PRIVACY POLICY

The data controller for this Service is:

We collect the following personal data:

• Account data: email address, display name, password (hashed with Argon2id when set)
• Discord data: Discord ID, username, avatar, email (when authenticating via Discord OAuth or linking)
• GitHub data: GitHub ID, username, avatar (when authenticating via GitHub OAuth or linking)
• Technical data: IP address (registration and per-login records), user agent, country derived from IP geolocation
• Usage data: token consumption, project content, generation history, daily streak counters (UTC day, tokens spent), milestone reward records
• Referral data: referral code generated for your account, the referrer who invited you (if any), and the referee's IP address, recorded only to enforce the anti-abuse rule that referrer and referee must come from different IPs
• Payment data: processed by Tebex (Analyse BV). We store transaction IDs and plan information but not credit card details

• Contract performance (Art. 6(1)(b)): account management, service delivery, subscription processing
• Legitimate interest (Art. 6(1)(f)): fraud prevention (VPN detection, IP tracking), security, service improvement
• Consent (Art. 6(1)(a)): optional email communications
• Legal obligation (Art. 6(1)(c)): tax and accounting records

• To create and manage your account
• To process subscriptions and payments
• To provide the AI generation service
• To prevent fraud and abuse (VPN/proxy detection via proxycheck.io)
• To send transactional emails (verification, password reset, subscription updates)
• To comply with legal obligations

We share data with the following third-party processors:

• Tebex (Analyse BV): payment processing (Netherlands)
• Resend: transactional email delivery (USA)
• Anthropic / OpenAI: AI model providers for code generation and project thumbnail images (USA). Prompts and generation context are sent to produce responses but are not stored by us beyond the session
• Fal.ai: image-generation provider for 3D model textures in bbmodel projects (USA)
• proxycheck.io: IP geolocation and VPN detection (UK)
• Discord: OAuth authentication and optional account linking (USA)
• GitHub: OAuth authentication and optional account linking (USA)

Some processors are located outside the EU/EEA. Transfers are protected by Standard Contractual Clauses (SCCs) or adequacy decisions per Chapter V GDPR.

• Account data: retained until you delete your account
• Session data: 30 days
• Login attempts: 90 days
• IP records: 90 days
• Streak counters: daily counters retained for the lifetime of the account; the visible calendar surfaces the last 60 days
• Referral records: retained for the lifetime of both the referrer and the referee accounts so the anti-abuse rule (one bonus per signup, IP-difference enforcement) stays auditable
• Transaction records: 10 years (Italian tax law requirement)
• Generated content: retained until project deletion or account deletion

Under the GDPR, you have the right to:

• Access (Art. 15): request a copy of your personal data
• Rectification (Art. 16): correct inaccurate data
• Erasure (Art. 17): delete your account and all data. You can do this from your account settings or contact us
• Portability (Art. 20): receive your data in a machine-readable format
• Restriction (Art. 18): restrict processing of your data
• Objection (Art. 21): object to processing based on legitimate interest
• Withdraw consent: at any time, without affecting prior processing

To exercise these rights, contact us via Discord or email at [email protected]. We will respond within 30 days.

You can delete your account at any time from the Account settings page. This will permanently erase all personal data, projects, generation history, and credit records. This action is irreversible and compliant with GDPR Article 17 (Right to Erasure).

We use only strictly necessary cookies (Art. 5(3) ePrivacy Directive). No cookie consent banner is required because we do not use tracking, advertising, or analytics cookies.

• codexe_session: authentication JWT, 30 days
• codexe_pending_2fa: short-lived two-factor verification step (~5 min)
• discord_oauth_state / github_oauth_state: CSRF protection during the OAuth handshake, deleted at completion
• discord_link_mode / github_link_mode: flag set when an existing user starts the link-account flow, deleted at completion
• codexe_ref: referral code from a /r/<CODE> link, 30 days, used once at signup
• codexe_banned_info: single-shot 5-minute cookie carrying ban context to the /banned page, cleared on read
• codexe_ip_blocked_info: single-shot 5-minute cookie carrying signup-blocked context to the /ip-blocked page, cleared on read
• codexe_impersonation_stash: set only when an admin actively impersonates another user; expires with the impersonation

We implement industry-standard security measures including: password hashing with Argon2id, HTTPS encryption, JWT-based sessions, two-factor authentication (TOTP and email OTP), VPN/proxy detection at signup (proxycheck.io), rate limiting, and Cloudflare Turnstile bot verification on sensitive forms.

To prevent abuse of the free tier and the referral program, the Service caps the number of accounts that can register from a single public IP (default: one). Households or shared networks can request a higher cap by contacting support. Accounts found in violation of the Acceptable Use clause may be banned; affected users see a dedicated /banned page explaining the reason and how to appeal.

The Service is not intended for users under 16 years of age. We do not knowingly collect data from children under 16. If you believe a child has provided us with personal data, contact us for removal.

You have the right to file a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) at www.garanteprivacy.it.

We may update this Privacy Policy from time to time. Significant changes will be communicated via email or a notice on the Service. Continued use of the Service after changes constitutes acceptance.