Privacy Policy - Vibe Apps

Effective Date: November 10, 2025 | Last Revised: November 10, 2025

1. Introduction and Acceptance

This Privacy Policy ("Policy") constitutes a legally binding agreement between Vibe Apps, Inc., a Delaware corporation ("Company," "VibeCoder," "we," "us," or "our"), and you ("User," "you," or "your"), governing the collection, processing, storage, transmission, disclosure, and utilization of Personal Information and Non-Personal Information (collectively, "Data") in connection with your access to and use of VibeCoder, an AI-powered web development platform, including all websites, mobile applications, services, APIs, tools, and features (collectively, the "Service" or "Platform").

BY ACCESSING, BROWSING, OR OTHERWISE USING THE SERVICE IN ANY MANNER WHATSOEVER, INCLUDING BUT NOT LIMITED TO UPLOADING PROJECT FILES, ENGAGING WITH AI ASSISTANTS, OR DEPLOYING APPLICATIONS, YOU HEREBY ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND IRREVOCABLY AGREE TO BE BOUND BY ALL TERMS AND PROVISIONS OF THIS POLICY, AS AMENDED FROM TIME TO TIME AT OUR SOLE DISCRETION. IF YOU DO NOT AGREE WITH ANY PROVISION HEREIN, YOU MUST IMMEDIATELY CEASE ALL USE OF THE SERVICE.

Definitions and Interpretations

For purposes of this Policy: (a) "Personal Information" means any information that identifies, relates to, describes, or is capable of being associated with a particular individual; (b) "Non-Personal Information" means information that does not directly identify an individual; (c) "Processing" means any operation performed on Data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, or erasure; (d) "Project Content" means all files, code, text, images, and materials uploaded, created, or generated through the Service; (e) "Third Parties" includes but is not limited to AI model providers (OpenAI, OpenRouter), cloud infrastructure providers (Cloudflare, Supabase), payment processors (RevenueCat, Apple, Google), and any other entities with whom we may share Data; (f) "Deployed Content" means any project or application published through the Service to a publicly accessible URL.

2. Nature of Service and Data Collection

VibeCoder is an artificial intelligence-powered web development platform that enables users to build, modify, and deploy web applications through natural language interaction with AI assistants. The fundamental operation of the Service requires the collection, processing, and analysis of substantial amounts of user data, including but not limited to all Project Content, conversation histories, and usage patterns. By using the Service, you acknowledge and consent to this extensive data processing as an inherent and unavoidable aspect of the Service's functionality.

2.1 Account and Identity Information

When you register for, access, or use the Service, you may be required to provide certain Personal Information, including but not limited to:

Full legal name, aliases, and any pseudonyms used in connection with the Service;
Email addresses, telephone numbers, and other contact information;
Postal addresses, billing addresses, and shipping addresses;
Payment card information, bank account details, and other financial information;
Government-issued identification numbers, including but not limited to Social Security numbers, tax identification numbers, passport numbers, and driver's license numbers;
Demographic information including age, date of birth, gender, nationality, and citizenship status;
Employment information, professional credentials, and educational background;
User-generated content including but not limited to project files, source code, documentation, comments, messages, and any other materials uploaded, transmitted, or stored using the Service;
Any other information you voluntarily provide through forms, surveys, feedback mechanisms, or communications with our support personnel.

2.2 Automatically Collected Technical Information

The Company employs sophisticated tracking technologies, including but not limited to cookies, web beacons, pixel tags, local storage objects, device fingerprinting, and proprietary tracking mechanisms to automatically collect extensive technical and behavioral data, including without limitation:

Internet Protocol (IP) addresses, including both IPv4 and IPv6 addresses, and precise geolocation data derived therefrom;
Device identifiers including MAC addresses, IMEI numbers, device serial numbers, and unique advertising identifiers;
Browser type, version, configuration, and plugin information;
Operating system type, version, and configuration details;
Hardware specifications including processor type, memory capacity, and storage information;
Network information including Internet Service Provider (ISP), connection type, and network performance metrics;
Comprehensive browsing history, including all URLs visited, timestamps, duration of visits, and navigation patterns;
Click-stream data, mouse movements, scroll patterns, and keystroke dynamics;
Search queries, form inputs, and interaction with Service features;
Performance data including page load times, error logs, and diagnostic information;
Referral sources, marketing campaign identifiers, and attribution data.

