OpenPartner
GitHub Get started
Legal

Privacy Policy

Last updated: April 25, 2026

This Privacy Policy explains how Brightyard, Inc., operating as Coherence ("OpenPartner," "we," "us"), collects, uses, and shares information when you use OpenPartner — our hosted partner program platform — or visit openpartner.dev. The self-hosted version of OpenPartner runs entirely on your own infrastructure and is not covered by this policy; consult your own privacy practices for those deployments.

Information we collect

Information you provide

  • Account information: name, email, organization name, billing details when you sign up for a hosted plan.
  • Configuration data: partner program settings, commission rules, branding, and similar choices you enter into your dashboard.
  • Communications: messages you send to us through email, contact forms, or support channels.

Information collected automatically

  • Usage data: how you interact with the dashboard — pages visited, actions taken, errors encountered.
  • Device data: IP address, browser type, operating system, referring URL.
  • Cookies and similar technologies: a session cookie to keep you signed in, and minimal first-party analytics cookies to understand product usage. We do not use third-party advertising trackers.

Information we process on your behalf (Customer Data)

When you operate a partner program through OpenPartner, we process attribution data on your behalf — clicks on partner links, identity stitches, conversion events, and payouts. This data belongs to you. We act as a processor under GDPR-style frameworks; you are the controller. You can export this data at any time and delete it on request.

How we use information

  • Provide and improve the OpenPartner service.
  • Process payments via Stripe.
  • Send transactional emails (sign-in links, billing receipts, important account notices).
  • Send product updates and announcements when you opt in. You can unsubscribe at any time.
  • Detect, investigate, and prevent fraud or abuse.
  • Comply with legal obligations.

How we share information

We do not sell your data. We share information only with:

  • Service providers who help us run OpenPartner (e.g., Stripe for payments, Postmark or your configured SMTP for email, DigitalOcean for hosting). They are bound by confidentiality and data-protection obligations.
  • Legal compliance: if required by law, valid legal process, or to protect rights and safety.
  • Business transfers: if OpenPartner is acquired or merges, your data may transfer as part of that transaction. You will be notified.

Your rights

Depending on where you live, you may have the right to:

  • Access the data we hold about you.
  • Correct inaccurate data.
  • Delete your data ("right to erasure").
  • Export your data in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent where processing is based on consent.

To exercise any of these rights, email us at [email protected]. Customer Data can always be exported directly from your dashboard.

Data retention

We retain account and Customer Data for as long as your account is active. After account closure, we retain core attribution and payout records for up to 7 years to meet financial-recordkeeping obligations. Other data is deleted within 90 days of closure unless retention is required by law.

Security

We use AES-256-GCM encryption for sensitive credentials at rest, TLS in transit, and least-privilege access controls internally. No system is perfectly secure; if we experience a breach affecting your data, we will notify you without undue delay.

Children's privacy

OpenPartner is not directed to children under 16, and we do not knowingly collect data from them. If you believe we have, contact us and we will delete it.

International transfers

OpenPartner is operated from the United States. If you access the service from outside the US, your data may be transferred to and processed in the US. We rely on standard contractual clauses or equivalent protections where required.

Changes

We may update this policy as the product evolves. Material changes will be announced via email or in-app notice at least 30 days before they take effect.

Contact

Questions or requests: [email protected].

Note: this template is a sensible starting point for a SaaS privacy policy and reflects how OpenPartner is built. It is not legal advice. Have it reviewed by counsel before relying on it for compliance.