Skip to content

Privacy Policy

Last updated: May 25, 2026

1. Who we are

ReleasePort is operated by Faymere LLC, a Wyoming limited liability company ("we", "our", "us"). We operate releaseport.com, a release-tracking and feed-aggregation service. We are the data controller for personal data collected through the service.

Registered address: 30 N Gould St Ste R, Sheridan, WY 82801, USA

Contact: [email protected]

2. What data we collect

  • Account data: your email address, collected when you request a magic-link sign-in. This is the only personally identifying data we require.
  • Docked tools (your stack): the list of software tools you choose to track. Stored as rows in our database linked to your account.
  • Feed subscriptions: curated feeds you opt into.
  • Taste profile: a preference vector automatically computed from your docked tools. Used to rank the Discover page. Stored on your account row. See Section 5 (Automated Profiling) for details.
  • Engagement signals: interactions such as views, bookmarks, and clicks — used to improve your feed. Tied to your user ID.
  • Session tokens: authentication cookies used to keep you signed in — a short-lived session token and a longer-lived renewal token. See our Cookie Policy for details.

We do not collect: passwords, phone numbers, real names, location data, or device identifiers beyond what is inherent in standard HTTP logs.

3. How we use your data

  • To authenticate you via magic link and maintain your session (legal basis: performance of contract).
  • To deliver your personalised release feed and digest emails (legal basis: performance of contract).
  • To compute personalised recommendations via your taste profile (legal basis: performance of contract / legitimate interest — see Section 5).
  • To send transactional emails: magic-link sign-in, account deletion confirmation, email-change verification (legal basis: performance of contract).
  • To send Weekly Supply Chain Security Brief emails you have opted into containing releases from your docked tools (legal basis: performance of contract / legitimate interest).
  • To comply with legal obligations (legal basis: legal obligation).

4. AI and local processing

Release notes and changelogs are summarised using Ollama, an AI model that runs locally on our own servers. No user data and no changelog text is sent to any external AI service or API. All AI processing happens within our infrastructure.

The changelogs processed are public GitHub release notes — they do not contain personal data.

5. Automated profiling (GDPR Article 22)

ReleasePort computes a taste profile (a preference vector) from the tools you dock. This profile is used to rank results on the Discover page — tools more similar to your stack appear higher. This constitutes automated processing under GDPR Article 22.

Key facts:

  • The taste profile is derived only from your own choices (tools you dock).
  • It is used only for recommendation ranking — it does not affect pricing, access, or any decision with legal or similarly significant effect.
  • It is never shared with third parties.
  • You can effectively reset your taste profile by untracking all tools or by deleting your account.

6. Analytics (Umami)

ReleasePort uses Umami, a privacy-friendly first-party analytics service, to understand how visitors use the site. Umami collects:

  • Page views and page paths
  • Referrer information
  • Browser, operating system, and device class (user agent classification)
  • Country-level location (via IP geolocation, not GPS)
  • Custom events when you interact with certain features

Umami does not collect personally identifiable information, does not use cookies, does not track you across other websites, and does not build advertising profiles. All analytics data is stored on our own infrastructure at pulse.releaseport.com and is never shared with third parties.

7. Cookies and tracking

We use only strictly necessary cookies. No advertising or tracking cookies are set by ReleasePort. See our full Cookie Policy.

Cloudflare (our CDN and DDoS protection provider) may set __cf_bm and cf_clearance cookies for bot protection. These are strictly necessary for service security.

8. Third-party data processors

We share data with the following processors, all of whom are subject to appropriate data processing agreements:

  • Listmonk — email delivery for digest emails and transactional messages. Receives your email address. Self-hosted on our own infrastructure — your data does not leave our servers via Listmonk.
  • Cloudflare — reverse proxy, CDN, and DDoS protection. All traffic to releaseport.com passes through Cloudflare, which processes your IP address and HTTP request metadata. JavaScript libraries (HTMX, Alpine.js) are loaded from unpkg.com (Cloudflare-backed CDN), which receives your IP address on each page load. Cloudflare Privacy Policy.
  • Cloudflare Turnstile — bot protection on the login form (when enabled). Processes your IP address and browser interaction data to distinguish humans from bots. Cloudflare Privacy Policy.

We do not use Google Analytics, Meta Pixel, or any advertising or third-party analytics services. Inter font files are self-hosted — your browser does not contact Google Fonts when loading ReleasePort.

9. Data retention

  • Account data: retained until you delete your account. You can do this at any time in Settings → Danger Zone.
  • Magic link tokens: expire after 15 minutes and are purged periodically.
  • Digest email history and engagement signals: deleted immediately when you delete your account.
  • Backup copies: purged within 90 days of account deletion.

10. Your rights (GDPR / EEA and UK)

If you are located in the EEA or UK, you have the following rights under GDPR:

  • Access (Article 15): request a copy of the personal data we hold about you.
  • Rectification (Article 16): correct inaccurate data (email changes available in Settings).
  • Erasure / Right to be forgotten (Article 17): delete your account and all personal data immediately. Available in Settings → Danger Zone. We will send a confirmation email and delete all your data from active systems upon request.
  • Portability (Article 20): receive your data in a machine-readable format. Contact us to request an export.
  • Object to processing (Article 21): object to processing based on legitimate interest, including the taste profile recommendation system.
  • Lodge a complaint: you may lodge a complaint with your national data protection supervisory authority.

To exercise any right, email [email protected]. We will respond within 30 days.

11. California residents (CCPA)

California residents have the following rights under the California Consumer Privacy Act:

  • Right to know: the categories and specific pieces of personal information we have collected about you.
  • Right to delete: request deletion of your personal information (available via account deletion in Settings).
  • Right to opt-out of sale: we do not sell, rent, or share your personal information with third parties for their own commercial purposes.
  • Right to non-discrimination: we will not discriminate against you for exercising your rights.

To submit a CCPA request, email [email protected].

12. Jurisdiction and governing law

Faymere LLC is registered in the state of Wyoming, USA. This Privacy Policy is governed by the laws of the State of Wyoming. For EU/EEA users, we comply with GDPR. For UK users, we comply with the UK GDPR. For California users, we comply with the CCPA.

13. Contact and security

For privacy requests, data inquiries, or to report a security concern:

Email: [email protected]

Post: Faymere LLC, 30 N Gould St Ste R, Sheridan, WY 82801, USA

14. Changes to this policy

We may update this policy from time to time. We will notify you of material changes by email or via an in-app notice. The date at the top of this page reflects the date of the most recent revision. Continued use of the service after changes constitutes acceptance.

Beta — feedback welcome: [email protected]