Privacy Policy
Effective Date: 8 July 2026
1. Introduction
Duskpulse Digital (ABN 62 216 896 168) ("we", "us", "our") is an Australian sole trader operating from Brisbane, Queensland, Australia that builds custom applications, stream tools, and digital products for creators and businesses. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you access our website at www.duskpulsedigital.com, use any of our products (including PulseBeacon), purchase digital goods through our store, participate in our creator program, or otherwise interact with our services.
By using our website or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our services.
2. Information We Collect
2.1 Account Data
When you create an account, we collect:
- Your email address
- A hashed version of your password (your password is never stored in plain text)
2.2 Purchase Data
When you purchase a product, we collect:
- Product entitlement records (which products you have purchased)
- Stripe checkout session identifiers (used to verify and reconcile transactions)
We do not store your full credit card number, CVV, or other sensitive payment card details. All payment card processing is handled entirely by Stripe.
2.3 License Key Data
For products that require activation, we collect:
- License key identifiers associated with your account
- Hardware identifiers (used for device binding to prevent unauthorised use)
2.4 PulseBeacon Configuration Data
If you use PulseBeacon, we collect the configuration details you provide:
- Twitch username (publicly available information)
- Kick username (publicly available information)
- YouTube channel ID (publicly available information)
- Discord server (guild) ID and Discord channel ID (used to deliver notifications)
- Selected theme preferences for notification cards
- Custom notification card content you have authored
2.5 Subscription and Billing Status
For PulseBeacon and other subscription-based services, we maintain records of your current subscription status and billing cycle information to manage access to features.
2.6 Quote and Contact Form Submissions
When you submit a quote request or contact form, we collect:
- Your name
- Your email address
- Your company name (if provided)
- Project details and any other information you include in your submission
2.7 Creator Program Data
If you participate in our creator program, we collect:
- Creator codes associated with your account
- Commission records linked to qualifying purchases
- Payout information required to process your earnings
2.8 Session Data
When you log in, we generate and store:
- Session tokens (stored in hashed form only)
- Login timestamps
2.9 Download Audit Logs
We maintain records of product downloads associated with your account, including which products were downloaded and when the download occurred. These logs are used for compliance and abuse prevention purposes.
3. Information We Do NOT Collect
We want to be transparent about the data boundaries of our services. We do not collect or store any of the following:
- Discord messages: We do not read, access, or store any messages from your Discord server. PulseBeacon only sends notifications to channels you configure - it does not read message content.
- Stream content: We do not record, store, or process any audio, video, or stream content from Twitch, Kick, or YouTube.
- User OAuth tokens from Twitch, Kick, or YouTube: We use our own application credentials to query public API endpoints. We do not request or store your personal OAuth tokens for these platforms.
- Chat logs, viewer lists, or personal messages: We do not access or store chat logs, viewer lists, subscriber lists, or direct messages from any streaming platform.
- Credit card numbers: Payment card information is handled entirely by Stripe and never touches our servers.
- Tracking pixels, third-party analytics, or ad networks: We do not use Google Analytics, Facebook Pixel, or any third-party analytics or advertising services. We do not serve ads and we do not participate in any ad network.
4. How We Use Your Information
We use the information we collect for the following purposes:
- Account authentication and session management: To verify your identity when you log in, maintain your session, and secure your account.
- Product entitlement and license key validation: To confirm that you have purchased a product and to validate licence keys and hardware bindings for activated software.
- PulseBeacon functionality: To check the live status of your configured Twitch, Kick, and YouTube channels and send notifications to your designated Discord channel when you go live.
- Payment processing: To facilitate purchases through Stripe, including creating checkout sessions and reconciling completed transactions.
- Transactional email communications: To send you purchase receipts, password reset emails, one-time passcode (OTP) verification emails, and invoice notifications related to your account activity.
- Creator program administration: To track commissions earned through creator codes and process payout requests.
- Customer support: To respond to enquiries, support requests, and submissions made through our contact and quote forms.
- Fraud prevention and abuse detection: To monitor for unauthorised access, licence key abuse, and other activities that violate our terms of service.
