Styps Ltd ("we," "us," or "our") operates the Rabbit web app (rabbt.site) as a service for deploying websites to Vercel. We are committed to protecting your privacy and complying with the UK GDPR and Data Protection Act 2018. This Privacy Policy explains how we collect, use, and protect your personal data when you use our service. By using Rabbit, you consent to these practices.

1. Information We Collect
We collect the following types of personal data:
1.1. Account Information: Name, email address, and payment details (via Stripe) when you sign up or subscribe (e.g., Credit or Pro plans).
1.2. Usage Data: IP address, browser type, device info, and interaction logs (e.g., uploads, deploys) to improve the service.
1.3. Vercel Integration Data: To enable deployments, you must create a free Vercel account (vercel.com) and provide a Vercel API token during setup. We temporarily use this token to authenticate and process your deployments but do not store it long-term (it is discarded after use). Any project details (e.g., names, URLs) from Vercel are processed transiently.
1.4. Clerk Authentication Data: We use Clerk for user authentication, which stores your email, name, and public metadata (e.g., plan type like Free/Credit/Pro, deployment counts) securely on their servers. This enables features like login, plan management, and expiry notifications.
1.5. Cookies and Tracking: Session cookies for functionality; analytics cookies (e.g., Google Analytics) for site performance.

We do not collect sensitive data (e.g., health or financial beyond payments).

2. How We Use Your Data
We use your data to:
2.1. Provide and improve the service (e.g., process deploys, detect frameworks).
2.2. Communicate updates, support, or billing (e.g., plan expiry notifications).
2.3. Comply with laws and prevent fraud.
2.4. Analyze usage for product enhancements (anonymized where possible).

3. Sharing Your Data
We share data only as needed:
3.1. Service Providers: Stripe (payments), Clerk (auth), Vercel (deploys), Cloudflare (storage)—all GDPR-compliant.
3.2. Legal Requirements: If required by law or to protect rights. We do not sell your data.

4. Cookies and Tracking
We use essential cookies for login/deploy functionality. Optional analytics cookies can be managed via browser settings.

5. Data Security
We use HTTPS, encryption, and access controls to protect data. However, no system is 100% secure—we cannot guarantee absolute protection.

6. Your Rights
Under UK GDPR, you have rights to:
6.1. Access, correct, or delete your data.
6.2. Object to processing or withdraw consent.
6.3. Portability (e.g., export account data).

Contact us at support@rabbt.site to exercise these rights (we respond within 30 days).

7. International Transfers
Data is processed in the UK/EU (Vercel/Stripe servers). Transfers outside EEA use Standard Contractual Clauses.

8. Children's Privacy
Rabbit is not for users under 16. We do not knowingly collect children's data.

9. Changes to This Policy
We may update this policy—changes will be posted here with the new effective date. Continued use constitutes acceptance.

10. Contact
Email support@rabbt.site.
Styps Ltd, 124 City Road, London EC1V 2NX, UK. Company No: 14183652.