← Baumeister

Baumeister — Privacy Policy

DRAFT FOR ATTORNEY REVIEW. Not legal advice; not final. Must be reviewed and finalized by counsel and must accurately match your actual data practices before use. Items in [BRACKETS] require your input.

Last updated: [DATE]

This Privacy Policy explains how [LEGAL ENTITY NAME] ("Baumeister," "we," "us") collects, uses, and shares information when you use the Baumeister platform (the "Service"). By using the Service you agree to this Policy.

1. Information We Collect

Information you provide:

Information collected automatically:

Information from your site visitors (Message Portal):

2. How We Use Information

3. How We Share Information

We do not sell your personal information. We share information only:

4. AI Processing

To generate and edit your site, your inputs (such as your business description and current site content) are sent to our AI provider, [Anthropic], to produce output. [Confirm provider data-handling terms; state whether inputs are used for model training — per provider's API terms, typically not — GC to confirm and disclose accurately.]

5. Data Retention

We retain your information for as long as your account is active and as needed to provide the Service, then for a reasonable period for backups, legal, and security purposes. You may request deletion as described below; some data may be retained where required by law.

6. Your Rights and Choices

Depending on where you live (e.g., California/CCPA, EU/UK/GDPR, and other state laws), you may have rights to access, correct, delete, or port your personal information, and to opt out of certain processing. To exercise these rights, contact [PRIVACY EMAIL]. We will respond as required by applicable law. We will not discriminate against you for exercising your rights.

California residents: [CCPA-specific disclosures — categories collected, sold/shared (we do not sell), retention, and rights — GC to finalize.]

EU/UK residents: [If you have EU/UK users: legal bases for processing, international transfer mechanism, and DPO/representative info — GC to finalize. If you do not serve EU/UK, state scope accordingly.]

7. Security

We use reasonable technical and organizational measures to protect information (including encryption in transit and storage of secrets in protected systems). No method of transmission or storage is completely secure; we cannot guarantee absolute security.

8. Children's Privacy

The Service is not directed to children under 13 (or the applicable age), and we do not knowingly collect their personal information. [GC to confirm threshold and COPPA applicability.]

9. Changes to This Policy

We may update this Policy. We will post the new version with an updated date and, for material changes, provide additional notice.

10. Contact

[PRIVACY EMAIL] · [BUSINESS MAILING ADDRESS]