Privacy Policy

1. Overview

Capsul is an experimental, independently-developed, beta-stage AI app-builder platform. This Privacy Policy explains what data is collected, how it is used, and your rights. By using Capsul, you agree to the practices described here. This policy may change at any time; continued use of the platform constitutes acceptance of any updates.

Capsul is operated by a single independent developer, not a company. There is no dedicated privacy or legal team. This policy is provided in good faith on a best-effort basis.

2. Information We Collect

• Account information: Your name, email address, and profile photo obtained via Google Sign-In (Firebase Authentication).
• App data: The apps you create, their prompts, generated code, version history, and SQLite database contents.
• API keys: Your AI provider API keys (Groq, OpenRouter, NVIDIA NIM, etc.), stored AES-256 encrypted at rest.
• Usage data: Number of apps created, AI generation counts per user, and rough feature usage for platform improvement and rate-limit enforcement.
• Authentication events: Login and session data managed by Firebase Authentication.

3. How We Use Your Data

• To provide and operate the Capsul platform.
• To route your AI requests to your chosen provider using your API key.
• To save your apps and databases so you can access them later.
• To enforce per-user AI generation rate limits.
• To enforce per-account app count limits.
• To improve platform stability and features.

We do not sell your data to third parties or use your app contents for advertising. We do not use your app content to train AI models.

4. Platform Usage Tracking

Capsul tracks usage metadata to operate and enforce limits on the platform. This includes AI generation counts, app creation counts, and authentication events. This data is stored on self-hosted infrastructure and is not shared with third parties for advertising or analytics purposes.

5. Third-Party AI Providers — Your Prompts Leave This Platform

This is the most important privacy consideration when using Capsul. When you generate or modify apps, your prompt and context are sent directly to the third-party AI provider you have configured. Capsul has no control over what those providers do with your data.

• Free-tier AI models offered by providers like Groq, OpenRouter, and NVIDIA NIM may log, store, and use your prompts for model training or quality review per their own policies.
• Your app descriptions, feature requests, and any content you include in prompts are transmitted to and processed by these providers.
• Capsul is not responsible for how any third-party AI provider handles your data.
• Never include sensitive, confidential, personal, financial, medical, or legally protected information in your prompts.

You must review the privacy policies of your chosen provider before use: Groq, OpenRouter, NVIDIA.

6. Data Storage and Security

Your data is stored on self-hosted infrastructure. API keys are AES-256 encrypted before being stored in the database. However, as an experimental beta platform operated by a single developer, no guarantees are made about the absolute security, durability, or availability of stored data.

Security measures are implemented in good faith but this is not a SOC 2 or ISO 27001 certified service. Do not store highly sensitive data in Capsul apps.

7. Your Responsibility to Back Up Data

Capsul stores your apps and databases on a best-effort basis. There are no guaranteed backups. Data loss is a real possibility on this beta platform due to server issues, bugs, or platform changes.

⚠ You are solely responsible for backing up any apps or data you wish to keep. Use the download feature regularly. Do not store anything in Capsul that you cannot afford to lose.

8. Data Retention and Deletion

Your data is retained as long as your account exists. You may request account deletion, which will remove your profile and associated apps. Some residual data may remain in system logs or backups for a limited period. There is no guaranteed timeline for complete deletion given the beta nature of the platform.

9. Firebase Authentication and Cookies

Capsul uses Firebase Authentication (by Google) for sign-in, which sets authentication cookies and uses browser local storage to maintain your login session. Firebase's own privacy policy governs data processed by Firebase. No third-party advertising or tracking cookies are set by Capsul itself.

Review Firebase's privacy policy for details on authentication data.

10. Children's Privacy

Capsul is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided personal information through this platform, please contact us so it can be removed.

11. No Warranties — Beta Platform

This platform and its data handling practices are provided on an experimental, best-effort basis. The developer makes no warranties, express or implied, about the completeness, accuracy, reliability, or security of any data practices described here. Use this platform at your own risk.

12. Changes to This Policy

This Privacy Policy may be updated at any time without prior notice. Continued use of Capsul after changes are posted constitutes your acceptance of the updated policy. It is your responsibility to review this policy periodically.