Skip to main content

Privacy Policy

Effective Date: April 2026 | Last Updated: April 8, 2026

1. Introduction

Growth Layer ("Growth Layer," "we," "us," or "our"), a DBA of Jobsolv LLC, operates the website located at growthlayer.app (the "Site") and the Growth Layer SaaS platform, APIs, SDKs, documentation, and related tools and services (collectively, the "Service"). This Privacy Policy describes how we collect, use, disclose, and otherwise process personal information in connection with our Service, and explains your rights and choices with respect to your information.

By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use the Service. This Privacy Policy is incorporated into and made part of our Terms of Service.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect information such as your name, email address, company name, job title, password or authentication credentials, and any other information you provide during registration or account setup.

2.2 Payment Information

If you purchase a paid plan, we collect billing details such as your billing name, billing address, and payment method. Payment card information is processed directly by our payment processor, Stripe, Inc. ("Stripe"). We do not store full credit card numbers on our servers. Stripe's collection and use of your information is governed by its own privacy policy available at stripe.com/privacy.

2.3 Experiment and Analytics Data

When you use the Service to run A/B tests, feature flags, or other experiments, we process data related to your experiments, including experiment configurations, variant definitions, targeting rules, event data, conversion metrics, and statistical results. This data may include information about your end users that you transmit to the Service through our SDKs, APIs, or integrations.

2.4 Usage and Technical Data

We automatically collect information about how you interact with the Service, including:

  • Pages viewed, features used, actions taken, and session duration
  • Device information such as browser type and version, operating system, device type, and screen resolution
  • IP address, approximate geolocation (city/country level), and referring URL
  • Log data including access times, error logs, and API call metadata
  • Performance data such as page load times, SDK latency, and error rates

2.5 Cookies and Similar Technologies

We use cookies, local storage, and similar tracking technologies to operate the Service. These include:

  • Essential cookies: Required for authentication, security, and core functionality. These cannot be disabled.
  • Analytics cookies: Used to understand how visitors interact with the Service so we can improve user experience. We may use tools such as PostHog for product analytics.
  • Preference cookies: Used to remember your settings and preferences across sessions.
  • Marketing cookies: If applicable, used to deliver relevant advertising and track campaign effectiveness. These are only placed with your consent where required by law.

You can manage cookie preferences through your browser settings or, where available, through our cookie preference controls. Note that disabling certain cookies may impair functionality of the Service.

2.6 Communications Data

When you contact us, subscribe to our newsletter, or participate in surveys or promotions, we collect the information you provide, including your name, email address, and message content.

2.7 Third-Party Information

We may receive information about you from third parties, including authentication providers (e.g., if you sign in via Google or GitHub), business partners, and publicly available sources.

3. How We Collect Information

  • Directly from you: When you create an account, fill out forms, contact us, subscribe to communications, or otherwise provide information to us.
  • Automatically: Through cookies, analytics tools, server logs, SDKs, and similar technologies when you access or use the Service.
  • From third parties: From authentication providers, payment processors, analytics providers, and business partners.

4. How We Use Your Information

We use personal information for the following purposes:

  • Provide and operate the Service: To create and manage your account, process experiments, deliver analytics and results, and provide customer support.
  • Process payments: To process subscription payments, manage billing, and prevent fraud.
  • Improve the Service: To analyze usage patterns, diagnose technical issues, develop new features, and optimize performance.
  • Communicate with you: To send transactional messages (e.g., account confirmations, billing receipts, experiment alerts), respond to your inquiries, and with your consent, send marketing communications about new features, content, and promotions.
  • Analytics and research: To generate aggregated, anonymized analytics about Service usage for internal business purposes and to publish industry benchmarks.
  • Security and fraud prevention: To detect and prevent security incidents, fraud, abuse, and other harmful activities.
  • Legal compliance: To comply with applicable laws, regulations, legal processes, and governmental requests.
  • Enforce our terms: To enforce our Terms of Service and other agreements.

5. How We Share Your Information

We do not sell your personal information. We may share personal information in the following circumstances:

  • Service providers: We share information with third-party vendors who perform services on our behalf, including:
    • Cloud hosting: Amazon Web Services (AWS) for infrastructure and data storage
    • Payment processing: Stripe for subscription billing and payment management
    • Analytics: PostHog and similar tools for product analytics and usage monitoring
    • Email delivery: Transactional and marketing email service providers
    • Customer support: Tools used to provide customer service and manage support tickets
  • Legal requirements: When required by law, legal process, or governmental request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.
  • Business transfers: In connection with a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity. We will provide notice before your personal information becomes subject to a different privacy policy.
  • With your consent: We may share information with third parties when you have given us explicit consent to do so.
  • Aggregated or de-identified data: We may share aggregated or de-identified information that cannot reasonably be used to identify you for any purpose, including industry benchmarking and research.

6. Data Processing for Customer End Users

When you use the Service to run experiments, you may transmit data about your own end users to us through our SDKs and APIs. In this context, you are the data controller (or equivalent under applicable law), and Growth Layer acts as a data processor on your behalf. We process such data only in accordance with your instructions and our data processing agreement. You are responsible for ensuring that you have obtained any necessary consents or authorizations from your end users and that your use of the Service complies with all applicable privacy laws.