2.3 Geolocation and Biometric Data

The Service may collect precise real-time geolocation information, including GPS coordinates, Wi-Fi access point information, and cellular tower triangulation data. Additionally, to the extent permitted by applicable law and device capabilities, we may collect and process biometric information including but not limited to facial recognition data, fingerprint data, and voiceprint data for purposes of authentication, security, and service enhancement.

2.4 Communications Monitoring

All communications transmitted through, to, or from the Service, including but not limited to emails, messages, chat transcripts, video calls, and voice communications, may be monitored, recorded, archived, and analyzed by the Company for purposes including quality assurance, training, security, fraud prevention, legal compliance, and service improvement. You hereby consent to such monitoring and recording.

3. Extensive Use and Processing of Your Data

The Company shall have the absolute, perpetual, irrevocable, worldwide right and license to use, process, analyze, modify, adapt, reproduce, distribute, display, and otherwise exploit your Data for any purpose whatsoever, commercial or otherwise, including but not limited to:

Service Provision and Operations: Processing Data to provide, maintain, operate, enhance, personalize, and troubleshoot the Service; creating derivative works based on your content; and performing any technical operations necessary for Service functionality.
Analytics and Research: Conducting comprehensive data analytics, statistical analysis, machine learning operations, artificial intelligence training, market research, and user behavior studies; creating aggregated and de-identified datasets; developing predictive models and algorithms; and generating insights from your usage patterns.
Marketing and Advertising: Delivering targeted advertisements; conducting direct marketing campaigns; creating user profiles and segments for advertising purposes; sharing Data with advertising networks and partners; tracking advertising effectiveness; and conducting remarketing and retargeting campaigns across third-party platforms.
Business Development: Evaluating potential business transactions including mergers, acquisitions, divestitures, and partnerships; conducting due diligence; transferring Data as a business asset; and providing Data to potential investors, acquirers, or business partners.
Legal Compliance and Protection: Complying with legal obligations; responding to lawful requests from government authorities; enforcing our Terms of Service and other agreements; protecting our rights, property, and safety; preventing fraud, abuse, and security threats; investigating violations; and pursuing legal remedies.
Product Development: Developing new products, features, and services; testing and quality assurance; conducting A/B testing and experiments; training and improving artificial intelligence and machine learning systems; and creating derivative products based on aggregated user data.
Communications: Sending transactional messages; providing customer support; delivering marketing communications; sending newsletters and promotional materials; conducting surveys; and communicating about Service changes, updates, and new features.

4. Broad Data Sharing and Disclosure

The Company reserves the unconditional right to share, disclose, transfer, sell, license, or otherwise make available your Data to any Third Party, for any purpose, without limitation, including but not limited to:

4.1 Service Providers and Contractors

We may share Data with third-party service providers, vendors, contractors, and consultants who perform services on our behalf, including but not limited to hosting providers, cloud storage services, content delivery networks, payment processors, analytics providers, advertising networks, customer relationship management platforms, email service providers, and any other operational service providers. These parties may be located anywhere in the world and may have access to and process your Data in accordance with their own privacy policies.

4.2 Corporate Affiliates and Subsidiaries

Your Data may be shared with our parent companies, subsidiaries, affiliates, and entities under common control or ownership, whether currently existing or subsequently formed, for any purpose including joint service offerings, cross-promotional activities, consolidated analytics, and internal business operations.

4.3 Business Transfers

In the event of any merger, acquisition, reorganization, sale of assets, bankruptcy, insolvency proceeding, or other corporate transaction, your Data may be transferred, sold, or assigned to the acquiring or successor entity without your consent or further notice. Such Data shall be deemed an asset of the Company and subject to transfer in any such transaction.

4.4 Advertising and Marketing Partners

We may share your Personal Information and usage data with advertising networks, marketing partners, data brokers, and analytics companies for purposes of targeted advertising, audience measurement, attribution analysis, and marketing campaign optimization. These third parties may combine your Data with information obtained from other sources to create comprehensive user profiles.

4.5 Law Enforcement and Legal Processes

We may disclose your Data to law enforcement agencies, government authorities, regulatory bodies, courts, and other third parties when we believe in good faith that disclosure is necessary to comply with legal obligations, respond to lawful requests, enforce our policies, investigate potential violations, protect our rights or property, ensure user safety, or prevent illegal activities. We may disclose Data without notice to you.

