Legal

Privacy Policy

Last updated: 23 April 2026

1. Introduction

HypaSites Pty Ltd (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use HypaSites (“the Service”). We are an Australian company based in Melbourne, Victoria, and we comply with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2. Information We Collect

We collect the following types of information:

  • Account information — your name, email address, and password when you create an account.
  • Brief content — the text, images, and brand assets you provide when creating a site brief.
  • Usage analytics — how you interact with the Service, including pages visited, features used, and session duration.
  • Payment information — billing details processed securely through our payment provider (Stripe). We do not store your full card number.
  • Cookies and similar technologies — small files stored on your device to maintain your session and preferences.

3. How We Use Your Information

  • To operate, maintain, and improve the Service.
  • To generate landing pages based on your briefs using AI.
  • To process payments and manage your subscription.
  • To send transactional emails (account confirmations, billing receipts).
  • To analyse usage patterns and improve AI generation quality.
  • To respond to support requests and communicate with you.

4. Third-Party Services

We use trusted third-party providers to deliver the Service:

  • Supabase — authentication and database hosting.
  • Anthropic (Claude) — AI-powered page generation from your briefs. Brief content is sent to Anthropic’s API for processing.
  • Netlify — hosting and deployment of generated landing pages.
  • Stripe — secure payment processing.

Each provider operates under their own privacy policy. We only share the minimum data necessary for each service to function.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. If you delete your account, we will remove your personal data within 30 days, except where we are required by law to retain it. Anonymised, aggregated data may be retained indefinitely for analytics purposes.

6. Your Rights

You have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate or incomplete information.
  • Deletion — request deletion of your personal data and account.
  • Export — download your brief content and generated page code at any time.

To exercise any of these rights, contact us at hello@hypasites.com. We will respond within 30 days.

7. Cookies

We use essential cookies to keep you signed in and maintain your session preferences. We may also use analytics cookies to understand how the Service is used. You can disable cookies in your browser settings, but some features of the Service may not function correctly without them.

8. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS) and at rest. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a notice on the Service. Continued use after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related queries or to exercise your data rights, email us at hello@hypasites.com.