Privacy Policy

We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information.

Last updated: January 2025

Effective date: January 2025

Quick Navigation

1. Data Controller2. Data We Collect3. How We Use Your Data4. Data Sharing5. Data Retention6. Your Rights7. Data Security8. Cookies9. Third-Party Services10. Contact Us

1. Data Controller

GPT Wrapper Apps is the data controller for your personal data. We are responsible for deciding how your personal data is collected, used, and protected.

Contact Information:

For any privacy-related questions or concerns, please contact us at privacy@gptwrapperapps.com

2. Data We Collect

Account Information

  • • Email address (for account creation and communication)
  • • Name (if provided)
  • • Profile picture (if uploaded)
  • • Authentication data (managed by Clerk)

Profile & Preferences

  • • Business interests and passions
  • • Industry preferences
  • • Technical skill level
  • • Preferred technology stacks
  • • Business goals and objectives
  • • Content dislikes and preferences

Generated Content

  • • AI-generated app ideas
  • • Product Requirements Documents (PRDs)
  • • Saved ideas and favorites
  • • Usage statistics and generation history

Payment Information

  • • Subscription status and plan details
  • • Payment history (processed by LemonSqueezy)
  • • Billing information (stored by payment processor)

Technical Information

  • • IP address and location data
  • • Device information and browser type
  • • Usage patterns and feature interactions
  • • Error logs and performance data

3. How We Use Your Data

Service Provision (Legal basis: Contract)

  • • Generate personalized AI app ideas based on your preferences
  • • Create detailed PRDs tailored to your technical skills
  • • Manage your account and subscription
  • • Provide customer support

Service Improvement (Legal basis: Legitimate interest)

  • • Analyze usage patterns to improve our AI models
  • • Optimize app performance and user experience
  • • Develop new features and capabilities
  • • Conduct research and analytics

Communication (Legal basis: Consent/Contract)

  • • Send service updates and important notifications
  • • Provide customer support responses
  • • Send marketing communications (with your consent)
  • • Share product updates and new features

Legal Compliance (Legal basis: Legal obligation)

  • • Comply with legal requirements and regulations
  • • Respond to legal requests and court orders
  • • Prevent fraud and ensure platform security
  • • Maintain records as required by law

4. Data Sharing

We do not sell your personal data. We only share your data in the following circumstances:

Third-Party Service Providers

  • OpenAI: For AI content generation (anonymized prompts)
  • Clerk: For user authentication and account management
  • Supabase: For secure data storage and database management
  • LemonSqueezy: For payment processing and subscription management

Legal Requirements

  • • When required by law or legal process
  • • To protect our rights and prevent fraud
  • • In response to government requests
  • • To enforce our terms of service

Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new owner with appropriate protections.

5. Data Retention

We retain your personal data only for as long as necessary to provide our services and comply with legal obligations:

  • Account Data: Until you delete your account or request deletion
  • Generated Content: Until you delete specific ideas or your account
  • Payment Records: 7 years for tax and accounting purposes
  • Support Communications: 3 years for service improvement
  • Analytics Data: 2 years in aggregated, anonymized form

Automatic Deletion

We automatically delete inactive accounts after 3 years of no activity, with 90 days advance notice.

6. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

Right to Access

Request a copy of all personal data we hold about you.

Right to Rectification

Correct any inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data (“right to be forgotten”).

Right to Restrict Processing

Limit how we use your personal data in certain circumstances.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or direct marketing.

How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@gptwrapperapps.com

We will respond within 30 days. You also have the right to complain to the Information Commissioner's Office (ICO) if you believe we have not handled your request appropriately.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Technical Safeguards

  • • Encryption in transit and at rest
  • • Regular security audits and updates
  • • Access controls and authentication
  • • Secure hosting with Supabase

Organizational Measures

  • • Staff training on data protection
  • • Regular privacy impact assessments
  • • Data breach response procedures
  • • Privacy by design principles

Data Breach Notification

In the unlikely event of a data breach affecting your personal data, we will notify you and the relevant authorities within 72 hours as required by law.

8. Cookies and Similar Technologies

We use cookies and similar technologies to improve your experience:

Essential Cookies

Required for authentication, session management, and basic functionality. These cannot be disabled.

Analytics Cookies

Help us understand how you use our service to improve performance and user experience.

Preference Cookies

Remember your settings and preferences for a better user experience.

You can manage cookies through your browser settings. Note that disabling essential cookies may affect the functionality of our service.

9. Third-Party Services

We integrate with trusted third-party services to provide our functionality:

OpenAI

Powers our AI idea generation. We send anonymized prompts based on your preferences.

View OpenAI Privacy Policy →

Clerk

Manages user authentication and account security.

View Clerk Privacy Policy →

Supabase

Provides secure database hosting and data storage.

View Supabase Privacy Policy →

LemonSqueezy

Handles payment processing and subscription management.

View LemonSqueezy Privacy Policy →

10. Contact Us

If you have any questions about this privacy policy or how we handle your data, please contact us:

Data Protection Officer

dpo@gptwrapperapps.com

Response Time

We aim to respond to all privacy inquiries within 30 days.

Regulatory Authority

If you're not satisfied with our response, you can contact the Information Commissioner's Office (ICO) at ico.org.uk

← Back to Home