4.6 Public Disclosure

Certain information, including user-generated content, profile information, and usage statistics, may be publicly displayed or disclosed as part of the Service functionality. Additionally, we may publicly disclose aggregated or de-identified information for marketing, research, or business purposes.

4.7 Other Third Parties

We may share your Data with any other Third Party where you have consented to such sharing, where we have a legitimate business interest, or where such sharing is necessary for the provision of the Service. We shall have sole discretion in determining when such conditions are satisfied.

5. Data Retention and Storage

The Company shall retain your Data for as long as reasonably necessary to fulfill the purposes outlined in this Policy, comply with legal obligations, resolve disputes, enforce agreements, and for any other legitimate business purpose. "As long as reasonably necessary" shall be determined at the Company's sole discretion and may extend indefinitely. Even after account deletion or termination, we may retain copies of your Data in backup systems, archived records, and aggregate datasets. Certain Data may be retained indefinitely even after you cease using the Service.

Data may be stored on servers located anywhere in the world, including jurisdictions that may not provide equivalent levels of data protection as your home jurisdiction. By using the Service, you consent to the international transfer and storage of your Data.

6. Data Security Disclaimer

While the Company implements commercially reasonable security measures to protect Data from unauthorized access, alteration, disclosure, or destruction, we cannot and do not guarantee absolute security. You acknowledge and agree that:

No data transmission over the Internet or electronic storage system is completely secure;
Unauthorized access, hacking, data breaches, and other security incidents may occur;
The Company shall not be liable for any unauthorized access, use, or disclosure of your Data;
You transmit Data to us at your own risk;
The Company makes no warranties regarding the security of your Data;
You are solely responsible for maintaining the confidentiality of your account credentials;
Any security breach may not be reported to you in a timely manner or at all, except as required by applicable law.

7. Your Limited Rights

Subject to significant limitations, exceptions, and conditions determined at our sole discretion, and only to the extent required by applicable law, you may have certain rights regarding your Data, including:

7.1 Access and Portability

You may request access to certain Personal Information we maintain about you, subject to verification of your identity, payment of applicable fees, and our determination that providing such access would not compromise security, violate third-party rights, or conflict with legal obligations. We may deny such requests for any reason. Data portability may be provided in a format of our choosing and may exclude certain categories of Data.

7.2 Correction and Deletion

You may request correction of inaccurate Personal Information or deletion of certain Data, subject to numerous exceptions including but not limited to: legal obligations to retain Data, ongoing transactions, fraud prevention, security purposes, exercise or defense of legal claims, internal business operations, public interest, and technical limitations. We may deny deletion requests in our sole discretion. Deletion of certain Data may result in immediate termination of your account and access to the Service without refund.

7.3 Opt-Out Rights

You may opt out of certain marketing communications by following unsubscribe instructions, though we may continue to send transactional and service-related messages. Opting out of data collection may require ceasing all use of the Service. We may continue to collect certain Data even after opt-out for purposes of legal compliance, fraud prevention, and business operations.

7.4 Exercise of Rights

To exercise any of the above rights, you must submit a written request to privacy@vibe.site. We may require extensive verification of your identity, impose unreasonable fees, and take up to ninety (90) days or longer to respond. We reserve the right to deny any request for any reason or no reason.

8. Cookies and Tracking Technologies

The Service employs extensive tracking technologies including first-party and third-party cookies, persistent cookies, session cookies, web beacons, pixel tags, local storage, IndexedDB, canvas fingerprinting, browser fingerprinting, and other tracking mechanisms. These technologies track your activity across the Service and third-party websites, create persistent identifiers, and enable targeted advertising. By using the Service, you consent to such tracking. While you may adjust browser settings to reject cookies, doing so may severely limit Service functionality and may not prevent all tracking.

9. Third-Party Services and Links

The Service may contain links to, integrate with, or otherwise interact with third-party websites, services, and platforms. The Company has no control over and assumes no responsibility for the privacy practices of such third parties. This Policy does not apply to third-party services. You access third-party services at your own risk and should review their privacy policies. The Company may share your Data with third parties who may use it in accordance with their own privacy policies, which may be less protective than this Policy.

