Privacy Policy
Effective Date: May 26, 2026 · Last Updated: May 26, 2026
This Privacy Policy explains how GenieForge ("we," "us," or "our") collects, uses, and protects information when you visit our website, create an account, or use our platform to build applications.
This policy applies to platform users ("Builders") and visitors to genieforge.ai. If you are an end-user of an application built on GenieForge, please refer to our End-User Privacy Policy.
Information We Collect
Information You Provide
- Account information: Name, email address, and password (stored in irreversible hashed form)
- Billing information: Payment details processed by our payment provider (Stripe). We do not store full card numbers.
- App content: System prompts, tool configurations, page designs, and other content you create while building applications
- Conversations: Messages exchanged with the AI build assistant while developing your application
- Support and feedback: Bug reports, feature requests, and feedback submitted through the in-app platform assistant or via email
Information Collected Automatically
- Usage data: Features used, pages visited, session timestamps
- Device and browser information: Browser type, operating system, screen resolution
- IP address: For security, rate limiting, and approximate region detection
- Cookies: Session cookies (required for authentication) and optional preference cookies
Information We Do NOT Collect
- We do not use third-party advertising trackers
- We do not collect biometric data
- We do not collect precise geolocation
How We Use Your Information
| Purpose | Basis |
|---|---|
| Provide and maintain the platform | Necessary for service delivery |
| Process payments and manage your subscription | Contractual obligation |
| Send account-related communications (password resets, billing alerts) | Necessary for service delivery |
| Improve the platform (aggregate, anonymized usage patterns) | Legitimate interest |
| Detect and prevent fraud, abuse, or security incidents | Legitimate interest / legal obligation |
| Respond to support requests | Contractual obligation |
We do NOT:
- Sell your personal information
- Share your data with advertisers or data brokers
- Use your app content or build conversations to train AI models
AI Processing
When you use the build assistant, your conversations are processed by AI models to generate responses. The platform also includes an AI-powered product assistant that collects bug reports, feature requests, and feedback to help improve the service. Your conversations are not used to train or fine-tune any AI models. AI processing occurs within infrastructure covered by appropriate data protection agreements.
Data Sharing
We share your information only with the following categories of service providers, all bound by data processing agreements:
| Provider | Purpose |
|---|---|
| Cloud infrastructure provider | Hosting, compute, storage, AI processing |
| Payment processor (Stripe) | Subscription billing and invoicing |
| Email service | Transactional emails (password resets, alerts) |
We do not share your information with any other third parties except when required by law (e.g., valid court order or subpoena).
Data Retention
| Data Type | Retention Period |
|---|---|
| Account and profile | Until you delete your account |
| App content and configurations | Until you delete the app or your account |
| Build conversations | Until you delete the conversation or your account |
| Billing records | As required by tax/financial law (typically 7 years) |
| Security and audit logs | As required by applicable law |
Upon account deletion, your personal data is removed within 30 days. Some data may persist in encrypted backups for a limited period before being permanently purged.
Your Rights
Depending on your jurisdiction, you may have the right to:
- Access — Request a copy of the personal data we hold about you
- Correction — Request correction of inaccurate data
- Deletion — Request deletion of your account and personal data
- Data portability — Receive your data in a structured, machine-readable format
- Object — Object to certain processing activities
- Withdraw consent — Where processing is based on consent, withdraw it at any time
To exercise any right, email privacy@genieforge.ai. We respond within 30 days.
Cookies
| Cookie | Purpose | Duration |
|---|---|---|
| Session cookie | Keeps you logged in | Browser session |
| Preferences | Remembers UI settings (e.g., theme) | 1 year |
We do not use third-party tracking or advertising cookies.
Security
We protect your data with industry-standard measures including encryption at rest and in transit, access controls, audit logging, and regular security reviews. For details on our security practices, enterprise customers may request our security documentation.
HIPAA-Eligible Accounts
If you enable HIPAA mode for an application, additional safeguards apply to how end-user data is handled within that application. These safeguards are governed by the Business Associate Agreement between you and GenieForge. Enabling HIPAA mode does not change how your builder account data is handled — it applies to the end-user data within that specific app.
International Users
GenieForge is operated by a company based in Canada. Our infrastructure is hosted in the United States. By using the platform, you consent to the transfer and processing of your information in the United States and Canada.
Children
GenieForge is not directed at individuals under 13. We do not knowingly collect information from children.
Changes to This Policy
We may update this policy to reflect changes in our practices or legal requirements. Material changes will be communicated via email or an in-app notification at least 30 days before taking effect.
Contact
For privacy inquiries, email privacy@genieforge.ai.