Sign inGet started

Privacy Policy

Last updated: June 12, 2026

1. Overview

This Privacy Policy explains what data U2C — UI To Code ("U2C", "we", "us") collects, how we use it, and your rights. We collect only what we need to run the service.

2. Data We Collect

  • Account data — email address and password (stored as a salted hash; we never store plain-text passwords).
  • Usage content — the prompts, images, and generations you create, plus credit balances and plan status.
  • Payment data — handled entirely by Paddle.com, our merchant of record. We never see or store your card details. We receive from Paddle only the information needed to fulfill your purchase (e.g. transaction ID, plan purchased, billing status).
  • Technical data — basic logs (IP address, browser type, timestamps) for security and debugging.

3. How We Use Data

  • To provide the service: run generations, track credits, manage subscriptions.
  • To secure the service: prevent fraud, abuse, and unauthorized access.
  • To communicate with you about your account, billing, and important service changes.

We do not sell your personal data, and we do not use your data for third-party advertising.

4. AI Processing

Your prompts and uploaded images are sent to third-party AI model providers to produce generations. These providers process the data to return results to you. We do not permit them to use your content to train their models where the provider offers that option.

5. Sharing

We share data only with:

  • Paddle — payment processing, billing, and tax compliance (see Paddle's Privacy Policy);
  • AI model providers — to process your generation requests;
  • Hosting and infrastructure providers — to run the service;
  • authorities, where required by law.

6. Cookies

We use only essential cookies: a session cookie to keep you signed in. We do not use advertising or cross-site tracking cookies.

7. Retention

We keep your account data and generations while your account is active. If you delete your account, we delete or anonymize your personal data within 30 days, except records we must keep for legal, tax, or fraud-prevention purposes.

8. Your Rights

Depending on your location (e.g. GDPR, CCPA), you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, email us at the address below. We respond within 30 days.

9. Security

We use industry-standard measures including encrypted transport (HTTPS), hashed passwords, and access controls. No system is perfectly secure; if a breach affects your data we will notify you as required by law.

10. Children

U2C is not directed at children under 13, and we do not knowingly collect their data. If you believe a child has provided us data, contact us and we will delete it.

11. Changes

We may update this policy from time to time. Material changes will be announced on the site or by email.

12. Contact

Privacy questions or requests: noreply@u2c.dev

Terms of ServicePrivacy PolicyRefund Policy