Privacy Policy

1. Introduction

Crixly ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered application development platform. Please read this policy carefully.

2. Information We Collect

Account Information: When you create an account, we collect your email address, name, and authentication credentials. If you sign up via Google SSO, we receive your Google profile information.

Usage Data: We automatically collect information about how you interact with the Service, including prompts submitted, builds generated, features used, and session duration.

Technical Data: We collect device information, browser type, IP address, and operating system for security and analytics purposes.

3. How We Use Your Information

We use the information we collect to: (a) provide, maintain, and improve the Service; (b) process your transactions and send billing-related communications; (c) respond to your comments, questions, and support requests; (d) monitor and analyze usage patterns to improve user experience; (e) detect, prevent, and address fraud, abuse, and technical issues; (f) send you technical notices, updates, and administrative messages.

4. Data Storage and Security

Your data is stored on Supabase infrastructure with industry-standard encryption at rest and in transit. Each user operates in a fully isolated workspace with Row-Level Security (RLS) policies enforced at the database level. All preview environments run in sandboxed iframes to prevent cross-tenant access. We implement reasonable technical and organizational measures to protect your personal information.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your information with: (a) service providers who assist in operating the platform (Supabase, Google Cloud); (b) law enforcement or legal authorities when required by law; (c) business partners in the event of a merger, acquisition, or sale of assets, with prior notice to you.

6. AI-Generated Content

Prompts you submit to the platform are processed by our AI system to generate application code. We may use anonymized, aggregated prompt data to improve our AI models. Your specific prompts and the code generated from them are never shared with other users or third parties. You retain full ownership of all generated content.

7. Your Rights

You have the right to: (a) access, update, or delete your personal information; (b) opt out of marketing communications; (c) request a copy of your data in a portable format; (d) request deletion of your account and all associated data. To exercise these rights, contact privacy@crixly.com.

8. Cookies

We use essential cookies to maintain your session and authentication state. We do not use third-party tracking cookies. Analytics cookies, if used, are privacy-respecting and do not track individual users across websites.

9. Children's Privacy

The Service is not intended for use by children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of the Service after such changes constitutes acceptance of the updated policy.

11. Contact

For questions about this Privacy Policy, contact us at privacy@crixly.com.