Privacy Policy

SimplyPintastic dba PIN Hacking ("us", "we", or "our") operates https://app.pinhacking.com (the "Site" or "Service").

Contact email: info@laurarike.com

We are committed to protecting and respecting your privacy. This Site collects some personal data from its users. This Privacy Policy informs you of our views, practices, and policies regarding the collection, use, and disclosure of personal data we receive from users of the Service. By submitting personal data to us, you agree to us using your personal data as described below.

• Account data: name, email address, password hash, and any profile details you add.
• Billing data: processed by Stripe. We receive limited metadata (plan, status, last four digits, billing country) but never your full card number.
• Usage data: pages visited, features used, generation counts, device/browser type, IP address, and timestamps.
• Content you submit: URLs, keywords, briefs, and other inputs you provide to our tools.
• Support communications: messages you send us by email or in-app.

• Authentication: we use Lovable Cloud (a managed backend built on Supabase) to store accounts and sessions. Passwords are hashed and salted; we never see them in plain text.
• Payments: Stripe processes all transactions under their own Privacy Policy and PCI-DSS controls.
• Google OAuth (Analytics, Search Console): when you connect your Google account, we request read-only scopes for the properties you choose. We use that data only to surface Pinterest content gaps and keyword opportunities inside your account. We do not sell it, share it with advertisers, or use it to train AI models.

When you generate pin titles, descriptions, board ideas, or keyword clusters, your inputs (URLs, keywords, briefs) are sent to our AI gateway and model providers for the sole purpose of returning a result to you.

• We do not use your prompts or outputs to train AI models.
• We retain generation history in your account so you can revisit past sessions. You can delete sessions at any time from inside the app.
• Our model providers may log requests transiently for abuse monitoring per their own policies.

We use essential cookies for authentication and session management, and limited analytics cookies to understand product usage. You can block cookies in your browser, but parts of the app will not function without them.

• To provide, maintain, and improve the Service.
• To process subscriptions, trials, and renewals.
• To send transactional email (receipts, trial reminders, security alerts).
• To respond to support requests.
• To detect, prevent, and address abuse, fraud, or security issues.
• To comply with legal obligations.

We share personal data only with vendors that help us run the Service:

• Lovable Cloud (managed backend, hosting, database, auth)
• Stripe (payments)
• AI model providers (generation requests)
• Email and CRM providers (transactional messages, support)
• Analytics providers (aggregate product usage)
• Google (only the data you authorize through OAuth)

We do not sell personal data. We may disclose data when required by law, court order, or to protect our rights and users.

We retain account and content data for as long as your account is active. On account closure, we delete or anonymize personal data within 60 days, except where retention is required for legal, tax, or fraud-prevention reasons. You can request deletion at any time by emailing info@laurarike.com.

Depending on your location, you may have the right to access, correct, export, or delete your personal data, to object to or restrict certain processing, and to withdraw consent. To exercise any of these rights, contact info@laurarike.com. We respond within 30 days.

We operate from the United States. If you access the Service from outside the US, your data will be transferred to and processed in the US and other countries where our subprocessors operate.

The Service is not directed at children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us data, contact info@laurarike.com and we will delete it.

We use industry-standard safeguards including encryption in transit (TLS), encryption at rest for sensitive fields, hashed passwords, row-level security on tenant data, and least-privilege access controls. No system is perfectly secure; please use a strong, unique password and keep it private.

We may update this policy as the Service evolves. We will update the "Last updated" date above and, for material changes, notify you by email or in-app banner.

Questions about this policy? Email info@laurarike.com.