Glyfo← Back to app

Legal

Privacy Policy

Last updated: June 6, 2025

1. Overview

Glyfo (“we”, “our”, or “us”) operates the design token playground at glyfo.co. This policy explains what data we collect, why we collect it, and how we protect it. We collect the minimum necessary to make the product work.

2. Data we collect

Without an account

Your design tokens (fonts, colors, spacing, etc.) are stored entirely in your browser’s local storage. Nothing is sent to our servers.

With an account

When you sign in with Google, we receive your name, email address, and profile photo from Google. We store these in our database to identify your account. Styles you choose to save are stored server-side linked to your user ID.

Usage data

We may collect standard server logs (IP address, browser type, pages visited, timestamps) for security and reliability purposes. These are not sold or used for advertising.

3. How we use your data

  • To authenticate you and maintain your session
  • To store and retrieve your saved styles
  • To respond to support requests
  • To detect and prevent abuse or security issues

We do not sell your data. We do not use it for advertising.

4. Third-party services

Google OAuth— used for sign-in. When you authenticate, Google’s privacy policy applies to that interaction. We only receive the profile information Google provides.

Neon — our database provider. Your account data and saved styles are stored in a Neon PostgreSQL database hosted on AWS.

Vercel— our hosting provider. Requests to glyfo.co pass through Vercel’s infrastructure.

Google Fonts— font metadata and font files are loaded from Google’s CDN. Google’s privacy policy applies to those requests.

5. Data retention

Account data and saved styles are kept for as long as your account is active. You may delete your account and all associated data at any time by contacting us. Browser local storage data is fully under your control and can be cleared at any time.

6. Your rights

You have the right to:

  • Access the data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Export your saved styles via the Export button in the app

To exercise any of these rights, email us at hello@glyfo.co.

7. Cookies

We use a single session cookie set by NextAuth to keep you signed in. We do not use tracking cookies or third-party advertising cookies.

8. Children

Glyfo is not directed at children under 13. We do not knowingly collect data from children. If you believe we have inadvertently collected such data, contact us and we will delete it promptly.

9. Changes to this policy

We may update this policy from time to time. Material changes will be noted by updating the date at the top of this page. Continued use of Glyfo after changes constitutes acceptance of the revised policy.

10. Contact

Questions about this policy? hello@glyfo.co