Research entry
DjangoShip — Django SaaS Boilerplate for Europe
2026 · Independent Project
A paid Django 5.2 SaaS boilerplate for European developers — auth, Stripe, team management, and GDPR compliance built in. Extracted from a live production codebase and sold on Gumroad.
Overview
DjangoShip is a Django 5.2 SaaS boilerplate aimed at European developers. €249 one-time, delivered as a private GitHub template repo. The differentiator is GDPR compliance baked in — not bolted on after the fact, but wired up from the start.
It was extracted from RoleUp, a live Irish job board that has been running this stack in production for over a year.
Modules
Ten production-ready modules, all tested and documented:
| Module | What it ships |
|---|---|
| Auth | Custom user model, email + password, Google & LinkedIn OAuth |
| Stripe Payments | Subscriptions, one-off charges, webhooks, idempotency |
| Team Management | Organisations, roles, invites, org-scoped querysets |
| GDPR Compliance | Cookie consent, data retention, anonymisation, DSAR export |
| API | Token auth with SHA-256, scopes, expiry, quotas, audit logging |
| Transactional emails with Anymail + audit logging | |
| Blog | Markdown posts with RSS and SEO fields |
| Analytics | GA4 server-side + Plausible + product event tracking |
| Security Middleware | CSP, rate limiting, request size limits, Cloudflare Turnstile |
| Deployment | Railway one-click, Gunicorn, WhiteNoise, GitHub Actions CI |
GDPR Module
The GDPR piece is the main differentiator. Most Django boilerplates ship a cookie banner that stores a preference but doesn’t actually block analytics scripts. DjangoShip ships:
- Cookie consent that blocks all analytics until the user explicitly accepts
- Data export (GDPR Article 15) — generates a full JSON download of every database record associated with the user’s account
- Retention management commands — automated
manage.pytasks to purge stale data per configurable retention windows - Account deletion audit log — captures the user’s primary key before
calling
logout()so the deletion event survives session teardown - Privacy and cookie policy templates with actual legal substance, not stub text
Stack
- Django 5.2 + Python 3.12+
- HTMX + Tailwind CSS (no React, no build step)
- PostgreSQL + django-allauth + Stripe + django-anymail
- Railway one-click deploy
Competitive Position
| DjangoShip (€249) | SaaS Pegasus Pro ($449) | ShipFast ($249) | |
|---|---|---|---|
| GDPR compliance | Yes | No | No |
| Django | Yes | Yes | No (Next.js) |
| Teams | Yes | Yes | No |
| Stripe | Yes | Yes | Yes |
| One-time price | Yes | Yes | Yes |
Status
Live on Gumroad. 197 tests passing. Delivery is automated via a Gumroad webhook that triggers a GitHub collaborator invite on purchase.