10. Children's Privacy

The Service is not intended for children under the age of thirteen (13). However, we do not actively verify the age of users. If we become aware that we have collected Personal Information from a child under 13, we may delete such information, though we are under no obligation to do so. Parents or guardians who believe their child has provided us with Personal Information may contact us, though we may require extensive verification before taking any action.

11. International Data Transfers

Your Data may be transferred to, stored, and processed in any country where we or our service providers maintain facilities. These countries may have data protection laws that differ from and provide less protection than those of your jurisdiction. By using the Service, you expressly consent to such international transfers and processing. We may transfer Data to countries not deemed to provide adequate protection under applicable law. You waive any claims arising from such transfers.

12. California Privacy Rights (Minimal Compliance)

If you are a California resident, the California Consumer Privacy Act ("CCPA") may provide you with certain rights. However, such rights are subject to numerous exceptions and limitations. We may sell or share Personal Information as defined under the CCPA. To the limited extent required by law, California residents may request information about Data collection and sharing practices, though we may deny such requests based on various exemptions. Any requests must be submitted in writing and may take up to forty-five (45) days or longer to process. We do not guarantee compliance with all CCPA provisions and reserve all defenses available under law.

13. European Data Protection Rights (Minimal Compliance)

If you are located in the European Economic Area, United Kingdom, or Switzerland, the General Data Protection Regulation ("GDPR") may apply. However, we may rely on numerous legal bases for processing including consent, contract necessity, legitimate interests, legal obligations, and vital interests. We may transfer Data outside the EEA to countries not deemed adequate by the European Commission. To the extent required by law, you may have certain rights including access, rectification, erasure, restriction, data portability, and objection, though such rights are subject to significant limitations and exceptions. We reserve all defenses available under the GDPR and related regulations.

14. Modifications to This Policy

The Company reserves the absolute right to modify, amend, revise, or replace this Policy at any time, in whole or in part, for any reason or no reason, at our sole and unfettered discretion, without prior notice or consent. Any modifications shall be effective immediately upon posting to the Service. Your continued use of the Service following any modification constitutes your binding acceptance of the modified Policy. It is your sole responsibility to regularly review this Policy. We have no obligation to notify you of changes.

15. Dispute Resolution and Arbitration

Any dispute, claim, or controversy arising out of or relating to this Policy or your Data shall be subject to the dispute resolution provisions set forth in our Terms of Service, including mandatory individual arbitration, waiver of class actions, waiver of jury trial, and limitations on remedies. By accepting this Policy, you agree to such binding arbitration provisions.

16. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, THE COMPANY SHALL NOT BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES ARISING FROM OR RELATING TO THE COLLECTION, USE, DISCLOSURE, OR SECURITY OF YOUR DATA, INCLUDING BUT NOT LIMITED TO DAMAGES FROM DATA BREACHES, UNAUTHORIZED ACCESS, IDENTITY THEFT, OR PRIVACY VIOLATIONS. IN NO EVENT SHALL OUR TOTAL LIABILITY EXCEED ONE HUNDRED DOLLARS ($100.00) OR THE AMOUNT YOU PAID TO USE THE SERVICE IN THE PRECEDING TWELVE MONTHS, WHICHEVER IS LESS.

17. Governing Law

This Policy shall be governed by and construed in accordance with the laws of the State of Delaware, United States of America, without regard to conflict of law principles. You irrevocably submit to the exclusive jurisdiction of the courts located in Delaware for any disputes not subject to arbitration.

18. Severability

If any provision of this Policy is found to be invalid, illegal, or unenforceable, such provision shall be modified to the minimum extent necessary to make it enforceable, or if not possible, severed, and the remaining provisions shall remain in full force and effect.

19. Entire Agreement

This Policy, together with our Terms of Service and any other legal notices published on the Service, constitutes the entire agreement between you and the Company regarding the matters addressed herein and supersedes all prior or contemporaneous communications, whether electronic, oral, or written.

20. Contact Information

For any questions, concerns, or requests regarding this Policy or your Data, you may contact us at:

Vibe Apps, Inc.
Legal Department - Privacy Compliance
Email: privacy@vibe.site
Please note: We are under no obligation to respond to inquiries and may require extensive verification before providing any information or taking any action.

← Return to Homepage