DaveloperBack to home

Legal

Privacy Policy

Last updated: March 24, 2026

1. Introduction

Dave Tech ("Daveloper", "we", "us", or "our") operates the Daveloper.ai platform, an AI-powered website generation service. This Privacy Policy describes how we collect, use, store, and share information when you access or use our website and services (collectively, the "Service").

By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree, please stop using the Service immediately.

2. Information We Collect

We collect the following categories of information:

  • Account information. When you register, we collect your email address. We do not collect a password because we authenticate via magic link only.
  • Prompts and generated content. We collect the instructions and prompts you submit to the AI, and the website content the AI generates in response. This information is necessary to provide the Service and to improve abuse detection.
  • Usage data. We collect information about how you interact with the Service, including page views, feature usage, session duration, browser type, operating system, IP address, and referring URLs.
  • Transaction data. We record credit purchases, credit consumption events, and task history tied to your account.
  • Communications. If you contact us by email, we retain the content of your message and your contact details in order to respond.
  • Cookies and similar technologies. We use cookies to maintain your authenticated session and to store functional preferences. See our Cookie Policy for full details.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Authenticate your identity and manage your account.
  • Process credit transactions and track usage.
  • Send transactional emails, including magic link sign-in emails and account notifications.
  • Detect, investigate, and prevent abuse, fraud, and violations of our Acceptable Use Policy.
  • Improve the reliability and performance of the Service.
  • Respond to support requests and customer inquiries.
  • Comply with applicable legal obligations.

We do not sell your personal information to third parties. We do not use your prompts or generated content to train AI models on your behalf or for general model improvement without your explicit consent.

4. How We Share Your Information

We share your information only with the following categories of recipients, each bound by their own privacy obligations:

  • OpenAI, L.L.C. We transmit your prompts and context to the OpenAI API to generate website content. OpenAI processes this data as a sub-processor under its API data usage policies. Prompts submitted via the API are not used by OpenAI to train its models by default, subject to OpenAI's current data handling commitments.
  • Resend, Inc. We use Resend to deliver transactional emails such as magic link sign-in messages. Your email address is shared with Resend solely for this purpose.
  • Neon, Inc. Our database is hosted on Neon's serverless PostgreSQL platform. Your account data, usage records, and generated content metadata are stored in this database.
  • Fly.io, Inc. Our application servers run on Fly.io's infrastructure. Request data and server-side session processing occur on Fly.io's platform.
  • Legal and regulatory authorities. We may disclose information when required by law, court order, or governmental authority, or when we believe disclosure is necessary to protect the rights, property, or safety of Daveloper, our users, or the public.
  • Business transfers. If Daveloper is acquired, merged, or transfers its assets, your information may be transferred as part of that transaction. We will notify you of any such change via the email address associated with your account.

5. Data Retention

We retain your account data for as long as your account remains active. If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal, tax, fraud prevention, or audit purposes.

Generated website content associated with your account is retained for 90 days following account deletion, after which it is permanently removed from our systems. Content you have actively deployed to an external service or exported prior to deletion remains outside our control after export.

Server logs containing IP addresses and usage metadata are retained for up to 90 days for security and operational purposes, then deleted or anonymized.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access. You may request a copy of the personal data we hold about you.
  • Rectification. You may ask us to correct inaccurate information.
  • Deletion. You may request that we delete your personal information, subject to legal retention obligations.
  • Portability. You may request your data in a structured, machine-readable format.
  • Restriction. You may ask us to restrict certain processing while a dispute is resolved.
  • Opt-out of marketing. If we ever send promotional communications, you may opt out at any time by following the unsubscribe link or contacting us directly. We currently send transactional emails only.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before processing your request.

If you are located in the European Economic Area, you also have the right to lodge a complaint with your local supervisory authority. If you are located in California, you have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect and the right to request deletion.

7. International Data Transfers

Where required by applicable law, we rely on appropriate legal mechanisms for cross-border transfers, including Standard Contractual Clauses approved by the European Commission for transfers of personal data from the European Economic Area.

8. Security

We use commercially reasonable technical and organizational measures to protect your information, including encryption in transit (TLS) and encryption at rest. Access to personal data is restricted to personnel and systems that require it to perform their functions.

No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights, we will notify you and, where required, applicable regulatory authorities in accordance with applicable law.

9. Children

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected information from a child under 16, please contact us at [email protected] and we will promptly delete it.

10. Cookies

We use cookies and similar tracking technologies. For a detailed explanation of how we use cookies, the types we set, and how to manage them, please see our Cookie Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email at the address associated with your account and update the "last updated" date at the top of this page. Your continued use of the Service after notice of changes constitutes your acceptance of the revised policy.

12. Contact

For questions, concerns, or requests related to this Privacy Policy, please contact us: