Beta Program
Privacy Policy
Contents
1. Who we are
The Service is operated by Buildova Ltd. For the purposes of applicable data-protection law (including the UK GDPR and EU GDPR where relevant), we are the “controller” of the personal data described in this policy. You can reach us at privacy@buildova.io.
2. Data we collect
We collect the following categories of personal data:
| Category | Examples | Source |
|---|---|---|
| Account & contact data | Name, email address, phone number, password (stored only as a secure hash), invite code redeemed | You provide it |
| Waiting-list data | Name, email address, phone number submitted to be notified about launch | You provide it |
| Content & build data | The descriptions and prompts you submit, project settings, and the applications and source code generated for you | You provide / generated for you |
| Usage & build records | Builds, deployments, credit consumption, metered service usage (email/SMS/AI), feature usage, feedback you send | Collected automatically |
| Billing data | Membership status, currency, and payment records. Card details are handled by our payment processor; we do not store full card numbers | You / payment processor |
| Technical & log data | IP address, device and browser information, timestamps, error logs, and similar diagnostic data | Collected automatically |
| Hosting connection data | Where you connect your own hosting, the credentials or tokens needed to deploy on your behalf | You provide it |
3. How we use your data
- To create and administer your account and provide the Service;
- To build, deploy, and run the applications you request, including passing the necessary data to third-party providers;
- To operate beta access, invite codes, and build credits, and to enforce limits;
- To communicate with you about your account, the beta, launch timing, support, and important notices (including by email and, where you provide it, phone/SMS);
- To meter, bill, and prevent abuse of usage-based services;
- To monitor, debug, secure, and improve the Service, and to act on your feedback;
- To comply with legal obligations and to establish, exercise, or defend legal claims.
Beta monitoring. While the Service is in beta, our team reviews how it is used so we can find and fix problems: this includes the build descriptions and prompts you submit, the questions you are asked and the answers you give, and whether each build succeeded, failed, or was deployed, together with associated costs. This review covers your use of the build engine only. We do not access the data your deployed applications hold for you or your customers. Beta monitoring records are kept only as long as needed for product improvement, and you may ask us to delete them at any time via privacy@buildova.io.
4. Legal bases for processing
Where data-protection law requires a legal basis, we rely on: performance of a contract (to provide the Service you sign up for); our legitimate interests (to secure, improve, and promote the Service, and to prevent abuse), balanced against your rights; your consent (for example, certain marketing communications or non-essential cookies, where required), which you may withdraw at any time; and compliance with legal obligations.
5. AI processing of your content
The Service uses third-party artificial-intelligence providers to generate applications and code. When you describe what you want built, your prompts and related project data are transmitted to and processed by these AI providers to produce the output. Please do not submit sensitive personal data, secrets, or confidential third-party information in your prompts unless you are comfortable with it being processed in this way. We do not control how third-party AI providers operate their models, but we select providers that offer business-grade data handling and, where available, do not train their models on submitted content.
6. Who we share data with
We do not sell your personal data. We share it with service providers (“processors”) who help us run the Service, under contracts that require them to protect it and use it only on our instructions. These include:
- AI processing — to generate your applications and code (e.g. Anthropic);
- Hosting & infrastructure — to run our servers and build/deploy your apps (e.g. DigitalOcean);
- Storage — to store builds and related files (e.g. Amazon Web Services);
- Payments — to process payments and store card data securely (e.g. Stripe);
- Email — to send transactional and account emails (e.g. Postmark);
- Messaging — to send SMS where applicable (our messaging provider).
We may also disclose data where required by law, to enforce our terms, to protect our rights, property, or safety or those of others, or in connection with a merger, acquisition, or sale of assets (in which case we will notify you of any change in how your data is handled).
7. Cookies & analytics
We use a small number of cookies and similar technologies that are necessary for the Service to function, such as keeping you signed in and remembering basic preferences. Where we use any non-essential cookies or analytics, we will do so in line with applicable law and, where required, ask for your consent. You can control cookies through your browser settings, though disabling essential cookies may stop parts of the Service working.
8. Data retention
We keep personal data for as long as needed to provide the Service and for the purposes set out above, and afterwards only as long as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. Beta data, builds, and accounts may be deleted or reset when the beta ends or your access lapses, so you should export anything you wish to keep. Waiting-list contact details are kept until you ask us to remove them or they are no longer needed.
9. Security
We take reasonable technical and organisational measures to protect personal data, including encryption in transit, hashed passwords, and access controls. However, no method of transmission or storage is completely secure, and because the Service is a beta you should not store sensitive or irreplaceable data in it. You are responsible for keeping your credentials and any hosting tokens secure.
10. International transfers
Our providers may process data in countries outside your own, including outside the UK and European Economic Area. Where we transfer personal data internationally, we rely on appropriate safeguards such as adequacy decisions or standard contractual clauses where required by law.
11. Your rights
Subject to applicable law, you may have the right to: access the personal data we hold about you; correct inaccurate data; request deletion; object to or restrict certain processing; request portability of data you provided; and withdraw consent where we rely on it. To exercise these rights, contact privacy@buildova.io. We will respond as required by law. If you are in the UK or EEA and believe we have not handled your data properly, you may also lodge a complaint with your local data-protection authority (in the UK, the Information Commissioner’s Office).
12. Children
The Service is not directed to, and may not be used by, anyone under 18. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.
13. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date and, where appropriate, notify you by email or an on-site notice. Your continued use of the Service after changes take effect indicates your acceptance of the updated policy.
14. Contact
For privacy questions or requests, contact Buildova Ltd at privacy@buildova.io.