Privacy Policy

Last updated: November 18, 2025

1. Information We Collect

1.1 Information You Provide

• Account Information: Name, email address, company name (optional)
• Payment Information: Processed securely through Stripe (we do not store credit card details)
• License Information: License keys, activation data, machine identifiers
• Support Communications: Messages, feedback, and support requests

1.2 Automatically Collected Information

• Usage Data: Plugin usage statistics, feature interactions, error logs
• Device Information: IP address, browser type, operating system, Houdini version
• Cookies: Authentication tokens, session data, preferences

1.3 Third-Party API Data

• LLM Provider Keys: Your API keys for Groq, Anthropic, OpenAI, etc. are stored locally on your machine only and never transmitted to our servers
• LLM Requests: Your prompts and generated code are sent directly to your chosen LLM provider, not through our servers

2. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve Prestige services
• Process transactions and manage subscriptions
• Verify license activations and prevent unauthorized use
• Send service-related notifications and updates
• Provide customer support and respond to inquiries
• Analyze usage patterns to improve features
• Detect and prevent fraud or security issues
• Comply with legal obligations

3. Data Storage and Security

We implement industry-standard security measures:

• Encryption: All data transmitted between you and our servers uses TLS/SSL encryption
• Database Security: Data stored in Supabase with enterprise-grade security and access controls
• Password Protection: Passwords are hashed using bcrypt
• Access Controls: Limited employee access to personal data on a need-to-know basis
• Regular Audits: Periodic security assessments and updates

4. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

4.1 Service Providers

• Stripe: Payment processing (PCI-DSS compliant)
• Supabase: Database and authentication services
• Vercel: Website hosting and analytics

4.2 Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights and safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Your Rights and Choices

5.1 Access and Correction

You can access and update your account information through your dashboard.

5.2 Data Deletion

You may request deletion of your account and associated data by contacting support@megacoolcorp.com. We will delete your data within 30 days, except where retention is required by law.

5.3 Data Export

You can request a copy of your personal data in a portable format.

5.4 Marketing Communications

You can opt out of marketing emails using the unsubscribe link in any email or by updating your preferences.

5.5 Cookies

You can control cookies through your browser settings. Note that disabling cookies may affect functionality.

6. International Data Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses (SCCs) for EU data
• Compliance with applicable data protection laws
• Adequate security measures during transfer and storage

7. Data Retention

We retain your information for as long as:

• Your account is active
• Needed to provide services
• Required to comply with legal obligations
• Necessary to resolve disputes or enforce agreements

After account deletion, we may retain anonymized data for analytics and service improvement.

8. GDPR Compliance (EU Users)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

• Right to Access: Request copies of your personal data
• Right to Rectification: Correct inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to certain processing activities
• Right to Withdraw Consent: Withdraw consent at any time
• Right to Lodge a Complaint: File a complaint with your local supervisory authority

Legal Basis for Processing: We process your data based on contract performance, legitimate interests, legal obligations, and your consent.

9. CCPA Compliance (California Users)

California residents have specific rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What personal information we collect and how it's used
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt out of the sale of personal information (we do not sell data)
• Right to Non-Discrimination: Equal service regardless of privacy choices

10. Children's Privacy

Prestige is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Third-Party Links

Our website may contain links to third-party sites. We are not responsible for the privacy practices of these sites. Please review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last updated" date. Continued use of our services after changes constitutes acceptance of the updated policy. For material changes, we will provide additional notice.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data: