Skip to content

Last updated 2026-04-24

Privacy Policy

This is a starting draft. Review by a qualified lawyer before going live in production. Any discrepancy between a translation and the English version is unintentional.

This Privacy Policy describes how buildli.app ("we") collects, uses, and shares data when you use Buildli. We designed the service to collect as little as possible.

1. Data we collect

1.1 Account data

  • Email address (required for signup)
  • Display name, locale, and timezone (optional, from your profile)
  • Hashed password (stored by Supabase Auth, never visible to us)

1.2 Site data

  • URLs of WordPress sites you connect
  • Encrypted per-site API tokens and recovery tokens
  • WordPress version + active theme + plugin list (for diagnostics)
  • Post/page content you ask the agent to read or modify, at the moment you request the action

1.3 Usage data

  • Conversation history, tool executions, and outcomes
  • Error logs, request timestamps, IP addresses (for abuse prevention)
  • Analytics events (page views, feature use) via PostHog (server-side only)

1.4 Billing data

  • Stripe customer ID, subscription status, plan tier
  • We never see or store your full credit card number — Stripe does

2. How we use it

  • Provide the Service: execute tool calls, maintain conversation state, bill your subscription.
  • Improve the Service: aggregate analytics, debug errors, prioritize features.
  • Support: respond to your questions and investigate incidents you report.
  • Safety: detect abuse, enforce rate limits, comply with legal requests.

We do not sell your data, ever. We do not train AI models on your content.

3. Third parties we share with

We share minimum-necessary data with these processors:

  • Anthropic — the AI provider that interprets your prompts. Your prompts and the relevant post/page content are sent to Anthropic at the moment of each chat. Anthropic does not train on our API traffic.
  • Supabase — hosted Postgres DB + auth. Your data is stored in their US-East region by default; EU region available on request.
  • Stripe — payment processing, subscription management, invoicing.
  • Vercel — hosting + logs.
  • Resend — transactional emails.
  • PostHog — product analytics (server-side only; no browser tracking).
  • Upstash — Redis for rate limiting (stores hashed keys only, no personal data).

4. Where data lives

Our primary DB is in the US (Supabase US-East). EU and Israel regions are available for Enterprise customers. WordPress content always stays on your site; we only transit it when a tool call requires it.

5. Retention

  • Conversations & tool history: kept while your account is active.
  • Audit log: 180 days, then deleted.
  • Deleted accounts: soft-deleted for 30 days (grace period), then hard-deleted.
  • Billing records: kept 7 years as required by Israeli law.

6. Your rights

If you're in the EU, UK, California, or Israel, you have the right to:

  • Access the data we hold about you
  • Correct or update it
  • Export it (JSON bundle, via Settings > Privacy)
  • Delete it (Settings > Privacy > Delete account)
  • Opt out of analytics (contact us)
  • Lodge a complaint with your supervisory authority

7. Security

  • All traffic to and from our service is HTTPS-only.
  • Tokens and secrets are encrypted at rest (AES-256-GCM).
  • Supabase RLS policies enforce per-user data isolation at the database level.
  • We do not expose our Anthropic API key to users.

If we discover a breach affecting your data, we'll notify you within 72 hours.

8. Cookies

See our Cookie Policy.

9. Children

Buildli is not intended for anyone under 16. If you believe a child under 16 has provided us data, email privacy@buildli.app and we'll remove it.

10. Contact

Privacy questions, data requests, or breach reports: privacy@buildli.app.