Privacy Policy

The data controller responsible for your personal data is Sunset Builder, based in Poland. For contact details, see Section 12 below.

We collect the following categories of personal data:

• Account data: name, email address, and password (hashed) when you register.
• Billing data: payment information processed by our third-party payment provider. We do not store full credit card numbers.
• Usage data: pages visited, features used, browser type, device information, and IP address.
• Content data: landing pages, text, images, and other content you create using our service.
• Communication data: messages you send to our support team.

We process your personal data for the following purposes and legal bases:

• To provide the service — processing is necessary for the performance of our contract with you (Art. 6(1)(b) GDPR).
• To process payments — performance of contract (Art. 6(1)(b) GDPR).
• To send service-related emails (e.g., account confirmations, security alerts) — legitimate interest (Art. 6(1)(f) GDPR).
• To send marketing emails — only with your explicit consent (Art. 6(1)(a) GDPR). You can opt out at any time.
• To improve the service — legitimate interest in understanding how users interact with Sunset Builder (Art. 6(1)(f) GDPR).
• To comply with legal obligations — such as tax and accounting requirements (Art. 6(1)(c) GDPR).

Sunset Builder uses third-party AI services (such as language models) to generate landing page content on your behalf. When you use these features, the text prompts and instructions you provide may be sent to our AI provider for processing. We do not use your content to train AI models. Please refer to our AI provider’s privacy policy for details on their data handling practices.

We use essential cookies required for the service to function. We may also use analytics cookies to understand how you use Sunset Builder. Before placing any non-essential cookies, we will ask for your consent via a cookie banner. You can withdraw consent or manage your cookie preferences at any time through your browser settings or our cookie settings panel.

We share personal data with the following categories of service providers, all of whom are bound by data processing agreements:

• Hosting provider — to store and serve the application.
• Payment processor — to handle billing and subscriptions.
• AI provider — to generate content as described in Section 4.
• Analytics provider — to collect anonymized usage data (if applicable).
• Email service provider — to deliver transactional and marketing emails.

Some of our service providers may be located outside the European Economic Area (EEA). Where this is the case, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or reliance on an adequacy decision.

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy. Specifically:

• Account and content data: retained for the duration of your account, and deleted within 30 days of account deletion.
• Billing records: retained as required by Polish tax law (currently 5 years).
• Usage and analytics data: retained in anonymized form for up to 24 months.

As a data subject, you have the right to:

• Access your personal data and obtain a copy.
• Rectify inaccurate or incomplete data.
• Erase your data (“right to be forgotten”).
• Restrict processing in certain circumstances.
• Data portability — receive your data in a structured, machine-readable format.
• Object to processing based on legitimate interests.
• Withdraw consent at any time, without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us using the details in Section 12. We will respond within 30 days.

We implement appropriate technical and organizational measures to protect your personal data, including encryption in transit (TLS), secure password hashing, access controls, and regular security reviews.

Sunset Builder is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will delete it promptly.

If you have questions about this Privacy Policy or wish to exercise your data rights, you can reach us at:

You also have the right to lodge a complaint with the Polish data protection authority (UODO — Urząd Ochrony Danych Osobowych) or any other competent EU supervisory authority.

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you via email or a prominent notice within the service. The “Last updated” date at the top of this page reflects the most recent revision.