← germini.ai
⚠️ DRAFT — LAWYER REVIEW REQUIRED. Not reviewed by an attorney; must not be published as final.
Privacy Policy
Draft — July 2026
What we collect
| Data | Why | Where it lives |
| Intake details (business info, content, images) | To build your website | Supabase (database + storage) |
| Account email & login | Portal access, build updates | Supabase Auth |
| Emails you send us | Feedback & support on your build | Microsoft 365 mailbox |
| Payment records | Billing (we never see card numbers) | Stripe |
| Sign-off records (IP, timestamp, draft version) | Evidence of your approval | Supabase |
| Basic site analytics (aggregate) | Improving our service | Cloudflare |
What we don't do
- We don't sell or rent your personal information.
- We don't use your content for anything except building and hosting your site.
- We don't run third-party advertising trackers on germini.ai or on the sites we build.
Who we share with
Only service providers needed to run the product: Supabase (data), Cloudflare (hosting), Stripe (payments), Microsoft (email), and image providers when sourcing licensed photos for your site. Each processes data under their own security terms. We disclose data if legally required.
Retention
- Active accounts: kept while your account or site is active.
- Unapproved drafts and expired intakes: deleted or anonymized within 12 months.
- Sign-off and payment records: kept as long as legally required for business records.
Your choices
- Access, correct, or delete your data: email us from your account address.
- State-specific rights (California and others): we honor verified access/deletion requests within the statutory window. [CCPA/state-law language TO BE CONFIRMED BY COUNSEL]
- Marketing email: every marketing message has an unsubscribe link; build-related emails are transactional.
Contact
Privacy questions: reply to any Germini email or use the contact details in your client portal.