InBuild

Privacy Policy

Last updated: April 15, 2026

Overview

InBuild ("we", "us", "our") respects your privacy. This policy explains what data we collect, why, and how we protect it.

What we collect

  • Account data: email address, name, and password hash when you create an account.
  • Usage data: pages visited, features used, and generation prompts (anonymized after 90 days).
  • Payment data: processed by Stripe. We never store card numbers directly.
  • Cookies: session cookies for authentication and anonymous analytics cookies. No third-party advertising cookies.

How we use it

  • To provide and improve the InBuild service.
  • To communicate product updates and respond to support requests.
  • To detect and prevent fraud, abuse, and security incidents.
  • To generate aggregate, anonymized usage statistics.

Who we share it with

We do not sell your data. We share data only with:

  • Stripe — for payment processing.
  • Vercel — for hosting and deployment infrastructure.
  • AI model providers (Anthropic, Google) — prompts are sent to generate content. We do not send personally identifiable information in prompts.

Data retention

Account data is retained while your account is active. Project data is retained for 30 days after account deletion. Usage data is anonymized after 90 days.

Your rights

You may request data export, correction, or deletion at any time by emailing privacy@inbuild.io. We respond within 30 days. GDPR and CCPA rights are honored for all users, regardless of location.

Security

All data is encrypted in transit (TLS 1.3) and at rest. We use HSTS preload, Content Security Policy, and strict access controls. Passwords are hashed with bcrypt.

Changes

We may update this policy. Material changes will be communicated by email at least 30 days in advance. The "last updated" date above reflects the most recent revision.

Contact

Questions about this policy: privacy@inbuild.io