Back to app

Privacy Policy

Last updated: May 22, 2026

Plain-English summary

We collect what we need to run the service: your email and name (from your sign-in provider), the designs and prompts you generate, billing records when you pay us, and basic request logs. We don't sell your data. We don't use your designs to train AI models. We delete your data on request.

What we collect

  • Account info: email, name, and provider ID from Google or GitHub OAuth when you sign in.
  • Design data: the prompts you submit, the schematics the AI generates, audit results, and any uploaded KiCad files. Stored so you can come back to your designs and so we can support you.
  • Billing: the amount you paid, when, and the Stripe customer ID linking you to your Stripe invoices. We do not store card numbers — Stripe holds those.
  • Usage logs: which AI routes you called, how much they cost us upstream, and basic error logs. Retained ~30 days for support and abuse investigation.
  • Cookies: a session cookie for staying signed in. No advertising or tracking cookies.

How we use it

  • Run the service: generate, audit, simulate, export your designs.
  • Bill you for usage (via Stripe) and apply per-design unlocks.
  • Diagnose bugs and respond to support requests.
  • Detect and prevent abuse (rate-limiting, spend caps).

We do not sell or rent your data to third parties. We do not use your designs as training data for any AI model. AI calls made on your behalf go to Anthropic; their data-use terms apply to the contents of those calls — see anthropic.com/legal/privacy. Anthropic states that API inputs and outputs are not used to train their models by default.

Who we share with

  • Stripe — to process payments. Stripe receives your email and the amount charged.
  • Anthropic — the contents of AI requests (your prompts and schematics) are sent to Anthropic’s AI service for generation and audit. Per Anthropic’s API terms, request and response data is not used to train their models by default.
  • Google / GitHub — only during sign-in (OAuth). They see that you signed into pcbmaker.io.
  • Railway / Turso — our hosting and database providers. They store your data on our behalf under their data-processing terms.

Your choices

  • Delete your account: email us at the contact address below and we'll remove your designs, account, and usage logs. Billing records required for tax compliance are retained per applicable law.
  • Export your designs: every design in your account can be downloaded as JSON from the InfoPanel.
  • Stop billing: disable auto-recharge in the Billing modal. Existing balance never expires.

Security

All traffic is HTTPS-only. Passwords are not stored (we use OAuth). Stripe handles all card data. We apply standard web security headers (CSP, HSTS, frame-options). Despite our best effort, no online service is 100% secure — keep a local backup of designs you can't afford to lose.

Children

The service is not directed at children under 13 and we do not knowingly collect data from them.

Changes

We may update this policy. Material changes will be announced in-app before they take effect.

Contact

Questions, data requests, or deletion requests: privacy@pcbmaker.io.

Privacy Policy — Atelier-12 PCB Maker