Privacy Policy

• Account info — email, name, plan tier (free / pro / studio).
• Auth metadata — Supabase manages sessions; we don't store passwords.
• Payment metadata — Dodo Payments customer ID + payment receipt IDs. Card data never touches our servers — Dodo handles it as the merchant of record.
• Pack data — themes you type, styles you pick, the generated emotes themselves.
• Aggregate operational metrics — generation counts, latency, error rates. No individual prompt content beyond what you submit.

• Browsing history outside Pile.
• Third-party analytics tracking pixels (no Google Analytics, no FB Pixel).
• Behavioral profiles for advertising. We don't sell to ad networks.

• To generate the packs you ask for and deliver them to you.
• To process payments via Dodo Payments.
• To send transactional email (preview ready, payment receipt, password reset). No marketing email without explicit opt-in.
• To improve the service via aggregate metrics — no individual prompt is read by a human unless you report a problem and we need to debug it.

• Supabase — auth, database, storage. (US/EU regions, GDPR DPA available.)
• Dodo Payments — payment processing as merchant of record. Handles checkout, subscriptions, and tax compliance. Card data never touches Pile.
• Replicate — AI inference. We pass your prompt + style to Replicate and receive the generated image.
• Vercel — hosting + edge logs.

You can access, export, or delete your data anytime by emailing karjunvarma2001@gmail.com or using the in-dashboard account settings. EU/UK users have GDPR rights (access, rectification, erasure, portability, restriction, objection); California users have CCPA rights (know, delete, opt-out of sale — note: we don't sell data).

Account data is retained while your account is active. After deletion, we keep payment records for 7 years (legal requirement) but purge generated packs and personal info within 30 days. Anonymized aggregate metrics are kept indefinitely.

All connections are over HTTPS. Database access requires service role keys held only by the application backend. Webhooks are signature-verified before any state change. We do not store plain-text passwords or full payment card numbers.

Pile is not directed at children under 13. Don't use Pile if you're under 13. If you're between 13 and 18, you need permission from a parent or guardian.

We may update this policy. Material changes are announced on the dashboard. The date at the top reflects the most recent revision.

Questions? Email karjunvarma2001@gmail.com or DM @Arjun06061 on X. Solo founder; real reply.