Privacy Policy

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address (required for account creation and authentication)
• Full name (optional, if provided during signup)
• Password (encrypted and stored securely via Supabase Auth)

1.2 Payment Information

Payment processing is handled by Stripe, a third-party payment processor. We do not store your credit card information. Stripe collects and processes:

• Payment method details (processed by Stripe)
• Billing address (if provided to Stripe)
• Subscription tier and billing cycle (monthly or annual)
• Stripe customer ID and subscription ID (stored in our database for subscription management)

1.3 Project Data

When you use Lattice Architect to create projects, we store:

• Project descriptions and requirements
• Tech stack preferences and configurations
• Generated project guides and configurations
• Project metadata (creation date, last updated, etc.)

1.4 Support and Communication

When you contact us through our support system or contact form, we collect:

• Your name and email address
• Message content and support ticket history
• Category of inquiry (bug report, feature request, billing, technical support, general)
• Your subscription tier (for priority routing)

1.5 Usage Data

We automatically collect information about how you use our Service:

• Project generation events and timestamps
• Usage periods and subscription tier changes
• CLI token usage (if you use the Lattice CLI)
• IP address and browser information (for security and analytics)

2. How We Use Your Information

We use the collected information for:

• Service Provision: To provide, maintain, and improve our Service
• Account Management: To manage your account, subscriptions, and access to features
• Payment Processing: To process payments and manage billing through Stripe
• Customer Support: To respond to your inquiries, support tickets, and provide customer service
• Communication: To send you service-related emails (notifications, updates, support responses)
• Security: To detect, prevent, and address technical issues and security threats
• Compliance: To comply with legal obligations and enforce our Terms of Service

3. Data Storage and Security

3.1 Data Storage

Your data is stored securely using:

• Supabase: User accounts, profiles, projects, support tickets, and usage data are stored in Supabase's PostgreSQL database with Row Level Security (RLS) policies
• Stripe: Payment information is stored and processed by Stripe in compliance with PCI DSS standards
• Email Service: Support emails are sent to admin@constructa.app via our email service provider

3.2 Security Measures

We implement appropriate technical and organizational measures to protect your data:

• Encrypted data transmission (HTTPS/TLS)
• Row Level Security policies in Supabase to ensure users can only access their own data
• Secure password hashing (handled by Supabase Auth)
• Regular security updates and monitoring
• Access controls limiting admin access to authorized personnel only

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

4.1 Service Providers

• Supabase: Hosts our database and authentication services
• Stripe: Processes payments and manages subscriptions
• Email Service Providers: Send transactional and support emails

4.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or to protect our rights, property, or safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: You can access your account data through your dashboard
• Correction: You can update your profile information in your account settings
• Deletion: You can request deletion of your account and data by contacting us at admin@constructa.app
• Data Portability: You can request a copy of your data in a machine-readable format
• Opt-Out: You can unsubscribe from marketing emails (service-related emails will still be sent)

To exercise these rights, please contact us at admin@constructa.app.

6. Cookies and Tracking

We use essential cookies and session storage for authentication and service functionality. We do not use third-party advertising cookies or tracking pixels.

7. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. By using our Service, you consent to the transfer of your information to the United States and other countries where our service providers operate.

9. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information (we do not sell personal information).

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us: