Privacy Policy

1. What data we collect

• Account information: When you sign up, we collect your email address. You may optionally provide your name and company details for billing (e.g., billing address, VAT ID).
• Project content & uploads: Files, images and website content you upload or generate are stored and processed to build your site. These may contain personal data.
• Usage data: We track your credit usage and essential actions to operate plans and usage limits.
• We do not track user behavior, browsing patterns, or use analytics tools.

2. How we use your data

• To provide and improve our services
• To manage your account, subscriptions and usage credits
• To process payments via Stripe
• To ensure security and prevent abuse

3. Where and how we store your data

We use Firebase (a service by Google) for:

• Authentication
• Cloud Firestore database (hosted in the Netherlands, EU)
• Cloud Storage (EU multi‑region)

All data is stored securely and access is restricted.

4. Data security

All data stored in our systems is encrypted at rest using industry‑standard methods (e.g., AES‑256) and transmitted via TLS. This applies to Cloud Firestore and Cloud Storage for Firebase. Encryption and decryption are handled by Google's infrastructure.

5. AI processing by third parties

We use external AI services to generate and translate content and to analyze files:

• OpenAI (ChatGPT): language generation and extraction

These services may temporarily process content on servers outside the EU, including in the United States. We ensure that such processing is governed by appropriate safeguards under the GDPR, such as Standard Contractual Clauses (SCCs).

No training or reuse of your data by these providers occurs, and data is not stored permanently on their systems.

6. Third‑party services

• Firebase (Google LLC): hosting, authentication, database and storage
• Stripe (Stripe, Inc.): payment processing
• Netlify (Netlify, Inc.): optional deployment if you connect your account

These services may process data outside the EU. We rely on Standard Contractual Clauses and similar safeguards to ensure an adequate level of protection.

7. Your rights

• Access the data we hold about you
• Request correction or deletion
• Request data export (portability)
• Lodge a complaint with a supervisory authority

You can exercise these rights by contacting us at info@webinice.net

8. Cookies

We only use essential cookies for session management and login functionality. No tracking or analytics cookies are used.

9. Data retention

We retain your data as long as necessary to provide our services and comply with legal obligations. You can delete your account and associated data at any time. Legal retention periods (e.g., for invoices) remain unaffected.

10. International data transfers

Some data may be stored or processed outside the EU/EEA (e.g., in the USA). We implement appropriate safeguards in accordance with the GDPR (such as SCCs).

11. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

12. Contact

If you have any questions or requests regarding your data, contact us at info@webinice.net