Privacy Policy

pretty.page ("we," "us," or "our") operates the pretty.page website and service. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our service. By using pretty.page, you consent to the data practices described in this policy. If you do not agree, please do not use the service.

Account information: When you sign up, we collect your email address for authentication via magic link. We do not collect passwords. Business information: When you create a page, you provide your business name, description, services, contact details, and other information you choose to share. This information is used to generate your landing page. Usage data: We automatically collect information about how you interact with our service, including pages visited, features used, and timestamps. We use Usermaven for privacy-friendly analytics. Payment information: Payment processing is handled by Creem.io. We do not store your credit card details. We receive your subscription status, plan type, and customer ID from our payment processor. Images: We use Unsplash, fal.ai, and Cloudinary for image sourcing and hosting. Images selected for your page are stored via Cloudinary.

We use the information we collect to: - Create and maintain your account - Generate and host your landing page using AI - Process payments and manage subscriptions - Send you transactional emails (magic links, weekly digests, lead notifications) - Improve our service and develop new features - Detect and prevent fraud, abuse, and violations of our terms - Comply with legal obligations

We use artificial intelligence (powered by Anthropic's Claude) to generate your landing page content, design, and copy. The business information you provide is sent to AI services for processing. We do not use your data to train AI models. The AI-generated content becomes part of your page and is stored in our database.

We do not sell your personal information. We share data only with: - Anthropic: For AI-powered page generation - Creem.io: For payment processing - Resend: For transactional email delivery - Cloudinary: For image hosting - Unsplash and fal.ai: For image sourcing and generation - Vercel: For website hosting and deployment - Neon: For database hosting All our service providers are bound by data processing agreements. We may also disclose information if required by law or to protect our rights.

We retain your account information and page data for as long as your account is active. When you delete your account, we permanently and immediately remove your personal data from our systems, including: your user profile, all your pages and page versions, all leads and contact-form submissions on your pages, analytics events tied to your pages, sessions, notification history, referral events, and outstanding sign-in tokens. The deletion is synchronous and irreversible. If you have an active paid subscription, we'll ask you to cancel it via the Creem customer portal before the deletion can proceed, so you don't continue to be billed. Backups: encrypted database backups may persist for a limited period (typically up to 30 days) before being permanently overwritten. We do not access these backups for any purpose other than disaster recovery.

We implement industry-standard security measures to protect your data, including: - HTTPS encryption for all data in transit - Encrypted database connections - JWT-based authentication with secure tokens - Rate limiting on API endpoints - Regular security reviews No method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

You have the right to: - Access the personal data we hold about you - Correct inaccurate information - Delete your account and associated data — you can do this yourself in Settings → Danger zone, which immediately erases everything described in section 6 - Export your leads (Dashboard → Leads → Export CSV) and your page data - Withdraw consent for data processing - Lodge a complaint with a data protection authority For other requests or questions, contact us at hello@pretty.page.

pretty.page is operated from Costa Rica. Your data may be processed in the United States and other countries where our service providers operate. By using our service, you consent to the transfer of your data to these countries.

pretty.page is not intended for use by anyone under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it immediately.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice on our website or sending you an email. Your continued use of the service after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy, contact us at: hello@pretty.page