At LandMake, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information when you use our AI landing page generation service at landmake.dev. This policy complies with Argentine Law 25.326 (Personal Data Protection), the EU General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA).
The data controller is LandMake, based in Argentina. For data protection inquiries, contact us at nicolas.cainzos@vaitrox.com.ar.
Account Information: Email address and password (hashed) when you register.
Usage Data: Generation prompts, generated code, project names, version history, deployment status, and interaction patterns.
Payment Data: Payments are handled entirely by Polar.sh (Merchant of Record). We receive subscription status and plan type — we do NOT store credit card numbers or billing addresses.
Third-Party OAuth: If you connect GitHub, we store your GitHub username and an access token for code export functionality.
Analytics on Deployed Sites: We collect anonymized visitor data on deployed sites: page view counts, referrer URLs, user agent strings, and IP address hashes (raw IPs are never stored).
Cookies: Essential cookies for authentication and functional cookies for UI preferences (model selection, sound toggle). We do not use advertising cookies.
We use your information to: provide and maintain the Service; process generations and manage credits; manage subscriptions; deploy and serve generated landing pages; provide analytics; send essential communications; improve the Service; and prevent abuse.
We process data based on: Contract performance — to provide the Service; Legitimate interests — to improve the Service and ensure security; Consent — for optional features like analytics, which you can withdraw at any time.
Your data is stored on servers operated by Supabase (United States) and Vercel (global CDN). By using the Service, you consent to the transfer of your data to the United States. These transfers are protected by Standard Contractual Clauses and appropriate safeguards as required by applicable law.
We do NOT sell your personal data. We share data only with service providers (Supabase, Vercel, Polar.sh, DeepSeek, Anthropic, OpenAI), law enforcement when required by law, and in the event of a business transfer. Your generation prompts are sent to AI providers for processing — these providers have their own privacy policies.
Account data is retained while your account is active. Project data is retained until you delete it. Deployed sites inactive for 90+ days may be automatically removed. Analytics data is retained for 12 months. After account deletion, anonymized aggregate data may be retained for statistics.
All users: Access, correct, delete your data, and export your projects.
EU/EEA (GDPR): Right to access, rectification, erasure, restriction, portability, objection, and withdrawal of consent.
California (CCPA): Right to know, delete, opt-out of sale (we don't sell), and non-discrimination.
Argentina (Law 25.326): Right to access, rectification, suppression, and confidentiality of personal data.
The Service is not intended for users under 18. We do not knowingly collect data from minors.
We implement industry-standard security: TLS/SSL encryption, hashed passwords, row-level security, rate limiting, and webhook signature verification. No system is 100% secure.
We may update this policy at any time. Material changes will be notified via email. Continued use constitutes acceptance.
For privacy inquiries: nicolas.cainzos@vaitrox.com.ar
Last updated: April 1, 2026