Last updated: February 18, 2026
1. Information We Collect
We collect the following information:
- Account data: email address, name, and encrypted password
- Billing data: handled entirely by Stripe; we do not store credit card numbers
- Usage data: API key usage, device sessions, IP addresses for security
- Figma interactions: tool invocations are processed in real-time and not stored
2. How We Use Your Data
- Provide and maintain the Service
- Process subscriptions and billing
- Enforce license terms and prevent abuse
- Send transactional emails (password reset, payment issues)
- Improve the Service and fix bugs
3. Data Sharing
We do not sell your personal data. We share data only with:
- Stripe: payment processing
- Sentry: error monitoring (anonymized)
- Law enforcement: when legally required
4. Data Security
Passwords are hashed with bcrypt. API keys are stored as SHA-256 hashes. All communications use TLS encryption. Sessions expire automatically.
5. Data Retention
- Account data: retained until account deletion
- Audit logs: 90 days
- License validations: 30 days
- Expired sessions: deleted automatically
6. Your Rights
You have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your account and data
- Export your data in a portable format
7. Cookies
We use localStorage for authentication tokens. We do not use tracking cookies. No third-party analytics are loaded on the dashboard.