Privacy Policy
Last Updated: October 22, 2025
CodePup AI ("CodePup AI," "we," "us," or "our") operates an AI-driven platform that helps developers and creators build, deploy, and share websites or applications using natural language prompts. This Privacy Policy explains how we collect, use, share, and protect personal information when you use our website, platform, and related services ("Services").
Your privacy is important to us. We process personal data in accordance with the data protection laws applicable to your region, including the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, the California Consumer Privacy Act (CCPA/CPRA), and other global privacy regulations.
By accessing or using CodePup AI's Services, you agree to this Privacy Policy. If you do not agree, please discontinue using our Services.
1. Information We Collect
Information You Provide
When you register for an account, use our Services, contact support, or upgrade to a paid plan, you may provide:
- Name, email address.
- Payment data (processed by our payment provider; we do not store full payment card details).
- Project files, prompts, code, deployment configurations, or other content you upload.
- Support communications or feedback you provide.
Information Collected Automatically
When you use CodePup AI, we collect certain technical and usage information automatically, including:
- Browser type, device information, IP address, and approximate location.
- Logs of actions taken within our platform (e.g., feature usage, build events, errors).
- Usage metrics such as API calls, prompt volume, and deployment activity for billing and analytics.
Integration Data
When you connect third-party tools (for example, GitHub, Supabase, or AI providers like OpenAI, Google Gemini, or Anthropic), we access only the minimal data needed for functionality and process it under this Policy.
2. How We Use Information
We use personal data for the following purposes:
- Operating and maintaining the CodePup AI platform.
- Authenticating users and managing accounts.
- Providing AI-assisted code and deployment features.
- Generating analytics to improve performance, reliability, and usability.
- Preventing fraud, abuse, or unauthorized access.
- Sending notifications, security alerts, and optional product updates.
- Complying with legal and regulatory obligations.
We process your data only for lawful purposes, based on one or more of the following legal bases:
- Performance of a contract – to provide or support Services you request.
- Legitimate interests – for platform security, analytics, and feature improvement.
- Consent – for marketing communications or non-essential cookies.
- Legal obligations – to meet recordkeeping and compliance duties.
3. Data Hosting and Subprocessors
CodePup AI stores and processes your Customer Data within trusted cloud infrastructure providers (e.g., Supabase, Neon DB) for compute, authentication, and database services. Data transmitted through our AI Gateway may be shared with third-party AI providers—including OpenAI, Google Gemini, and Anthropic—solely for prompt processing and response generation.
We maintain contracts with all subprocessors to ensure they meet equivalent data protection and security standards.
4. International Data Transfers
If you are located outside the United States, your information may be transferred to our systems hosted in the U.S. and other jurisdictions. We safeguard these transfers using recognized legal mechanisms such as:
- EU Standard Contractual Clauses (SCCs)
- The EU–U.S. Data Privacy Framework
- UK and Swiss Addenda where applicable
5. Cookies and Tracking
We use cookies and similar technologies for the following purposes:
- Essential site functionality (session management, authentication).
- Performance and analytics (using services like Amplitude or Google Analytics).
- Preference storage (language, theme).
- Optional marketing measurement (with your consent only).
You can manage cookie settings via your browser or our in-product Cookie Preferences panel at any time.
6. Security
We implement industry-standard security controls, including:
- Role-based access controls and mandatory multi-factor authentication for staff.
- Security audits, intrusion monitoring, and incident response procedures.
No system is completely secure; however, we take commercially reasonable measures to protect your information.
7. Data Retention and Deletion
We retain personal and project data only as long as necessary for operational, legal, or security reasons:
- Project and account data are deleted within 30 days after account termination.
- Backups may persist for up to 90 days.
You may request deletion of your data at any time by emailing ask@codepup.ai.
8. Your Privacy Rights
Depending on your location, you may have the right to:
- Access or receive a copy of your data.
- Request correction or deletion of personal data.
- Withdraw consent to certain processing.
- Opt out of marketing communications.
- Lodge a complaint with a data protection authority.
We will respond to verified requests within 30 days (or longer where permitted by law).
9. Children's Data
CodePup AI's Services are not directed to individuals under 18 years of age. We do not knowingly collect data from minors. If you believe we have done so inadvertently, contact us for prompt deletion.
10. Communications
We may send essential transactional emails (for example, security notices, account updates). You can unsubscribe from non-essential marketing emails at any time via a link in the message or from your account settings.
11. Policy Updates
We may update this Privacy Policy periodically to reflect product, legal, or security changes. Updates will be posted on this page, and material changes will be communicated via email or in-app notice at least 30 days in advance.
This Policy constitutes the entire agreement between you and CodePup AI regarding privacy and supersedes prior statements or versions. Your continued use of our Services after updates take effect means you accept the revised terms.