials for that source so we can pull data on your behalf. We do not process sensitive personal information as defined under US state privacy laws.

Do we receive information from third parties? We receive data about your apps and ad accounts from the third-party services you connect (e.g. revenue totals from RevenueCat, ad spend from Meta). We do not receive information about you personally from third parties beyond what you connect yourself.

How do we process your information? We process your information to operate SnappShot, send you account-related communications, respond to support requests, and comply with law. We process information only when we have a valid legal reason to do so.

Do we sell your information? No. We do not sell personal information, and we have not sold it in the preceding twelve months. We do not share personal information with third parties for their own marketing.

How do we keep your information safe? We encrypt third-party API credentials at rest using AES-256-GCM authenticated encryption. We isolate data by tenant at the database level. All connections to SnappShot use TLS. We run on AWS infrastructure with standard isolation.

What are your rights? Depending on where you live, you may have the right to access, correct, export, or delete your personal information. You can exercise these rights by emailing us or — for deletion — using the Delete Account option in your settings.

1. What information do we collect?

Personal information you give us

When you register for SnappShot, we collect:

• Name (first and last)
• Username
• Email address
• Phone number (optional, for SMS-based invites)
• Password (stored as a bcrypt hash, never in plaintext)
• Organization and app names you create
• Contact preferences and notification settings

We do not process sensitive personal information.

Third-party API credentials you provide

When you connect a data source (RevenueCat, Meta Ads, Google Ads, Twilio, Google Analytics, Stripe, OneSignal, and so on), you provide the API keys, OAuth tokens, or other credentials needed for SnappShot to read data from that service. These credentials are encrypted at rest using AES-256-GCM authenticated encryption. We never transmit these credentials to any party other than the corresponding third-party service they authenticate to.

Data pulled from third-party sources

On your behalf and using credentials you supplied, we pull aggregated business metrics from each connected source — for example, daily MRR from RevenueCat, ad spend from Meta, signup counts from your own database. This cached data powers your dashboards. It is scoped to the organization and app that connected the source, and it is not shared across tenants.

We do not pull or store end-user personally identifiable information from the sources you connect. We are interested in counts, totals, and trends, not individual user records.

Information automatically collected

When you use SnappShot, we automatically collect some technical information:

• Log and usage data: IP address, browser type, device type, operating system, pages viewed, timestamps, and errors our servers encountered while serving your requests.
• Cookies and similar technologies: we use a session cookie (PHPSESSID) to keep you logged in, a theme preference cookie (ss-theme), and an optional remember-me cookie (SS_REMEMBER) if you check that box at login. All are scoped to the exact host you visited and set with Secure, HttpOnly, and SameSite=Strict attributes. We may load Google Analytics 4 if enabled, which sets its own cookies to measure site usage.

2. How do we process your information?

• To provide the service. We use your credentials to pull data from the sources you connect, render dashboards, run scheduled snapshots, and deliver email/SMS notifications you have configured.
• To manage your account. We use your email and phone to send you account-related communications — invites, password resets, billing receipts.
• To respond to support requests. If you submit a feedback ticket or contact support, we use the information you provide to help you.
• For security and fraud prevention. We use log data to detect and respond to abuse.
• To comply with law. We may process information to meet legal obligations.
• With your consent. We may process information for other purposes with your consent.

3. What legal bases do we rely on?

We only process personal information when we have a valid legal basis to do so.

If you are in the EU or UK, the GDPR and UK GDPR require us to name the bases we rely on. Those are:

• Consent — when you have given us permission.
• Performance of a contract — when processing is necessary to provide the service you have signed up for.
• Legal obligations — when we are required to comply with law.
• Legitimate interests — when we have a real business reason that is balanced against your rights (for example, running security monitoring).

4. When and with whom do we share your personal information?

We do not sell your personal information. We share it only in these situations:

• With service providers. We use a small set of service providers to run SnappShot — notably AWS Lightsail (hosting), SendGrid via our email relay (transactional email), Stripe (payment processing if you subscribe), and Twilio (SMS invites if you opt in). Each provider is bound by a written contract and processes information on our behalf, not for their own purposes.
• With organizations you are a member of. If you are part of an organization or app in SnappShot, other members of that organization may see your name, email, and role. Members of a different organization cannot.
• Business transfers. If Kobumura is acquired or merges with another company, information may be transferred as part of that transaction.
• Legal requirements. We may disclose information if required by law, subpoena, or court order.

