Model overhangs up to 45° print without supports on most well-tuned printers.

Privacy Policy

Last updated: April 6, 2026

PrinterMon, a DBA of Corpus Obscura registered in the State of Florida, ("we", "us", "our") operates the printermon.com website and the PrinterMon desktop application. This policy explains what data we collect, why we collect it, and what rights you have over it.

We believe in keeping things straightforward. We collect the minimum data needed to run the service, we don't sell it, and we don't use it for advertising.

1. Information We Collect

Account Information

When you create an account, we collect your first name, last name, email address, and optionally your organization name. Your password is stored as a one-way bcrypt hash — we cannot read it.

Payment Information

Payments are processed by Stripe. We store your Stripe customer ID and subscription details (plan, status, billing interval) but we never see or store your card number, CVV, or full billing address. That data lives entirely on Stripe's servers.

Node Connection Data

When you connect the PrinterMon application, we record your node ID, instance name, IP address, app version, and connection timestamps. This is used to manage your active connections and enforce plan limits.

Usage Data

We log page views on the website including the page path, your IP address, browser user agent, referrer, and timestamp. This data is used for basic traffic analytics — we do not use third-party tracking scripts or advertising pixels.

We perform geographic lookups on IP addresses using a local database to identify approximate location and hosting provider. This data is cached on our servers — no third-party geolocation services are contacted.

Contact & Submissions

When you submit a contact form, bug report, or feature request, we store your name, email, the content of your submission, and your IP address.

Login History

We record login timestamps and IP addresses for security purposes — detecting unauthorized access and enforcing rate limits.

2. How We Use Your Data

  • Service delivery — authenticating your account, managing subscriptions, syncing your nodes
  • Billing — processing payments, managing feature entitlements
  • Support — responding to contact messages, bug reports, feature requests
  • Security — rate limiting, login monitoring, fraud prevention
  • Analytics — understanding which pages are visited (aggregate, not individual profiling)
  • Communication — transactional emails (verification, password reset, subscription updates, newsletters you opted into)

We do not sell, rent, or share your personal data with third parties for marketing purposes.

3. Cookies & Sessions

We use only functional cookies — no tracking cookies, no advertising cookies, no cookie consent banner needed.

  • Session cookie (printermon_session) — keeps you logged in during your browser session. HttpOnly, Secure, SameSite=Lax.
  • Remember-me cookie (printermon_remember / printermon_customer) — optional persistent login, up to 48 days. Stored as a SHA-256 hash in our database. HttpOnly, Secure, SameSite=Lax.

We do not use any cookies for analytics, advertising, or cross-site tracking.

4. Third-Party Services

We use the following third-party services, each with their own privacy policies:

  • Stripe (stripe.com/privacy) — payment processing. Receives your email and payment details when you subscribe.
  • Cloudflare (cloudflare.com/privacypolicy) — CDN and DDoS protection. Processes request headers and IP addresses.
  • Mailgun (mailgun.com/legal/privacy-policy) — email delivery. Receives recipient email addresses and message content for emails we send you.
  • Printify (printify.com/privacy-policy) — merchandise fulfillment. When you place a merch order, your name, shipping address, and email are shared with Printify to process and deliver your order. Printify's privacy policy governs their handling of this data.
  • Google reCAPTCHA (policies.google.com/privacy) — spam prevention on forms, when enabled. Google may collect usage data per their privacy policy.

5. Data Storage & Security

  • All data is stored on our own server infrastructure — not in a third-party cloud database.
  • The website is served exclusively over HTTPS (TLS). HSTS is enforced.
  • Sensitive fields (API tokens, encryption keys) are encrypted at rest using AES-256-GCM.
  • Passwords are hashed with bcrypt.
  • Session tokens are stored as SHA-256 hashes — a database breach does not expose usable tokens.
  • Access to admin functions requires authentication with role-based permissions.
  • In compliance with the Florida Information Protection Act (FIPA), we will notify affected users within 30 days of discovering a data breach involving personal information.
  • IP addresses that engage in automated vulnerability scanning or other malicious activity may be automatically blocked from accessing the site.

6. Data Retention

  • Account data — retained while your account is active. Deleted upon request.
  • Page view logs — retained indefinitely for aggregate analytics. IP addresses can be purged upon request.
  • Login history — retained for security audit purposes.
  • Login rate-limit records — automatically purged after 15 minutes.
  • Session tokens — automatically expired and purged (2 days for sessions, 48 days for remember-me).
  • Contact submissions & bug reports — retained until resolved and for a reasonable period thereafter.

7. Your Rights

Regardless of where you live, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Correction — update or correct inaccurate information.
  • Deletion — request deletion of your account and associated data.
  • Export — receive your data in a portable format.
  • Objection — object to specific uses of your data.

To exercise any of these rights, reach us through our contact form. We will respond within 30 days.

For EU/EEA Residents (GDPR)

Our lawful basis for processing is: (a) contract performance — providing the service you signed up for, (b) legitimate interest — security, analytics, and service improvement, and (c) consent — for optional communications like newsletters. You may withdraw consent at any time.

For California Residents (CCPA)

We do not sell or share personal information as defined under the California Consumer Privacy Act (CCPA). We do not share personal information for cross-context behavioral advertising. You have the right to know what data we collect, request deletion, and not be discriminated against for exercising your rights.

8. Children

PrinterMon is not directed at children under 16. We do not knowingly collect personal information from anyone under 16. If we learn we have collected data from a child under 16, we will delete it promptly.

9. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top will reflect the most recent revision. For significant changes, we will notify registered users by email.

10. Contact

Questions about this privacy policy or your data? Reach us at: