Privacy Policy
EU General Data Protection Regulation (GDPR) · Updated 8.7.2026
1. Data controller
VibePrint (sole trader, Finland) · tuki@vibeprint.fi
2. What data we process and why
- Account data (email, login credentials) — performance of contract: account management, credit balance, purchase history.
- Project content (descriptions you write, generated models, dimension sheets) — performance of contract: the core function of the service.
- Payment data — processed by Stripe; we only receive the payment status and amount, never card details.
- Technical logs (IP address, request timestamps) — legitimate interest: abuse prevention and troubleshooting. Retained for 90 days.
3. Processors and transfers
Our processors: Anthropic (model generation — your description is sent for processing; not used for model training per API terms), Stripe (payments), and UpCloud (servers and storage, EU data centers). Transfers outside the EU (Anthropic, Stripe: USA) are based on the EU Commission's standard contractual clauses / the Data Privacy Framework.
4. Retention periods
Account and projects: until you delete your account. Purchase records: 6 years (Finnish Accounting Act). Technical logs: 90 days.
5. Your rights
You have the right to access your data, rectify it, erase it (deleting your account removes projects and models; accounting records are kept for the legally required period), restrict processing, data portability, and to lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi). Requests: tuki@vibeprint.fi.
6. Cookies
We use only essential cookies (session identification) — no advertising or tracking cookies without separate consent. If we introduce analytics or ad tracking (e.g. Meta Pixel), we will ask for consent first.