We do not transfer data between tenant organizations. Your organization's data is queried in isolation from every other organization.

5. Cookies and tracking

SnappShot uses:

• Session cookie (PHPSESSID): keeps you signed in for the duration of your session. Required.
• Theme preference cookie (ss-theme): remembers whether you prefer light or dark mode.
• Remember-me cookie (SS_REMEMBER): optional, set only if you check the "remember me" box at login. Lets you skip logging in on return visits. Rotated each time it is used.
• Google Analytics 4 cookies (if enabled): measure aggregate site traffic. These are set by Google and governed by Google's own privacy policy.

You can clear cookies or block them via your browser. If you block the session cookie you cannot sign in. Blocking the theme or remember-me cookies only removes their respective convenience functions.

6. How long do we keep your information?

We keep your personal information for as long as you have an account with us, plus a retention period required by law (tax and accounting records, typically seven years).

When you delete your account, see Section 9 below for the specific timeline.

7. How do we keep your information safe?

• Credentials at rest are encrypted with AES-256-GCM authenticated encryption. The encryption key is held separately from the database.
• Passwords are stored as bcrypt hashes. We never see or store your password in plaintext.
• All connections to SnappShot use TLS.
• Session cookies are set with Secure, HttpOnly, and SameSite=Strict.
• Tenant isolation is enforced at the database query level. Every query that returns tenant data is scoped to the current organization.
• Read-only posture with third-party APIs. We pull data from the services you connect. We do not write back, modify, or delete data in those services on your behalf.

No system is 100% secure, and we do not promise that we cannot be breached — but we build and operate SnappShot with the security posture we would want if it were our data.

8. Do we collect information from minors?

SnappShot is a business analytics product. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected information from someone under 18, we will deactivate the account and delete the data. If you believe a minor has created an account, please contact us at help@kobumura.com.

9. Your privacy rights

Depending on where you live, you may have the right to:

• Access the personal information we hold about you.
• Correct inaccurate information.
• Delete your personal information.
• Export a copy of the personal information you have given us.
• Object to or restrict our processing of your information.
• Withdraw consent where we rely on it.

To exercise any of these rights, email us at help@kobumura.com. We will respond within the timeframe required by your jurisdiction's law (typically 30–45 days).

Leaving SnappShot — pause, delete, or export

When you are ready to leave SnappShot, we offer four options. You choose which one fits. "Delete my account" can mean different things to different people — we would rather you tell us which thing you mean than assume.

Option 1: Pause

A pause preserves everything. Your account, org memberships, dashboard configuration, and stored third-party credentials all stay intact, encrypted at rest, exactly as they were. What a pause does:

• Scheduled data pulls stop. We do not hit your connected APIs.
• If you have an active paid subscription, it is cancelled. When you reactivate, you re-subscribe at the pricing then in effect.
• Your session is ended. If you log in, you land on a reactivation page with a one-click Resume button.
• To teammates in any organization you belong to, you appear as "Paused" rather than active.

A pause is indefinite. We do not auto-transition a paused account to deletion. If you come back two years later, your setup is waiting. If you never come back, we keep the data encrypted and inactive. You can move from paused to any of the delete options below at any time.

Option 2: Delete with a 30-day grace window

This is the standard "I'm probably done, but I might change my mind" option. When you confirm:

• Your session ends immediately and you are signed out.
• Stored third-party API credentials are purged from our database. Where the provider's API supports programmatic revocation, we call it to revoke on the provider side too.
• Scheduled data pulls stop.
• Your account is marked pending deletion with a scheduled deletion date 30 days out. We email you a confirmation with that date.

During the 30-day grace window, logging in redirects you to a one-click restore page. Restoring reinstates everything except the credentials that were purged at deletion — those you reconnect yourself. After 30 days, the deletion becomes permanent: your name, email, phone, and username are removed or replaced with an anonymous identifier; session and reset tokens are erased; organization memberships are removed; and support tickets and feedback you submitted are anonymized to "Former user" rather than deleted (so organization admins retain the operational history).

Aggregated organization-level metrics that were already computed (for example, an app's daily MRR) remain after deletion, because they are not linked to you specifically and removing them would break dashboards for other members of the same organization.

