Skip to content
SOSEI
Log InGet Started

Privacy Policy

Effective date: April 16, 2026

SOSEI (“we”, “us”) respects your privacy. This Privacy Policy explains what personal data we collect when you use sosei.site and the SOSEI platform, how we use it, and the rights you have under the EU General Data Protection Regulation (GDPR) and comparable laws.

1. Data Controller

The data controller for personal data processed via the SOSEI platform is the SOSEI operating entity. Contact: [email protected].

2. Data We Collect

  • Account data — email address, authentication metadata, password hash.
  • Project data — the source URLs you submit, scraped content, generated site content, hosting slugs.
  • Contact-form submissions on your hosted sites — stored so you can reply to your visitors.
  • Billing data — minimal information forwarded to our payment processor; we do not store full card numbers.
  • Technical data — IP address, browser user-agent, and request logs, used for security and abuse prevention.

3. Legal Bases (GDPR Art. 6)

  • Contract — to provide the Service you requested.
  • Legitimate interest — to operate, secure, and improve the platform.
  • Consent — for optional analytics or marketing where required. You can withdraw consent at any time.
  • Legal obligation — to comply with tax, accounting, and lawful requests.

4. How We Use Data

  • Rebuilding, hosting, and maintaining your site.
  • Account management, billing, support.
  • Security, fraud prevention, and abuse mitigation.
  • Aggregated, non-identifying analytics to improve the product.

We do not sell personal data. We do not use your content to train third-party AI models.

5. Sharing & Sub-processors

We share data with trusted vendors who process it on our behalf under a data-processing agreement, including:

  • Supabase (authentication + PostgreSQL database hosting)
  • Anthropic (Claude API for content generation)
  • DigitalOcean (application hosting)
  • A payment processor (only when paid plans are enabled)

International transfers rely on Standard Contractual Clauses or equivalent safeguards as required by GDPR.

6. Retention

We retain account and project data for the life of your subscription plus a short grace period to allow recovery. Logs are retained for a limited period for security and debugging. You can request earlier deletion.

7. Your Rights

Under GDPR (and similar regimes) you have the right to:

  • access the personal data we hold about you,
  • rectify inaccurate data,
  • request erasure (“right to be forgotten”),
  • restrict or object to processing,
  • receive a portable copy of your data,
  • lodge a complaint with your local supervisory authority.

To exercise these rights, write to [email protected].

8. Security

We use TLS in transit, row-level security at the database layer, least-privilege service credentials, and infrastructure isolation. No method is 100% secure, but we work continuously to meet modern best-practice standards.

9. Children

SOSEI is not directed to children under 16 and we do not knowingly collect their data.

10. Changes

We may update this Privacy Policy. Material changes will be announced on this page with a revised effective date.

11. Contact

Privacy questions or requests: [email protected].