TopfoldsBack to site

Last updated: April 27, 2026

Privacy Policy

This Privacy Policy explains how Topfolds (“we,” “us,” or “our”) collects, uses, and protects your personal information when you use the website at topfolds.com and our related services (the “Service”).

1. Information we collect

We collect three categories of data:

  • Account information — when you sign in with Google, we receive your name, email address, profile image, and Google account identifier from Google's OAuth response. We do not receive your Google password.
  • Content you create — prompts you submit, URLs you ask us to analyze, landing-page source code we generate for you, chat messages with our AI agents, and reference images you upload.
  • Usage + technical data — logs of API requests, credit consumption, feature usage, browser type, IP address, and error reports. We use this to operate the Service and improve reliability.

2. How we use your information

  • To provide, maintain, and improve the Service.
  • To operate AI generations — your prompts, URLs, and reference images are forwarded to our AI providers (see Section 4) so they can produce the output you requested.
  • To process payments, manage subscriptions, and provide customer support.
  • To detect fraud, abuse, or policy violations.
  • To communicate service updates, security alerts, and transactional emails.

We do not sell your personal information, and we do not use your content to train third-party foundation models.

3. Legal bases (GDPR / UK GDPR)

If you're in the EEA or UK, we process your data on the following bases: performance of a contract (to provide the Service), legitimate interests (to operate and improve the Service, prevent abuse), consent (for optional communications), and legal obligation (tax, accounting, responding to lawful requests).

4. Third parties we share data with

We share limited data with providers that power the Service:

  • Google — for sign-in (OAuth).
  • Google (Gemini) — your prompts, reference images, and URL content are sent to Google's Generative AI API to produce generations.
  • Firecrawl — when you provide a URL for cloning or auditing, we send the URL to Firecrawl to fetch a page snapshot and screenshot.
  • Polar — handles billing, subscriptions, and one-time top-up payments.
  • Neon — hosts our application database.
  • Vercel — hosts the application and serves the Service.

Each of these providers is bound by their own privacy policies. We share only the minimum data required for them to perform the specific service on our behalf.

5. Data retention

We retain account data for as long as your account is active plus a short period after deletion to handle backups, chargebacks, and legal obligations. Generated landing-page content is stored as long as the project exists; you can delete any project at any time from the dashboard, which purges its content from our primary database.

6. Your rights

Depending on your jurisdiction, you may have the right to access, correct, export, or delete the personal data we hold about you, and to object to or restrict certain processing. To exercise these rights, email afriyiesamuel36@gmail.com. We'll respond within the timeline required by applicable law.

7. Security

We use industry-standard safeguards: TLS in transit, encryption at rest on our database provider, SHA-256 hashing of API keys, OAuth-only sign-in (no password storage), and scoped access controls. No system is perfectly secure; if we discover a breach affecting your account we will notify you as required by applicable law.

8. International transfers

The third-party providers listed in Section 4 operate across multiple regions, including data centers in the United States and the European Union. By using the Service, you acknowledge that your data may be transferred to, stored in, and processed in countries other than your own, and that the data-protection laws of those countries may differ from your own.

9. Children

The Service is not directed to children under 16. We do not knowingly collect personal data from children. If we become aware that a child has provided us data, we will delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date above reflects the most recent revision. Material changes will be announced by email or in-product before they take effect.

11. Contact

Questions, complaints, or data-subject requests: afriyiesamuel36@gmail.com.