BF
BannerForge

Privacy Policy

Last updated: February 27, 2026

1. Information We Collect

When you use BannerForge, we collect:

  • Account information: Name, email address, and hashed password when you create an account.
  • OAuth data: If you sign in with Google or GitHub, we receive your name, email, and profile picture from the provider.
  • Usage data: Number of banner generations, projects created, and subscription status.
  • URLs you submit: Website URLs you provide for banner generation. We scrape publicly available content (colors, images, text) from these URLs.
  • Payment information: Handled entirely by Stripe. We never store your credit card details.

2. How We Use Your Information

  • To provide and improve the banner generation service.
  • To manage your account and subscription.
  • To send transactional emails (password resets, billing notifications).
  • To enforce usage limits and prevent abuse.

3. Third-Party Services

We use the following third-party services:

  • Stripe: Payment processing. Subject to Stripe's Privacy Policy.
  • Anthropic (Claude): AI-generated ad copy. We send scraped website data (not your personal data) to generate marketing text.
  • Google / GitHub: OAuth authentication (optional). Subject to their respective privacy policies.
  • Plausible Analytics: Privacy-friendly, cookie-free analytics. No personal data is collected.
  • Resend: Transactional email delivery.

4. Cookies

We use only essential cookies for authentication (session tokens). We do not use tracking cookies or third-party advertising cookies. Plausible Analytics is cookie-free.

5. Data Retention

Your account data and generated banners are retained for as long as your account is active. You can delete your account and all associated data at any time from your Dashboard settings. After account deletion, all data is permanently removed within 30 days.

6. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access, correct, or delete your personal data.
  • Export your data in a portable format.
  • Withdraw consent for data processing.
  • Lodge a complaint with a supervisory authority.

To exercise these rights, contact us at hello@bannerforge.app.

7. Data Security

Passwords are hashed with bcrypt. All connections use HTTPS/TLS. We follow industry-standard security practices to protect your data.

8. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via email or a notice on our website.

9. Contact

Questions about this policy? Email us at hello@bannerforge.app.