Privacy Policy

Last updated: June 2026. This policy describes how SovereignKit (the operator of sovereignkit.dev) handles information when you visit this site or purchase a SovereignKit license.

Who we are

SovereignKit sells a self-hosted Next.js SaaS boilerplate. License checkout is processed by Lemon Squeezy as merchant of record. After you fork the template, your deployment is a separate service with its own privacy obligations.

Information we collect

• License purchase: email and billing details required by Lemon Squeezy to complete checkout and deliver your GitHub invite
• Support: information you send when contacting us about your license
• Site operation: standard server logs (IP, user agent, request path) retained briefly for security and debugging

We do not run third-party analytics on this marketing site.

How we use information

• Fulfill license purchases and send GitHub repository access
• Respond to support requests about your license
• Prevent fraud and abuse of checkout and webhooks

Processors

• Lemon Squeezy — license payment and tax handling
• Resend — transactional email to operators and fulfillment notifications (if configured)
• Hosting provider — where the marketing site runs

Retention

License purchase records are kept for accounting, tax, and support for as long as required by law. Server logs are rotated on a short schedule.

Your rights

EU and UK residents may request access, correction, or deletion of personal data we hold about license purchases. Contact the support email on your receipt or on the /thanks page.

After you fork SovereignKit

Your self-hosted SaaS stores user data in Postgres on infrastructure you control. Replace this page with your own policy before launching to customers. Transactional email in the template uses Resend — review their DPA for GDPR compliance.