Privacy Policy

1. Information We Collect

We collect information necessary to provide and improve the Service:

• Account and registration data: Email address, name (if you provide it), and authentication-related information when you sign up or use third-party sign-in (e.g., Clerk).
• Usage data: API usage (e.g., number of PDF invocations, template creation and rendering), dashboard usage, and feature usage to operate the Service, enforce plan limits, and improve our product.
• Technical data: IP address, browser type, device information, and logs of requests to our API and website for security, debugging, and operations.
• Payment-related data: If you subscribe to a paid plan, we or our payment processor collect billing information as needed to process payments.

2. How We Use the Information

We use the information we collect to: provide, operate, and maintain the Service; enforce usage limits and billing; respond to your requests and support inquiries; improve the Service and develop new features; protect the security and integrity of the Service; and comply with legal obligations. We do not use your personal data for advertising or sell your personal data to third parties.

3. Legal Basis

Where applicable (e.g., under the GDPR), we process your data on the basis of: (a) performance of our contract with you (providing the Service); (b) our legitimate interests (e.g., security, analytics, improving the Service); and (c) your consent where we have asked for it (e.g., optional marketing). You may withdraw consent at any time where it applies, without affecting the lawfulness of processing before withdrawal.

4. Sharing and Disclosure

We do not sell your personal data. We may share information with:

• Service providers: Such as hosting (e.g., AWS), authentication (e.g., Clerk), and payment processors, who process data on our behalf under contractual obligations.
• Legal and safety: When required by law, to protect our rights or the safety of users, or in connection with a merger, sale, or other corporate transaction (with appropriate confidentiality and use restrictions).

We require service providers to use your information only as necessary to perform their services and in accordance with this policy.

5. Data Retention

We retain account and usage data for as long as your account is active and as needed to provide the Service and comply with legal obligations. Logs and technical data may be retained for a limited period for security and operations. After you close your account, we may retain certain data as required by law or for legitimate business purposes (e.g., resolving disputes); otherwise, we will delete or anonymize your data in accordance with our retention practices.

6. Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit and at rest where applicable, access controls, and secure API design. You are responsible for safeguarding your account credentials and API keys and for any use of the Service through your account. Please do not share API keys or expose them in client-side or public code.

7. Your Rights

Depending on your location, you may have the right to: access your personal data; correct inaccurate data; request deletion of your data; request a copy of your data in a portable format; object to or restrict certain processing; and withdraw consent where processing is based on consent. You may exercise these rights by using your account settings or by contacting us at support@microapplab.com. If you are in the European Economic Area or the UK, you also have the right to lodge a complaint with a supervisory authority.

8. Cookies and Similar Technologies

Our website and application may use cookies and similar technologies (e.g., session storage) for essential functionality (such as authentication and preferences), and optionally for analytics to improve the Service. You can manage cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of the Service.

9. International Transfers

Your data may be processed in countries other than your own, including the United States. Where we transfer data from the EEA, UK, or other regions with restricted transfer laws, we rely on adequacy decisions, standard contractual clauses, or other lawful mechanisms to ensure an adequate level of protection for your data.

10. Children

The Service is not directed at individuals under the age of 16 (or under 13 where applicable). We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us at support@microapplab.com and we will take steps to delete such information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date. For material changes that affect how we use your personal data, we may provide additional notice by email or through the Service. We encourage you to review this policy periodically.

12. Contact

For data protection inquiries or to exercise your privacy rights, please contact us at support@microapplab.com or visit our Contact page.