Home

Privacy Policy

Last updated: July 5, 2025

1. Introduction

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and protect information when you use our service.

Our company, HintCraft Spółka z o.o., is registered in Poland and complies with the General Data Protection Regulation (GDPR) and applicable Polish data protection laws (RODO).

2. Who We Are

Data Controller:

HintCraft Spółka z o.o.
ul. Kazimierza Morawskiego 5 /127, 30-102 Kraków, Poland
VAT EU: PL6792010000
Email: contact@hintcraft.com

3. What Data We Collect

We collect only the data necessary to provide our services. Depending on how you interact with our platform, we may collect:

  • Account creation: email, session metadata
  • Payments (via Stripe): billing name, payment tokens
  • Usage: language preference, AI prompt content
  • Analytics: anonymous data (via Plausible)

4. Legal Basis for Processing

We process your data under the following legal bases:

  • Performance of a contract
  • Legal obligations
  • Legitimate interests (e.g. analytics, security)
  • Consent (where applicable)

5. How We Use Your Data

  • To manage accounts and deliver services
  • To personalize features (e.g. language or AI suggestions)
  • To process payments securely
  • To comply with legal obligations
  • To monitor platform performance and prevent abuse

6. Sharing Your Data

We do not sell your personal data. We only share it with trusted providers:

  • Auth.js - user authentication
  • Stripe - secure payments
  • RunPod or Together.AI - AI request processing
  • Plausible - anonymous analytics
  • Government bodies - if legally required

7. International Transfers

Some services may be hosted outside the EU. We use GDPR-compliant safeguards like:

  • Data Processing Agreements (DPAs)
  • Standard Contractual Clauses (SCCs)
  • EU-based hosting where possible

8. Data Retention

  • Account data: retained until user deletes or becomes inactive
  • Billing data: up to 6 years
  • AI prompt history: optional, can be removed upon request

9. Your Rights

Under GDPR, you have the right to:

  • Access, correct or delete your data
  • Restrict or object to processing
  • Data portability
  • File a complaint with a supervisory authority

To exercise any of these rights, contact us at: contact@hintcraft.com

10. Cookies

We use only essential cookies:

  • Session cookies (Auth.js)
  • Language preference
  • Stripe checkout session cookies

We do not use tracking cookies. See our Cookie Policy for more.

11. AI and Prompt Data

When using AI features, we may temporarily process the input you provide (e.g. interview answers, profile summaries) to return results.

We do not use your data to train third-party models. Processing is performed through secure, privacy-aware providers.

12. Changes to This Policy

We may occasionally update this policy. Significant changes will be notified on our website or by email.

13. Contact

If you have any questions or requests related to your data, contact us at:
contact@hintcraft.com

HintCraft Spółka z o.o.
ul. Kazimierza Morawskiego 5 /127
30-102 Kraków, Poland