Effective May 23, 2026
Privacy Policy
MarkApprove is a client approval ledger and milestone invoice-readiness workflow for freelancers and small teams. We collect and use information needed to operate the service, support accounts, process billing, send review notifications, and keep records of client feedback, approvals, and invoice-readiness status.
Information We Collect
- Account information such as name, email address, password hash, email verification status, notification preferences, and session data.
- Project and milestone information such as project names, milestone names, client names and emails, descriptions, visual deliverable versions, uploaded files, change notes, shareable review links, reviewer lists, comments, replies, statuses, approvals, invoice references, and review reports.
- Reviewer information submitted through review links, including names, emails, comments, replies, approval details, timestamps, IP address, and browser information used for security and audit records.
- Billing identifiers from Stripe, such as customer, subscription, price, invoice, and payment status IDs. MarkApprove does not store full card numbers.
- Technical information such as IP addresses, request metadata, audit events, rate-limit records, cookies, and logs used to operate and protect the service.
- Browser storage such as reviewer name and email in session storage for the current review tab, plus review access cookies when a review link uses an access code.
- Optional measurement information through Google tools, such as page views, referral source, device/browser information, signup events, and checkout flow events. Google Consent Mode denies analytics storage, advertising storage, ad user data, and ad personalization by default until you accept analytics.
How We Use Information
- Provide accounts, projects, milestone workflows, deliverable uploads, shareable review links, comments, replies, approvals, invoice-readiness tracking, approval records, and reports.
- Send account, verification, password reset, review, comment, reply, approval, billing, and support emails.
- Send optional product updates, launch notes, and offers when you opt in. You can unsubscribe from optional emails without disabling required service emails.
- Process subscriptions, cancellations, invoices, and payment updates through Stripe.
- Enforce plan limits, upload safeguards, access controls, and acceptable use rules.
- Monitor reliability, prevent abuse, investigate security events, and provide support.
- Comply with legal obligations and protect the rights, safety, and operation of MarkApprove and its users.
Customer Content
You keep whatever rights you have in the content you upload or submit. You give MarkApprove permission to host, display, process, and store that content only as needed to provide, secure, and support the service, or as required by law. You are responsible for having permission to upload and share client work, brand assets, files, images, comments, and contact details.
Review Links
Client reviewers do not need MarkApprove accounts. Review links work like shareable bearer links, which means anyone with the link may be able to view the review unless the designer adds an access code, pauses the link, sets an expiration, or regenerates the link.
Sensitive And Regulated Information
MarkApprove is built for business deliverables and client approval workflows. It is not intended for medical records, protected health information, payment card numbers, government IDs, highly sensitive personal data, or regulated workloads unless separately agreed in writing.
Sharing With Providers
We share information with service providers that help us run MarkApprove, including hosting, database, email, storage, logging, and payment providers. Payments are processed by Stripe, and Stripe handles payment details according to its own privacy practices.
Cookies, Analytics, And Privacy Choices
MarkApprove uses required cookies and browser storage for account sessions, security checks, review access, billing flows, and user preferences. These are necessary to provide and protect the service.
We use Google measurement tools only for optional analytics and conversion measurement. The Google tag may load with consent denied so that your choice can be communicated consistently, but analytics storage, advertising storage, ad user data, and ad personalization are denied by default until you choose to accept analytics. If your browser sends a Global Privacy Control signal and you have not already made a MarkApprove-specific choice, we treat analytics as declined.
You can change your analytics choice from the Privacy choices link in the site footer. Declining analytics does not affect your ability to use MarkApprove.
Security
We use practical safeguards such as password hashing, secure session cookies, access-code checks, rate limits, upload validation, audit logs, and restricted deliverable serving. No online service can guarantee perfect security. Please use strong passwords, share review links carefully, and contact us promptly if you believe an account or link has been misused.
Retention, Export, And Deletion
Account owners can export account metadata, project records, milestone records, approval records, and invoice-readiness metadata from settings. Account deletion removes the user account, projects, deliverables, comments, replies, approvals, and uploaded files from active service storage after processing, except that limited audit, email, billing, backup, security, or legal records may be retained where reasonably necessary.
Children
MarkApprove is intended for business use and is not directed to children under 13.
Contact
Privacy, export, deletion, and account requests: support@markapprove.com
Support requests: support@markapprove.com
General inquiries: hello@markapprove.com