Privacy Policy

Depending on how you interact with CutOps, we may collect the following categories of information:

• Information you enter into the product. This may include part dimensions, stock sheet data, quantities, project names, layout preferences, material-related settings, and other job-related input.
• Technical and usage information. This may include browser type, device type, pages viewed, timestamps, referrer data, and product interaction events. Depending on the service involved, this may also include request metadata, bandwidth, cache status, HTTP status codes, country-level traffic patterns, performance signals, and approximate geography inferred from IP-based routing or analytics signals.
• Support or contact information. If you email us or contact us directly, we may receive your name, email address, company details if you provide them, and the contents of your message.
• Account and billing records. If you create an account or use a paid plan, we may process account profile data, subscription status, plan interval, PayPal subscription identifiers, webhook event metadata, email preference states, and billing ledger entries needed to operate the service and support subscription issues.
• Browser storage and similar technologies. CutOps uses local browser storage and similar client-side technologies to keep the product working, remember preferences, support local projects, and preserve workspace state. Optional analytics is handled separately through explicit consent.

We may use information we collect to:

• operate, maintain, and improve the CutOps website and application;
• process optimization jobs and present results to the user;
• support account, backup, and paid entitlement features when used;
• understand product usage, reliability, and performance;
• respond to support requests, questions, and feedback;
• protect the service against misuse, fraud, abuse, or security incidents; and
• comply with legal obligations or enforce our Terms of Use.

Where the General Data Protection Regulation or similar laws apply, we rely on different legal bases depending on the activity:

• Performance of a contract or steps taken at your request.This covers providing the product experience, account features, backups, billing operations, and support you actively use.
• Legitimate interests. This may apply to essential operational, security, anti-abuse, support, and service reliability activities where those interests are not overridden by your rights.
• Consent. We rely on consent for optional analytics where required by law, including Google Analytics in jurisdictions that require prior consent before analytics storage or similar tracking technologies are used.

Project data such as parts, stock sheets, dimensions, settings, and optimization preferences is primarily stored in your browser to support day-to-day planning workflows. Some account, entitlement, billing, email preference, backup, and operational records may also be processed through backend services when those features are used.

If you use export, print, account backup or synchronization features, or contact us for support, the data you choose to share may leave your device through those actions.

We do not sell your personal information. We may share information in the following limited situations:

• with hosting, infrastructure, monitoring, email, analytics, or support providers that help us operate CutOps, including Google Firebase for backend infrastructure, authentication, database, and cloud function services; Cloudflare for content delivery, traffic handling, security, and performance services; and Google Analytics for optional measurement when you consent;
• with PayPal and related payment infrastructure when you start, manage, renew, or cancel a paid subscription;
• if required by law, regulation, court order, or a valid governmental request;
• to investigate, prevent, or respond to fraud, abuse, security, or technical issues;
• in connection with a merger, sale, restructuring, financing, or transfer of some or all of the business; or
• with your consent or at your direction.

CutOps uses browser storage that is necessary for core product functions such as saving local project state, remembering units and preferences, preserving export settings, and supporting account continuity where applicable. These storage operations support the product you actively use.

Analytics is optional. Google Analytics is not loaded until you explicitly allow it through the site's privacy and analytics controls. When analytics is allowed, CutOps sends Google consent signals with analytics storage enabled and ads-related consent signals denied.

Google Analytics may collect information such as page views, page location, device and browser information, approximate geography, and general interaction events. CutOps does not enable advertising personalization features in this implementation.

Your analytics preference is stored locally in your browser so your choice can be respected on future visits from the same browser. Session-only UI state related to whether the prompt has already been shown may also be stored locally for the duration of that session.

You can refuse or withdraw analytics consent at any time by using the privacy and analytics preferences control available across the site.

Marketing emails, product updates, and promotional offers are managed separately through authenticated profile preferences or through the unsubscribe page.

Withdrawing consent turns analytics back off for future measurement and clears Google Analytics cookies that are available to the site for deletion from your browser.

CutOps may also rely on Cloudflare for infrastructure-level traffic handling, security, availability, and performance services. Depending on the Cloudflare products enabled, this may include aggregated or request-level metrics such as requests, bandwidth, cache usage, HTTP status trends, country-level traffic, browser or device metadata, and performance measurements used to keep the site available, improve delivery, and investigate reliability or abuse issues.

These infrastructure and security metrics are different from optional Google Analytics measurement. They may operate as part of hosting, edge delivery, security, and abuse prevention services rather than as advertising or personalization analytics.

For more information about how Google processes data, see the Google Privacy Policy. For Cloudflare-related information, see Cloudflare Cookies and Related Policies.

The following table lists the specific storage items CutOps sets or may set in your browser:

Additional browser storage may be used by the product to save local project data, workspace preferences, and settings. These are strictly necessary for product functionality and are not used for tracking or advertising.

We retain information only for as long as reasonably necessary for the purposes described in this policy, including product operation, legitimate business needs, dispute resolution, legal compliance, and security. The following guidelines apply to specific categories of data:

• Browser-stored project data remains on your device until you remove it, clear browser storage, or replace it with newer local data.
• Account and profile records are retained for the duration of your account and for up to 7 years after account closure to satisfy legal, accounting, and anti-fraud obligations.
• Billing and subscription records are retained for up to 7 years after a transaction to comply with applicable tax and accounting requirements.
• Support and contact messages are retained for up to 3 years from the date of the last interaction.
• Google Analytics data is governed by the retention settings configured for the applicable Google Analytics property.
• Cloudflare traffic, performance, and security data is retained according to the applicable Cloudflare product settings and Cloudflare's own operational policies.

We take reasonable administrative, technical, and organizational measures designed to protect information. However, no method of transmission over the internet or method of storage is completely secure, and we cannot guarantee absolute security.

CutOps may use service providers in more than one country. If you allow Google Analytics, analytics-related data may be processed by Google in the United States and other countries. Cloudflare and other service providers may also process traffic, delivery, security, and performance data across global infrastructure. Where required, we aim to rely on contractual and organizational safeguards made available by our providers, but cross-border data transfers may still involve legal and practical risks depending on the jurisdiction.

Depending on your location and applicable law, you may have rights to request access to, correction of, deletion of, or restriction of certain personal information. You may also have the right to object to some processing activities or to withdraw consent where processing is based on consent. To make a request, contact us using the details below.

If you are in the EEA, UK, or another jurisdiction with similar rules, this may include rights related to access, rectification, erasure, restriction, portability, objection, and the right to lodge a complaint with a supervisory authority.

Account notices, subscription renewal reminders, and marketing emails can be managed from your authenticated profile or the unsubscribe page. Analytics consent can be changed at any time through the site's privacy and analytics preferences.

We do not sell personal information as defined under the California Consumer Privacy Act (CCPA). California residents may contact us via the privacy contact form to exercise applicable rights, including the right to know, the right to delete, and the right to correct personal information we hold about them.

CutOps is intended for business and general adult use and is not directed to children. We do not knowingly collect personal information from children where prohibited by law.

We may update this Privacy Policy from time to time to reflect changes to the product, our practices, or applicable legal requirements. If we make material changes, we will update the last updated date and may provide additional notice where appropriate.

Data Controller. For the purposes of applicable data protection law, including the General Data Protection Regulation (GDPR), the data controller is Alex Omanski, an individual based in Israel. Privacy-related questions may be sent to the privacy contact form.