Privacy Policy

BuildStackPro – AI-Powered Website Generation & Cloud Deployment Platform

Last Updated: February 26, 2026

1. Introduction

Build Stack Pro ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://buildstackpro.com, including its sub-domains and the BuildStackPro application (collectively, the "Site").

Please read this Privacy Policy carefully. IF YOU DO NOT AGREE WITH THE TERMS OF THIS PRIVACY POLICY, PLEASE DO NOT ACCESS THE SITE.

2. Information We Collect

2.1 Personal Data

• Account Information: Name, email address, and encrypted passwords.
• API Credentials (BYOK): API keys for third-party services (OpenAI, Anthropic, Replicate). These are encrypted at rest and used only to facilitate your requests.
• Project Data: Content, prompts, and configurations used to generate and deploy your websites.

2.2 Google User Data (OAuth)

When you connect your Google Cloud account to BuildStackPro, we may access certain information via Google APIs to facilitate automated deployments.

• Data Accessed: We access your Google Cloud project list and deployment permissions (Cloud Run, App Engine, or Compute Engine) solely to provision infrastructure on your behalf.
• Google API Limited Use Disclosure: BuildStackPro’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
• Revocation: You may revoke BuildStackPro’s access to your Google account at any time via your Google Security Settings.

2.3 Payment Data (Paddle)

We do not store or process your full credit card or bank details on our servers. All payments are processed by Paddle.com (our Merchant of Record). Paddle collects your billing information (name, address, and payment method) according to their own Privacy Policy. We only receive confirmation of payment and the last four digits of your card for identification purposes.

2.4 Automatically Collected Data

When you access the Site, we collect device-specific information (IP address, browser type, operating system) and usage patterns via cookies to improve performance and security.

3. Legal Basis for Processing (GDPR/UK GDPR)

If you are located in the EEA or UK, we process your data under the following legal bases:

• Performance of a Contract: To provide the SaaS services you signed up for.
• Legitimate Interests: To improve our platform, ensure security, and communicate administrative updates.
• Legal Obligation: To comply with tax, accounting, and anti-fraud regulations.

4. How We Use Your Information

• Facilitate account creation and secure login.
• Execute AI content generation and automated cloud deployments.
• Manage subscriptions and coordinate with Paddle for billing.
• Provide technical support and respond to inquiries.
• Protect against fraudulent activity or unauthorized access.

5. Disclosure of Your Information

We share your information only with trusted third-party service providers necessary for our operations:

• Payment Processing: Paddle.com.
• AI Infrastructure: OpenAI, Anthropic, Replicate (via your provided keys).
• Cloud Infrastructure: Google Cloud Platform (GCP), AWS, Azure, DigitalOcean, GitHub.
• Legal Compliance: If required by law or to protect our legal rights.

6. Data Security & Retention

6.1 Security

We implement industry-standard encryption (AES-256 for API keys and SSL/TLS for data in transit) to protect your information.

6.2 Retention

We retain your personal data for as long as your account is active. Upon account deletion, we will delete or anonymize your data within 30 days, except where we are legally required to retain transaction records for tax and audit purposes.

7. Your Privacy Rights

Depending on your location, you have the following rights:

• Access & Portability: Request a copy of the data we hold.
• Correction & Erasure: Update or request the deletion of your personal data.
• Withdrawal of Consent: Opt-out of non-essential cookies or marketing.
• Lodge a Complaint: Contact your local Data Protection Authority if you believe your rights have been violated.

8. International Data Transfers

Our servers are located in the United States and Singapore. By using the Site, you consent to the transfer of your information to these locations. We ensure all transfers comply with standard contractual clauses to maintain a high level of data protection.

9. Cookies & Tracking

We use cookies and similar technologies to improve functionality, analyze usage, and enhance security. You may disable cookies in your browser settings, but certain features of the Site may not function properly.

10. Children’s Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children. If we learn we have collected data from a child under 13, we will delete it promptly.

11. No Sale of Personal Data

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a notice on the Site prior to the change becoming effective.

13. Contact Us

For any privacy-related questions or to exercise your rights, please contact:

Build Stack Pro
Attn: Data Privacy Officer
Soleman Monshi Bari, Mamudpur, Rajprosad
Raipura – 1630, Narsingdi, Bangladesh

Email: [email protected]
General Support: [email protected]