Privacy Policy

Last updated: May 2026

This Privacy Policy explains how whatIsub.com (“we”, “us”) handles personal data when you use our website. We are committed to protecting your privacy in line with the EU General Data Protection Regulation (GDPR).

Who we are

whatIsub.com is operated by Tiberiu Preda. For data protection questions contact us at [email protected].

What data we collect

If you browse without an account

We do not collect personal data. Your country preference and any subscriptions you add to the tracker are stored entirely in your browser’s local storage — they never leave your device and are not accessible to us.

If you create an account

• Email address — used to identify your account and send renewal reminders if you opt in.
• Subscription tracker entries — the services, tiers, and renewal dates you save. Stored on our servers so you can access them from any device.
• Reminder preferences — whether you want email or calendar reminders, and how far in advance.

Click analytics

When you click through to a merchant we log the service name, tier, and country (no personal identifier). This lets us understand which services are most useful and whether our affiliate links generate commissions.

Legal basis for processing

• Contract — processing your account data is necessary to provide the tracker and reminder features you signed up for.
• Legitimate interest — aggregate click analytics help us maintain and improve the site.

How we store your data

Account data is stored with Supabase, our database and authentication provider. Access is protected by Row-Level Security so only you can read or modify your own data.

Cookies and local storage

We use one session cookie set by Supabase to keep you signed in. No advertising, tracking, or third-party cookies are set. Your preferences (country, language, theme) and anonymous tracker data are stored in your browser’s local storage, not cookies.

Your rights

Under GDPR you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your account and all associated data
• Object to or restrict processing
• Withdraw consent at any time (where processing is based on consent)

To exercise any of these rights, email [email protected]. We will respond within 30 days.

Data retention

We keep your account data for as long as your account exists. If you delete your account, all associated data is deleted within 30 days.

Changes to this policy

We may update this policy from time to time. Significant changes will be communicated via email if you have an account. The “Last updated” date at the top of this page reflects the most recent revision.