Your Data, Protected

Privacy Policy

Last updated: April 8, 2026

1

Introduction

Bittics BV (“Company”, “we”, “us”) operates PowerStudio.dev. This Privacy Policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and applicable Belgian and EU privacy laws.

2

Data Controller

Bittics BV is the data controller for personal data processed through PowerStudio.dev. Contact: [email protected]

3

Data We Collect

Account data

Name, email address, and profile information provided during registration (via Google, Microsoft, or email/password through Clerk).

Usage data

Prompts submitted, screenshots uploaded, generated outputs, credit usage, and interaction logs.

Technical data

IP address, browser type, device information, and cookies for analytics and service functionality.

Payment data

Processed by Stripe. We do not store credit card numbers or full payment details on our servers.

4

How We Use Your Data

Service delivery — to process your prompts, generate outputs, and manage your account and credits.
Service improvement — to analyze usage patterns and improve our AI models and platform.
Communication — to send service-related notifications and respond to support requests.
Legal compliance — to comply with legal obligations and protect our rights.
5

Legal Basis for Processing (GDPR)

Contract performance — processing necessary to provide the Service you requested.
Legitimate interest — analytics, security, and service improvement.
Consent — marketing communications (where applicable).
Legal obligation — tax records, fraud prevention.
6

Data Sharing

We share data with the following third parties, solely for the purposes described:

Clerk

Authentication & user management

Stripe

Payment processing

OpenAI / AI providers

Prompt processing & generation

Vercel

Hosting & deployment

Railway

Backend infrastructure

Sentry

Error monitoring

Google Analytics

Usage analytics

Microsoft Clarity

Usage analytics

We do not sell your personal data to third parties.

7

Data Retention

We retain your account data for as long as your account is active. Generated outputs and prompts are retained for 90 days after generation unless you delete them sooner. Upon account deletion, we remove your personal data within 30 days, except where retention is required by law.

8

Your Rights (GDPR)

Access your personal data
Rectify inaccurate data
Erase your data (“right to be forgotten”)
Restrict processing in certain circumstances
Data portability — receive your data in a structured format
Object to processing based on legitimate interest
Withdraw consent at any time where processing is based on consent

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

9

Cookies

We use essential cookies for authentication and session management, and analytics cookies (Google Analytics, Microsoft Clarity) to understand usage. You can manage cookie preferences through your browser settings.

10

International Transfers

Some of our service providers (AI APIs, hosting) are based in the United States. Data transfers are protected by Standard Contractual Clauses (SCCs) or other approved mechanisms under GDPR.

11

Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS), secure authentication, and access controls.

12

Children

The Service is not intended for children under 16. We do not knowingly collect data from children under 16.

13

Changes

We may update this Privacy Policy from time to time. We will notify users of material changes via email or in-app notification.

14

Supervisory Authority

You have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit) at www.gegevensbeschermingsautoriteit.be.

15

Contact

For privacy-related questions, contact us at [email protected].