UIHTML
Sign inSign up

Privacy Policy

Last updated: 2026-04-26

This Privacy Policy describes how UIHTML ("we", "our", "us") collects, uses, and shares your personal information when you use uihtml.com (the "Service"). We aim to comply with applicable data protection laws including the EU/UK General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Data we collect

  • Account data: email address, hashed password, username, avatar URL, language preference.
  • Payment data: order ID, package, USD amount, payment status. Card details are processed by DodoPayments and never stored by us.
  • Usage data: prompts, uploaded images, generated HTML, model used, token counts, generation status, timestamps.
  • Technical data: IP address (for rate-limiting and abuse prevention), browser user-agent, request timestamps.
  • Cookies: see our Cookie Policy.

2. How we use your data

  • Provide and operate the Service (authentication, generation, credit management).
  • Process payments and prevent fraud.
  • Send transactional emails (verification, payment receipts, account notices).
  • Comply with legal obligations and respond to lawful requests.
  • Improve the Service and troubleshoot issues.

3. Lawful basis (GDPR)

  • Contract — to deliver the service you signed up for.
  • Legal obligation — tax, accounting, anti-fraud requirements.
  • Legitimate interest — security, abuse prevention, service improvement.
  • Consent — non-essential cookies and marketing communications (where applicable).

4. Sharing with third parties

We share data only with processors that help us deliver the service:

  • Anthropic (USA) — processes prompts and uploaded images to generate HTML. Anthropic does not retain content for model training under our API agreement.
  • DodoPayments — payment processing.
  • Resend — transactional email delivery.
  • Hosting / database / Redis providers — required infrastructure.

We never sell your personal data.

5. International data transfers

Some of our processors are located outside the EEA / UK (notably the USA). Where transfers occur, we rely on Standard Contractual Clauses or equivalent safeguards.

6. Data retention

  • Generation records (prompts, generated HTML): 30 days, then automatically deleted.
  • Account data: kept while your account is active.
  • Payment records: retained for up to 7 years to meet tax / accounting obligations.
  • Backups: rotated within 30 days.

7. Your rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction or deletion of inaccurate or unnecessary data.
  • Restrict or object to processing.
  • Receive your data in a portable format.
  • Withdraw consent (where consent is the basis).
  • Lodge a complaint with your local data protection authority.

To exercise these rights, email support@uihtml.com. We respond within 30 days.

8. Security

Passwords are hashed with bcrypt. Sessions use signed JWTs in HTTP-only cookies. Traffic is served over HTTPS in production. Despite our safeguards, no online service can guarantee absolute security.

9. Children

The Service is not intended for users under 16. If you believe a minor has registered, please contact us and we will remove the account.

10. Changes to this policy

We may update this policy from time to time. Material changes will be announced via email or in-product notice at least 14 days before they take effect.

11. Contact

For privacy questions or requests, contact support@uihtml.com.