5. Data Storage and Security
We take the security of your personal information seriously and employ the following measures:
- Database: All user data is stored in Supabase (PostgreSQL) with encryption at rest enabled.
- Hosting: Our website and serverless functions are hosted on Netlify. Our database infrastructure is hosted on Supabase cloud.
- Password security: All passwords are hashed using bcrypt before storage. We never store passwords in plain text.
- Session security: Session tokens are hashed using SHA-256. Raw session tokens are never persisted in our database.
- Transport encryption: All connections between your browser and our servers, and between our servers and third-party services, use TLS/SSL encryption.
- Database connections: All connections to our database are made over SSL.
While we implement industry-standard security measures, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security, but we are committed to protecting your data to the best of our ability.
6. Third-Party Services
We share limited data with the following third-party services as necessary to operate our business. We do not sell your personal information to any third party.
6.1 Stripe
We use Stripe for payment processing. When you make a purchase, your email address and purchase amount are shared with Stripe to complete the transaction. Stripe's handling of your payment information is governed by the Stripe Privacy Policy.
6.2 Discord API
PulseBeacon uses the Discord API to send go-live notifications to channels you have configured. The bot posts messages only - it does not read messages, access server member lists, or collect any data from your Discord server.
6.3 Twitch API
We query the Twitch API using our own application credentials to check the live status of channels configured in PulseBeacon. Only publicly available stream status information is retrieved.
6.4 Kick API
We query the Kick API to check the live status of channels configured in PulseBeacon. Only publicly available stream status information is retrieved.
6.5 YouTube Data API
We query the YouTube Data API using our own application credentials to check the live status of channels configured in PulseBeacon. Only publicly available broadcast information is retrieved.
6.6 Resend
We use Resend for transactional email delivery, including purchase receipts, password reset emails, OTP codes, and invoice notifications. Your email address and the relevant message content are shared with Resend for delivery purposes.
6.7 Netlify
Our website and serverless functions are hosted on Netlify. Requests to our site are processed through Netlify's infrastructure. Netlify may collect standard server logs (IP addresses, request timestamps) as part of its hosting service.
7. Cookies
We use a single essential cookie for authentication purposes:
- dpd_session: This cookie stores your session identifier and is required for you to remain logged in. It is set with the
HttpOnly,Secure, andSameSite=Laxattributes to protect against cross-site attacks.
We do not use any marketing cookies, analytics cookies, or third-party tracking cookies. There are no cookie banners because there are no optional cookies to consent to.
8. Data Retention
- Account data: Retained for as long as your account remains active.
- Session data: Session tokens expire automatically after 24 hours. Expired session records are removed.
- Download audit logs: Retained for compliance and abuse prevention purposes for the duration of your account's existence.
- Account deletion: When you delete your account, all personal data associated with your account - including your email, purchase records, licence keys, PulseBeacon configurations, creator program data, and session records - is permanently removed from our systems.
9. Your Rights
You have the following rights regarding your personal information:
- Access: You may request a copy of the personal data we hold about you.
- Correction: You may request that we correct any inaccurate or incomplete personal data.
- Deletion: You may request the deletion of your account and all associated personal data.
- Portability: You may request an export of your data in a commonly used, machine-readable format.
To exercise any of these rights, please contact us at duskpulsedigital@gmail.com. We will respond to your request within a reasonable timeframe.
10. Children's Privacy
Our services are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal data from a child under 13, we will take steps to delete that information as promptly as possible. If you believe that a child under 13 has provided us with personal information, please contact us at duskpulsedigital@gmail.com.
11. International Data Transfers
Duskpulse Digital is based in Australia. However, the third-party cloud infrastructure providers we use (including Supabase, Netlify, and Stripe) may process and store data in locations outside of Australia. By using our services, you acknowledge and consent to your data being transferred to, and processed in, jurisdictions outside of Australia where our infrastructure providers operate. These providers maintain their own security and compliance standards.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will update the effective date at the top of this page and post the revised policy on our website. We encourage you to review this page periodically. Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the updated terms.
13. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Email: duskpulsedigital@gmail.com
- Website: www.duskpulsedigital.com
- ABN: 62 216 896 168