Privacy Policy

Last updated: May 17, 2026

This policy explains how Puzzly (puzzlyai.com) collects, uses, and protects the personal information of platform users, in accordance with the Israeli Privacy Protection Law, 5741-1981 and the Privacy Protection (Data Security) Regulations, 5777-2017.

1. What We Collect

Type of dataWhat exactlyWhy
Account detailsFull name, email, password (encrypted)Create your account, identify you, give you access
Payment detailsEncrypted token only — card details are not stored by PuzzlyBill subscriptions, process refunds
Created contentPuzzles, word searches, activity pagesSave your creation history
Usage dataPages viewed, tools used, access dates, IP addressImprove the service, security
CommunicationsSupport inquiriesRespond to you, improve the service
CookiesSession cookies, preferencesKeep you signed in, improve UX

Puzzly does not sell personal information to third parties.

2. Authorized Service Providers

To deliver the service, information is shared with the following provider categories:

Provider categoryWhat's sharedPurpose
Stripe — payment processingEncrypted token, emailSubscription billing, transaction management
Supabase — storage & databaseAccount data, created contentSecure storage of service data
Vercel — infrastructure & app deliveryAccess data (logs)Serving the app and securing traffic
OpenAI — artificial intelligenceContent submitted to AI toolsGenerating puzzle content and activity pages
Resend — email deliveryEmail addressInvoices, service updates, alerts
Some providers store data outside Israel (US, Europe). Using the service constitutes consent to such international data transfers.

3. How Long We Keep Data

  • Active account: for the lifetime of the account.
  • After cancellation: immediate deletion from active servers once the request is approved.
  • Financial records: 7 years per the Israeli Income Tax Ordinance — for internal record-keeping only.
  • Inactive account: after 12 months of inactivity, with prior notice — may be deleted.
  • Support inquiries: up to 3 years for service improvement purposes.

4. Cookies

  • Essential cookies: preserve sign-in state — required to operate the service.
  • Preference cookies: save your interface settings.

5. Data Security

Puzzly uses transport encryption (HTTPS/TLS), password hashing, restricted data access, and ongoing security monitoring. Absolute security cannot be guaranteed. In the event of a material breach, Puzzly will notify affected users.

6. Your Rights

Under the Israeli Privacy Protection Law, you are entitled to:

  • Access the information we hold about you.
  • Correct inaccurate information.
  • Request deletion (subject to legal retention obligations).
  • Object to use for direct marketing.

For requests: privacy@puzzlyai.com

7. Children

The service is intended for users aged 18 and over. Puzzly does not knowingly collect information about minors.

8. Policy Updates

Material changes will be communicated to users by email at least 14 days in advance. The last-updated date always appears at the top of this document.

9. Contact

Puzzly will respond to privacy requests within 14 business days.