BaselineNext Privacy Policy
Version 1.0 — Effective 20 May 2026
1. Overview
This Privacy Policy is a generic starter document for BaselineNext. The project owner should replace it with product-specific legal content before launch.
It explains the baseline categories of information a SaaS application built from this starter may collect, use, store, and protect.
2. Information We Collect
Depending on how a downstream project is configured, the application may collect:
- account information such as name, email address, and timezone;
- user profile information such as display name, identifier, status, and preferences;
- subscription and billing information;
- support request content;
- audit, security, and usage metadata;
- device, browser, and operational telemetry.
3. Authentication And Account Data
BaselineNext includes account authentication, user authentication, session management, verification, password reset, and administrative account tooling. These features require storing account and user records, session metadata, and related security events.
4. Service Providers
The baseline can integrate with infrastructure and service providers for hosting, database storage, email delivery, payments, logging, observability, and cache or queue services. Downstream projects should list the providers they actually use.
5. Billing Data
Payment information is processed by third-party payment providers such as Stripe. BaselineNext does not store full payment card details.
6. Data Retention
Data should be retained only as reasonably necessary for platform operation, legal obligations, dispute handling, security, and abuse prevention. Downstream projects should define their retention periods.
7. Security
We implement reasonable technical and organisational safeguards. No system can guarantee absolute security.
8. Your Rights
Accounts may request access to account data, correction of inaccurate data, and deletion requests where legally permitted.
9. Cookies and Analytics
We may use cookies and analytics technologies for authentication, performance monitoring, operational metrics, and service improvement.
10. International Processing
Data may be processed in jurisdictions outside Australia.
11. Changes
We may update this Privacy Policy periodically. Continued use after changes constitutes acceptance.
12. Contact
Privacy enquiries may be directed to BaselineNext support.