PIYE Logo

PIYE — Privacy Policy

Last Updated: November 2025

This Privacy Policy explains how PIYE ("we", "our", "the Platform") collects, uses, stores, and protects information related to your use of our AI mentoring platform. By using PIYE you agree to the practices described here. If you do not agree, please discontinue use.

1. Information We Collect

We collect the following categories of data:

  • Account Data: Email address, display name, first and last name (if provided), verification status.
  • Authentication Data: OAuth provider identifiers (e.g. GitHub, Google) when you sign in using third-party services.
  • Project & Usage Data: Project titles, mentor interaction logs, learning progress, plan tier, usage counters (e.g. Studio or mentor session quotas).
  • Subscription & Billing: Stripe customer ID, subscription status, plan, promotion redemptions (discount snapshots). Billing details are handled by Stripe—we do not store full payment card numbers.
  • Technical Data: Browser agent, timestamps, coarse location inferred from IP (not stored long-term), and security-related metadata for fraud or abuse detection.
  • Support Data: Emails or messages you send to support.

2. How We Use Information

Your data is used to:

  • provide and personalize AI mentoring sessions
  • track learning progress and unlock Studio modules
  • enforce usage limits and quota fairness
  • process subscriptions and promotions via Stripe
  • improve platform reliability and feature relevance
  • send transactional emails (verification, password change, plan updates)
  • investigate security incidents or abuse

3. Legal Bases (EU / UK Users)

Where applicable under GDPR/UK GDPR we rely on:

  • Contract: Providing the service you request.
  • Legitimate Interests: Preventing abuse, improving the product.
  • Consent: Optional marketing (currently minimal or none).
  • Legal Obligation: Tax or compliance record keeping.

4. Cookies & Local Storage

PIYE uses a minimal set of client-side technologies:

  • Session cookies for authentication continuity.
  • Local storage for profile display sync and UI preferences.
  • No third-party advertising cookies.

You may block cookies in your browser; some features may degrade.

5. Third-Party Services

We integrate with trusted processors:

  • Stripe: Subscription billing, promotion codes, invoices.
  • Resend / SMTP: Transactional email delivery.
  • OAuth Providers: Optional identity (GitHub, Google).
  • Error & Performance Monitoring: May aggregate anonymized metrics (if enabled).

These providers process data under their own privacy policies.

6. Data Security

We implement reasonable safeguards including:

  • hashed passwords (bcrypt)
  • role & plan checks for restricted actions
  • rate limiting and anomaly detection
  • separation of billing from application logic

No system is perfectly secure; report concerns to security@piye.dev.

7. Data Retention

We retain:

  • account & subscription data while your account is active
  • limited logs for security (short-term)
  • Stripe billing records as required by law

On account deletion we queue removal of project data and anonymize usage metrics where feasible.

8. Your Rights

Depending on your jurisdiction, you may request:

  • access to personal data
  • correction of inaccuracies
  • deletion (subject to lawful retention needs)
  • export (data portability)
  • restriction or objection (where applicable)

Submit requests to privacy@piye.dev. We may verify ownership before action.

9. International Transfers

Data may be processed in regions where our infrastructure or providers operate. We rely on contractual safeguards and provider compliance frameworks.

10. Children

PIYE is not directed to children under 16. We do not knowingly collect data from them.

11. Changes to This Policy

We may update this Privacy Policy. Significant changes will be announced through the platform or by email.

12. Contact

Privacy questions: privacy@piye.dev | Support: support@piye.dev