R
HomePricingBlogAbout
Start for free

Privacy Policy

Last updated: February 15, 2025

Reimagine AI (“Reimagine”, “we”, “us”, or “our”) operates the website reimagine-app.com and the Reimagine web application (collectively, the “Service”). This Privacy Policy explains what personal data we collect, how we use it, and what rights you have in relation to it.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use the Service.

1. Data Controller

The data controller responsible for your personal data is:

Reimagine AI
Owner: Yassin El Khati
Seligenstädter Str. 57
63322 Rödermark, Germany
Email: support@reimagine-app.com

2. Authentication via Clerk

We use Clerk (Clerk, Inc., San Francisco, CA) as our third-party authentication and user management provider. Clerk handles all authentication processes on our behalf, including:

  • Account creation and sign-in (email, Google, GitHub, etc.)
  • Password hashing and secure credential storage
  • Session management and token handling
  • Multi-factor authentication (if enabled by the user)

We do not store your passwords or authentication credentials on our own servers. All sensitive authentication data is processed and stored exclusively by Clerk in their SOC 2 Type II certified infrastructure. Clerk acts as a data processor on our behalf under a Data Processing Agreement (DPA) in compliance with GDPR.

When you sign up or log in, Clerk may collect your email address, name, profile picture, and device/browser information for authentication purposes. For more details on how Clerk handles your data, please review Clerk's Privacy Policy and Clerk's Data Processing Addendum.

Clerk complies with the EU-U.S. Data Privacy Framework, the UK Extension, and the Swiss-U.S. Data Privacy Framework as detailed in their Data Privacy Framework Notice.

3. What Data We Collect

3.1 Account Data (via Clerk)

When you create an account, Clerk collects and provides us with a limited user profile:

  • Email address
  • Display name (if provided)
  • Profile picture (if provided via social login)
  • Unique user ID (assigned by Clerk)

We receive this data from Clerk to associate your account with your projects. We do not receive or store your password, authentication tokens, or any other sensitive credentials.

3.2 Project Data

When you use Reimagine to generate a website, we store:

  • Uploaded assets (logos, product photos, screenshots, design references)
  • Conversation data from the Discovery Chat (your answers about your business)
  • Generated website files (HTML, CSS, JavaScript/React code, images)
  • Project settings and preferences (style preset, language, sections)

This data is stored in our database hosted on Supabase (infrastructure on AWS in the EU region). Uploaded images are stored in Supabase Storage.

3.3 Usage Data

We may automatically collect certain technical information when you use the Service:

  • IP address
  • Browser type and version
  • Pages visited and time spent
  • Device type and screen resolution
  • Referring URL

3.4 Payment Data

If you subscribe to a paid plan, payment processing is handled entirely by Stripe. We do not store your credit card number, bank account details, or any other payment credentials. Stripe is PCI-DSS Level 1 certified. We only receive a confirmation of your subscription status and a Stripe customer ID.

4. How We Use Your Data

We use the collected data for the following purposes:

  • Providing the Service: generating websites, storing your projects, and delivering your exported code
  • Account management: identifying you via Clerk, managing your subscription
  • AI processing: sending your project data (business description, uploaded images) to AI models to generate website content, images, and code
  • Improving the Service: analyzing usage patterns to improve features and performance
  • Communication: responding to support requests and sending important service updates

5. AI Processing and Third-Party Models

Reimagine uses third-party AI models (via Gemini API) to generate website content and code. When you use the Service, your business description and uploaded images may be sent to AI model providers (such as Google Gemini, Anthropic Claude, or OpenAI) for processing.

These AI providers process your data solely to generate the requested output and do not use your data to train their models (per their API terms of service). We do not send your email address, password, payment information, or other personal identifiers to AI model providers.

6. Data Sharing and Third-Party Services

We share your personal data only with the following categories of service providers, each acting as a data processor under appropriate agreements:

  • Clerk (authentication, user management) – Privacy Policy
  • Supabase (database, file storage) – Privacy Policy
  • Stripe (payment processing) – Privacy Policy
  • Gemini API / AI providers (AI model access for website generation)
  • Vercel (hosting) – Privacy Policy

We do not sell your personal data to third parties. We do not share your data with advertising networks.

7. Cookies

The Service uses cookies and similar technologies for the following purposes:

  • Essential cookies: required for authentication (set by Clerk) and basic Service functionality
  • Analytics cookies: to understand how the Service is used and improve the user experience

You can control cookies through your browser settings. Disabling essential cookies may prevent you from logging in or using the Service.

8. Data Retention

We retain your account data for as long as your account is active. Project data (uploaded images, generated websites, chat history) is retained for as long as your account exists. If you delete your account, we will delete your personal data and project files within 30 days. Some data may be retained longer if required by law.

Clerk retains authentication data according to their own retention policy. When your account is deleted from our Service, we request deletion of your user record from Clerk as well.

9. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access: request a copy of the personal data we hold about you
  • Right to rectification: request correction of inaccurate personal data
  • Right to erasure: request deletion of your personal data
  • Right to restrict processing: request that we limit how we use your data
  • Right to data portability: request your data in a machine-readable format
  • Right to object: object to our processing of your data for certain purposes
  • Right to withdraw consent: withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us at support@reimagine-app.com. We will respond within 30 days.

You also have the right to lodge a complaint with your local data protection authority. In Germany, the relevant authority is the Hessian Commissioner for Data Protection and Freedom of Information (HBDI).

10. Data Security

We take the security of your data seriously. Measures include:

  • All authentication is handled by Clerk with SOC 2 Type II certification, encrypted credential storage, and secure session management
  • All data in transit is encrypted via TLS/HTTPS
  • Database and file storage on Supabase with row-level security policies
  • Payment data handled exclusively by Stripe (PCI-DSS Level 1)

No method of transmission over the internet is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

11. International Data Transfers

Your data may be transferred to and processed in the United States (Clerk, Stripe, AI providers) and other countries. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:

  • EU-U.S. Data Privacy Framework certification (Clerk)
  • Standard Contractual Clauses (SCCs) where applicable
  • Data Processing Agreements with all processors

12. Children

The Service is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

13. Showcase and Demo Content

Our website, marketing materials, and social media channels may display example websites for demonstration and showcase purposes. These examples may feature fictional or real brand names, logos, products, or company names. Such content is purely illustrative and does not imply any affiliation, endorsement, partnership, or sponsorship between Reimagine and the brands or companies shown. No personal data of third party brands is collected or processed through showcase content.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

15. Contact

If you have any questions about this Privacy Policy or want to exercise your data protection rights, please contact us:

Reimagine AI
Yassin El Khati
Seligenstädter Str. 57
63322 Rödermark, Germany
Email: support@reimagine-app.com

← Back to home
Reimagine

AI-powered website generation that turns your vision into pixel-perfect, production-ready code.

Product

  • Pricing
  • Changelog

Company

  • About
  • Blog
  • Careers
  • Contact

Legal

  • Privacy
  • Terms
  • Imprint
  • Affiliate

© 2026 Reimagine. All rights reserved.