Legal information

Privacy Policy

Last updated: 22.5.2026

This Privacy Policy explains how Linearscript collects, uses and protects personal data.

Linearscript is a web application for screenplay planning, timeline structuring, writing, exporting and collaboration.

1. Service provider

Linearscript is provided by:

T:mi Puhakka Joonas Aleksi

Business ID: 2950337-3

Finland

Contact:

info@linearscript.com

2. What information we collect

We collect only the information needed to provide, maintain and protect the service.

2.1 Account information

When you create an account or use the service, we may collect:

• username
• email address, if provided
• password hash
• selected language
• account role
• account creation and update timestamps

We do not store your password in plain text.

2.2 Project and screenplay content

When you use Linearscript, you may create or upload:

• project titles
• screenplay text
• scene headings
• character names
• dialogue
• action descriptions
• timeline data
• scene colors
• scene notes
• uploaded attachments
• imported PDF screenplay text
• export settings
• collaborator information

This content belongs to you or the relevant project owner. Linearscript processes it only to provide the service.

2.3 Collaboration and access data

If you collaborate on projects, we may store:

• project owner information
• collaborator usernames or identifiers
• access requests
• approval or denial status
• scene lock data
• project presence information

2.4 Feedback

If you send feedback through the service, we may store:

• your feedback message
• your account identifier
• submission time
• technical metadata needed to review the feedback

2.5 Password reset information

If you request a password reset, we may process:

• your email address
• a temporary reset token
• token expiry time

2.6 Technical data

We may process technical data such as:

• session identifiers
• CSRF tokens
• browser and device information
• server logs
• IP address if recorded by the server or hosting environment
• error information
• diagnostic information needed for troubleshooting or security

This is used for security, debugging and service reliability.

3. How we use information

We use personal data to:

• create and manage user accounts
• authenticate users
• save and load projects
• enable screenplay editing
• enable collaboration
• manage access rights
• process PDF imports
• generate exports
• save feedback
• send password reset emails
• maintain service security
• fix bugs and improve the service
• investigate misuse or security incidents
• comply with legal obligations

4. Email communications

Currently, Linearscript sends email mainly for password reset purposes.

Password reset emails are sent only when requested.

In the future, the service may send account-related or service-related emails, such as important notices about security, availability or account changes.

We do not currently send marketing emails.

5. Cookies and sessions

Linearscript uses necessary cookies or session storage to keep users logged in and to protect the service.

These are required for the service to function.

These necessary cookies are used only for authentication, session management and security. They are not used for advertising or cross-site tracking.

Linearscript does not currently use advertising cookies.

If analytics or marketing cookies are added in the future, this policy will be updated and consent will be requested where required.

6. Legal bases for processing

We process data under the following legal bases:

• performance of a contract or providing the requested service
• legitimate interest in maintaining, securing and improving the service
• consent, where separately requested
• legal obligation, where applicable

Our legitimate interests may include keeping the service secure, preventing misuse, fixing bugs, improving usability, handling feedback, managing access requests and protecting the service provider’s legal rights.

7. Sharing information

We do not sell personal data.

We may share data only with:

• hosting and infrastructure providers
• email delivery services, where needed for password reset emails
• backup providers, where needed to protect service continuity
• security or monitoring tools, where needed to protect and maintain the service
• payment providers, if paid features are introduced in the future
• legal or regulatory authorities where required
• parties necessary to protect the service against misuse or security threats

Project content is visible only to the project owner, approved collaborators and service administrators where access is necessary for technical, security or support reasons.

Service providers may process personal data only as necessary to provide their services to Linearscript and, where required, under appropriate data processing terms.

8. User-created content

You are responsible for the content you upload, import or write in Linearscript.

You must make sure that you have the right to use any screenplay, PDF, attachment or other material you upload or import.

If you include personal data about real individuals in screenplay text, notes, attachments, imported PDFs or other project content, you are responsible for ensuring that you have the right or lawful basis to do so.

You should avoid uploading unnecessary sensitive personal data about real individuals.

If you add collaborators to a project, those collaborators may be able to view or edit project content depending on their access.

9. PDF imports

Linearscript may allow users to import finished screenplay PDFs.

When a PDF is imported, the service may extract text from the file, identify scenes and convert the content into Linearscript project data.

Imported PDFs should only be uploaded if you have the right to use and process their content.

10. Data storage and test-use changes

Linearscript currently uses file-based storage instead of a SQL database. User and project data may be stored in structured files on the server, such as JSON files and uploaded attachment files.

The storage method may change in the future, including possible migration to an SQL database. If the storage method changes, the purpose of processing remains the same unless users are informed otherwise.

During test use, data structures may be changed, migrated, restructured or reset where necessary for development, security, maintenance or technical reasons. Where reasonable, Linearscript aims to give advance notice, but this may not always be possible.

11. Data retention

We keep data for as long as needed to provide the service.

Account data is kept while the account exists.

Project data is kept while the project exists or until the project owner deletes it.

Feedback may be kept for service improvement and support purposes.

Password reset tokens expire automatically and are kept only temporarily.

Server logs are kept only as long as necessary for security, troubleshooting, maintenance or legal reasons, according to the hosting provider’s or server configuration.

Some deleted data may remain in backups for a limited time before being overwritten.

If a specific retention period cannot be stated in advance, the retention period is determined based on the purpose of the data, account status, project status, legal obligations, security needs and whether the data is needed to establish, exercise or defend legal claims.

12. Automated decision-making

Linearscript does not currently use automated decision-making or profiling that produces legal or similarly significant effects for users.

13. Security

We use reasonable security measures, including:

• password hashing
• session-based authentication
• CSRF protection
• access checks for projects
• admin-only access for administrative pages
• file upload restrictions
• protected server-side data folders where configured correctly
• reasonable administrative access controls

Users are responsible for keeping their login credentials secure.

14. Data breaches and security incidents

If we become aware of a personal data breach that is likely to result in a risk to users’ rights and freedoms, we will handle notifications in accordance with applicable data protection law.

15. Your rights

Under applicable data protection law, you may have the right to:

• access your data
• correct your data
• delete your data
• restrict processing
• object to processing
• receive a copy of your data
• withdraw consent where applicable
• lodge a complaint with a data protection authority

To make a request, contact:

info@linearscript.com

We may need to verify your identity before fulfilling a request.

16. Data deletion requests

You may request deletion of your account or personal data by contacting:

info@linearscript.com

Deleting an account may also remove access to projects owned by that account.

Project content shared with collaborators may remain visible to them until the project itself is deleted or access is removed.

17. International transfers

Linearscript is intended to be operated primarily for users in the EU/EEA.

If technical service providers outside the EU/EEA are used in the future, appropriate safeguards will be used where required by applicable data protection law. Such safeguards may include an adequacy decision, standard contractual clauses or another lawful transfer mechanism.

18. Third-party links

Linearscript may contain links to external websites, such as tutorials, videos, documentation or user-added links.

We are not responsible for the privacy practices of external websites.

19. Organizational use

If Linearscript is used by an organization to process personal data on behalf of that organization, a separate data processing agreement may be required.

20. Changes to this Privacy Policy

We may update this Privacy Policy as Linearscript develops.

The latest version will be shown on this page.

21. Contact

For privacy questions, contact:

T:mi Puhakka Joonas Aleksi

Business ID: 2950337-3

Email: info@linearscript.com

Finland