Privacy Policy

Last updated June 20, 2026 · Effective June 20, 2026

vibecodii.com ("vibecodii," "we," "us") operates a learning platform for AI-first software building ("vibe coding"). This Privacy Policy explains how we collect, use, disclose, and protect personal data when you use https://vibecodii.com and related services (the "Service").

Read our Terms of Service

What we collect

We do not intentionally collect passwords (Clerk stores credentials) or payment card data until a paid tier launches (then via Stripe).

CategoryExamplesSource
Account dataEmail, name, profile imageClerk (sign-up / Google OAuth)
Profile dataDisplay name, bio, social linksYou (settings)
Learning dataLesson completions, streaks, badgesYour use of the Service
Challenge dataPrompts you submit, scoresYour submissions
NewsletterEmailYou (opt-in forms)
Technical dataIP address, browser type, deviceVercel logs, PostHog
CommunicationsSupport emailsYou

How we use data

PurposeLawful basis (GDPR)DPDP basis
Provide accounts and lessonsContractConsent / legitimate use
Save progress and streaksContractLegitimate use
Send transactional emailContractLegitimate use
NewsletterConsentConsent
Analytics and product improvementLegitimate interestLegitimate use
Security and fraud preventionLegitimate interest / legal obligationLegitimate use
Legal complianceLegal obligationLegal obligation

Cookies and similar technologies

v1.0 uses essential cookies plus analytics (PostHog). v1.5 will add a consent banner for EU, UK, and India where required.

Sharing and subprocessors

We share data with service providers (Clerk, Supabase, Vercel, PostHog, Resend, Upstash, Sentry) who process data only under our instructions.

We do not sell your personal data.

International transfers

Data may be processed in the United States and other countries where our providers operate. We rely on vendor standard contractual clauses and DPAs where applicable.

Retention

  • Account data: until deletion plus a short backup window

  • Challenge prompts: up to 24 months after submission

  • Newsletter: until unsubscribe plus 30 days

  • Analytics: per PostHog settings (default 12 months)

Your rights

All users may request access, correction, or deletion by emailing privacy@vibecodii.com.

EEA/UK (GDPR): rights to access, rectification, erasure, restriction, portability, objection, and lodge a complaint with your supervisory authority.

India (DPDP): rights as a Data Principal including access, correction, erasure, and grievance redressal.

California (CPRA): we do not sell personal information; rights to know/delete may apply — contact us.

We respond within 30 days or timelines under applicable law.

Children

The Service is intended for users 16 and older. We do not knowingly collect data from children under 16. Contact us to delete such data.

Security

We use encryption in transit (TLS), Row Level Security on databases, and access controls described in our security playbook. No method is 100% secure.

India — Digital Personal Data Protection Act, 2023

  • Consent: clear sign-up and Privacy Policy acceptance; separate consent for newsletter

  • Grievance redressal: privacy@vibecodii.com, response within 30 days

  • Cross-border transfer: disclosed above; safeguards via processor contracts

  • Breach notification: we notify affected users and authorities as required by law

Changes

We post updates on this page and update the "Last updated" date. Material changes will be notified by email or in-app notice where appropriate.

Contact

  • Privacy: privacy@vibecodii.com

  • Security: security@vibecodii.com

  • General: hello@vibecodii.com

Questions: privacy@vibecodii.com