7. Your Privacy Rights

Depending on your jurisdiction, you may have some or all of the following rights regarding your personal information:

  • Right of access: Request a copy of the personal information we hold about you.
  • Right to correction: Request correction of inaccurate or incomplete personal information.
  • Right to deletion: Request deletion of your personal information, subject to certain legal exceptions.
  • Right to data portability: Request your personal information in a structured, commonly used, machine-readable format.
  • Right to restrict processing: Request that we limit the processing of your personal information in certain circumstances.
  • Right to object: Object to processing of your personal information for certain purposes, including direct marketing.
  • Right to opt out of sales/sharing: Where applicable, opt out of the sale or sharing of your personal information for cross-context behavioral advertising.
  • Right to withdraw consent: Where processing is based on consent, withdraw your consent at any time without affecting the lawfulness of prior processing.
  • Right to non-discrimination: Exercise your privacy rights without receiving discriminatory treatment.

To exercise any of these rights, please contact us at [email protected] with the subject line "Privacy Rights Request." We will verify your identity before processing your request and respond within the timeframe required by applicable law (typically 30-45 days).

8. International Privacy Compliance

8.1 General Data Protection Regulation (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data under the following legal bases as applicable: (a) your consent; (b) performance of a contract with you; (c) compliance with a legal obligation; or (d) our legitimate interests, provided they are not overridden by your rights. You have the rights described in Section 7 above. You also have the right to lodge a complaint with your local data protection authority. Data may be transferred to the United States; we rely on Standard Contractual Clauses or other approved transfer mechanisms to safeguard such transfers.

8.2 California Consumer Privacy Act (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act. These include:

  • The right to know what personal information we collect, use, disclose, and sell or share.
  • The right to delete your personal information, subject to certain exceptions.
  • The right to correct inaccurate personal information.
  • The right to opt out of the sale or sharing of your personal information. We do not sell personal information as defined under the CCPA/CPRA.
  • The right to limit the use of sensitive personal information.
  • The right to non-discrimination for exercising your rights.

In the preceding 12 months, we have collected the categories of personal information described in Section 2 of this Privacy Policy. We collect this information for the business and commercial purposes described in Section 4. We do not sell personal information, nor do we share it for cross-context behavioral advertising.

8.3 Virginia Consumer Data Protection Act (VCDPA)

If you are a Virginia resident, you have the right to access, correct, delete, and obtain a copy of your personal data, as well as the right to opt out of the processing of personal data for targeted advertising, sales, or profiling. You may appeal our decision regarding your request by contacting us at [email protected].

8.4 Colorado Privacy Act (CPA)

If you are a Colorado resident, you have similar rights to access, correct, delete, and obtain a portable copy of your personal data, and to opt out of targeted advertising, sales of personal data, and certain profiling. You may exercise these rights or appeal a decision by contacting us using the information in Section 14.

9. Data Security

We implement appropriate technical and organizational security measures designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using TLS/SSL and encryption of sensitive data at rest
  • Access controls and role-based permissions to limit access to personal information on a need-to-know basis
  • Regular security assessments, vulnerability scanning, and penetration testing
  • Secure development practices including code review and dependency monitoring
  • Employee security awareness training and confidentiality obligations
  • Incident response procedures for security events

However, no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security.

10. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. When determining retention periods, we consider the amount, nature, and sensitivity of the information, the potential risk of harm from unauthorized use or disclosure, the purposes for processing, and applicable legal requirements. Account information is retained for the duration of your account and for a reasonable period thereafter. Experiment data is retained in accordance with your account settings and plan. You may request deletion of your data at any time by contacting us.

11. Artificial Intelligence and Machine Learning

We may use artificial intelligence and machine learning technologies to improve the Service, including but not limited to: providing experiment recommendations, statistical analysis and significance calculations, anomaly detection, audience segmentation suggestions, and platform optimization. When we use AI/ML:

  • We use aggregated and/or de-identified data for model training whenever possible.
  • We do not use your proprietary experiment data to train general models shared with other customers without your explicit consent.
  • You retain control over your experiment data and may opt out of AI-driven features in your account settings where available.

12. Children's Privacy

The Service is intended for use by individuals who are at least 18 years old. We do not knowingly collect personal information from children under the age of 18. If you are under 18, you may not use the Service. If we learn that we have collected personal information from a child under 18, we will take steps to delete such information promptly. If you believe a child has provided us with personal information, please contact us at [email protected].

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will update the "Last Updated" date at the top of this page and, where required by law, provide additional notice (such as email notification or a prominent notice on the Service). Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, or if you wish to exercise your privacy rights, please contact us at:

Growth Layer (a DBA of Jobsolv LLC)
Attn: Privacy
6001 W Parmer Lane, Ste 370 #771
Austin, TX 78727
Email: [email protected]

If you are located in the EEA and have unresolved concerns about our data practices, you have the right to lodge a complaint with your local data protection authority.

← Back to home