Option 3: Delete immediately

For when you are sure. All the steps above happen in a single transaction at the moment you confirm: credentials purged, sessions terminated, membership removed, PII anonymized. There is no 30-day grace and no restore path. You receive a confirmation email.

Option 4: Export my data

Available on its own, or as a checkbox alongside options 2 or 3. You download a JSON bundle containing your account profile, dashboard configuration, saved views, and any custom metric definitions you created. The export does not include cached data from third-party sources (that data is owned by the provider) and does not include API credentials in plaintext. If you pair Export with a delete option, the bundle is generated and downloaded before any destructive action runs.

Special cases

• If you are the only member of an organization, any delete option requires you to either transfer ownership to another member first or explicitly delete the organization and all its data in the same flow. Pause is allowed regardless — a solo-owner pause just puts the whole organization in paused state.
• If you have an active paid subscription, cancel it first before deleting. (Pause cancels the subscription for you automatically, since you may come back; delete assumes you are done and we leave the subscription control to you to avoid accidentally cancelling something you were already planning to handle.)
• If you revoke SnappShot's OAuth permissions directly with a provider (for example, through Meta's app settings), the provider notifies us via a data-deletion callback. We purge the cached data for that specific source within 30 days of receiving the callback, without touching your SnappShot account — this narrower operation lets you disconnect one source without leaving the product.

10. Do-Not-Track signals

There is no single agreed standard for browser DNT signals. We do not currently respond to DNT signals. If one becomes standard, we will update this policy.

11. California residents

If you reside in California, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the CPRA. These include the right to know what personal information we have collected about you, the right to delete that information, the right to correct inaccuracies, the right to limit the use of sensitive personal information (we do not process sensitive personal information, so this is a no-op for us), and the right to not be discriminated against for exercising these rights.

We have not sold or shared personal information for cross-context behavioral advertising in the preceding twelve months, and we do not plan to. You may exercise your CCPA rights by emailing help@kobumura.com.

Categories of personal information we collect (CCPA disclosure)

In the past twelve months we have collected the following categories of personal information:

• Identifiers — name, email address, phone number, IP address, account username. Collected: yes.
• Customer records — billing name and address if you subscribe to a paid plan. Collected: yes, via Stripe.
• Commercial information — subscription tier, billing history. Collected: yes if you subscribe.
• Internet activity — pages viewed in SnappShot, session logs. Collected: yes.
• Professional information — organization name, role within the organization. Collected: yes.
• Geolocation, biometric, sensitive personal information. Not collected.

12. Virginia, Colorado, Connecticut, and Utah residents

If you reside in Virginia, Colorado, Connecticut, or Utah, you have rights under those states' consumer data protection laws broadly similar to the California rights above: to know, to access, to correct, to delete, to port, and to opt out of targeted advertising or the sale of your personal data. To exercise these rights, email help@kobumura.com. If we decline your request, you have the right to appeal our decision.

We do not sell personal data and do not engage in targeted advertising based on your SnappShot activity.

13. Data deletion requested by third-party platforms

When you connect your Meta, Google, or other OAuth-based account to SnappShot, the platform gives you a way to revoke our access at any time from within the platform's own app-permissions settings. When you do so, the platform notifies SnappShot via a data-deletion callback. Within 30 days of receiving the callback, we purge the cached data we pulled from that source on your behalf.

This is narrower than deleting your SnappShot account: it only removes the data from the revoked source. Your account, other connected sources, and organization memberships are unaffected.

14. Changes to this policy

We may update this policy occasionally. The updated version is indicated by a new Last updated date at the top. Material changes will be announced in-product or via email to the address on file. Your continued use of SnappShot after the updated policy takes effect constitutes acceptance of the changes.

15. How to contact us

For questions about this policy or to exercise any right described above, email us at help@kobumura.com, or write to:

Kobumura LLC
2631 Housley Road #1212
Annapolis, MD 21401
United States

16. Review, update, or delete your data

To review or change the information in your account, sign in and visit your account settings. To delete your account, use the Delete Account option there. See Section 9 for what happens when you delete.

If you prefer to request deletion, correction, or export by email instead of through the app, send the request to help@kobumura.com from the email address on file and we will handle it.