AiCADGen
Start free
Legal

Privacy Policy

Last updated: 2 May 2026

This Privacy Policy describes how AI CAD Generator ("we", "us") collects, uses, stores, and discloses personal information. We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) and, where applicable, the EU/UK General Data Protection Regulation (GDPR).

1. Information we collect

1.1 Account information

When you register, we collect your name, email address, and a hashed (one-way encrypted) password. We do not store passwords in plaintext.

1.2 Billing information

For paid plans, our payment processor Stripe collects card details, billing address, and tax identifiers directly. We receive only a customer reference, transaction amounts, and tax data needed for invoicing. We do not store full card numbers on our servers.

1.3 Usage data

We collect prompts you submit, the CAD files generated, generation timestamps, project metadata, and aggregated usage statistics (number of generations, model used, errors).

1.4 Technical data

Server logs include IP address, browser user agent, and request paths. We use these for security monitoring and debugging.

1.5 Cookies

See our Cookie Policy for details.

2. How we use your information

  • To provide the Service (generate CAD files, manage your account)
  • To process payments and bill correctly (with Stripe)
  • To monitor for abuse and ensure platform security
  • To improve our prompts, sandbox, and infrastructure
  • To communicate with you about your account, billing, and product updates
  • To comply with legal obligations (tax, accounting, regulatory)

Under GDPR, our lawful bases are: contract (providing the Service you signed up for), legitimate interests (security, abuse prevention, product improvement), consent (optional marketing communications), and legal obligation (tax records).

3. Disclosure to third parties

We share information only with the following service providers, each bound by data-processing agreements:

  • Our AI providers — receive your prompts and any attached images to generate CAD code, drawings, and 3D models. Our providers operate under enterprise API agreements that do not use submissions to train models.
  • Stripe, Inc. — processes payments. Stripe Privacy Policy.
  • Our hosting provider — stores account data and CAD files on servers located in Australia or the EU (region depends on your account).

We do not sell your personal information. We may disclose information if required by law, court order, or to protect our rights or safety. The names of our specific AI and infrastructure providers are available on request to support@aicadgen.com.

4. International transfers

Our AI providers and Stripe process data in the United States. Where personal data is transferred from the EU/UK to the US, we rely on Standard Contractual Clauses and the EU-US Data Privacy Framework (where applicable).

5. Data retention

  • Account data: retained while your account is active and for up to 90 days after closure for backup purposes.
  • Generated CAD files: retained while your account is active. You can delete projects at any time.
  • Billing records: retained for 7 years to comply with Australian Taxation Office requirements.
  • Server logs: retained for 90 days.

6. Your rights

Under the APPs and GDPR, you have the right to:

  • Access the personal information we hold about you
  • Correct information that is inaccurate
  • Request deletion of your account and personal data ("right to erasure")
  • Export your data in a portable format
  • Object to or restrict certain processing
  • Withdraw consent to optional communications
  • Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or your local data protection authority

To exercise these rights, email privacy@aicadgen.com. We respond within 30 days.

6.1 How to delete your account

You can permanently delete your account and all associated data — projects, generations, generated CAD files, and chat history — at any time, with no need to contact us:

  • In the app or website: open Account settingsDelete account, confirm with your password, and your account and data are erased immediately.
  • By request: if you cannot access your account, email privacy@aicadgen.com from your registered address and we will delete it within 30 days.

Deletion is immediate and irreversible. Billing records required for tax compliance are retained as described in Data retention above; everything else is removed. Active paid subscriptions should be cancelled first (via your Google Play account for the Android app, or the Billing page on the web) to stop future charges.

7. Security

We use encryption in transit (HTTPS/TLS), bcrypt password hashing, JWT-based authentication, and isolated subprocess sandboxes for AI-generated code execution. No system is perfectly secure; we will notify affected users of any data breach within 72 hours where required by law.

8. Children

The Service is not directed to children under 16. We do not knowingly collect data from children. If you believe we have collected such data, contact us and we will delete it.

9. Changes

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-product notice.

10. Contact

Privacy Officer: privacy@aicadgen.com