PDP botPDP bot

Privacy Notice

Last updated: May 2026

This Privacy Notice describes how Affiliate Mechanic ("we", "us"), operating from Burnet County, Texas, USA, collects and uses personal data when you use the PDP bot service ("Service"). We act as the data controller for personal data we process about our users.

1. Data we collect

  • Account data: name, email address, hashed password, authentication identifiers (e.g. Google sign-in).
  • Site & product data: domain names, API keys, product titles, descriptions, attributes, prices, SKUs, and the AI-generated cards you create.
  • Team data: emails of people you invite to a site.
  • Usage & telemetry: API requests, token consumption, cache hits, timestamps, model usage, and aggregated activity metrics.
  • Support data: messages you send us and any context you share.
  • Technical data: IP address, device/browser type, log data, and cookies needed for authentication and session management.

Payment data (card numbers, billing address, etc.) is collected and processed directly by Paddle.com — we never see or store it.

2. How we use it

  • Create and manage your account and authenticate you (contractual necessity).
  • Provide the Service: generate product cards, deliver them via API, enforce plan limits (contractual necessity).
  • Bill you and process subscriptions via Paddle (contractual necessity / legal obligation).
  • Detect, prevent, and respond to fraud, abuse, and security incidents (legitimate interests).
  • Provide customer support (contractual necessity).
  • Improve the Service through aggregated usage analytics (legitimate interests).
  • Send service-related emails (contractual necessity). Marketing emails only with your consent — you can unsubscribe any time.

3. Who we share data with

  • Paddle.com — our Merchant of Record for sales, subscription billing, tax compliance, refunds, and invoicing.
  • Hosting & infrastructure providers — cloud database and edge runtime providers that store and process data on our behalf.
  • AI model providers — the source product fields you submit are sent to large language model providers (e.g. Google Gemini, OpenAI) to generate card content. They process this data as subprocessors and do not use it to train their models on our account.
  • Email & support tools — for transactional emails and support tickets.
  • Professional advisers & authorities — legal, accounting, or regulatory bodies where required by law.

We do not sell your personal data.

4. International transfers

Our infrastructure and some subprocessors are based in the United States and other countries. Where data is transferred from the UK or EEA, we rely on appropriate safeguards (standard contractual clauses or adequacy decisions where applicable).

5. Retention

We keep account, site, and card data while your account is active. If you delete your account, we delete or anonymise your data within 30 days, except where we're required to keep records longer (e.g. tax, fraud, legal claims). Aggregated, non-identifying analytics may be retained indefinitely.

6. Your rights

Depending on where you live, you may have the right to:

  • access the personal data we hold about you;
  • correct inaccurate data;
  • request deletion ("right to erasure");
  • restrict or object to certain processing;
  • data portability;
  • withdraw consent at any time;
  • lodge a complaint with your supervisory authority (UK/EEA users).

To exercise any of these rights, email support@affiliateprogrampro.com. We'll respond within 30 days.

7. Security

We use appropriate technical and organisational measures — encryption in transit (TLS), encryption at rest, hashed API keys, role-based access control, and audit logging — to protect personal data. No system is perfectly secure; if you suspect a security issue, contact us right away.

8. Cookies

We use a small number of essential cookies to keep you signed in and remember your preferences. We don't use third-party advertising cookies. You can manage cookies in your browser; disabling essential cookies will break the sign-in flow.

9. Changes

We may update this Notice. Material changes will be communicated via email or in-app notice before they take effect.

10. Contact

Affiliate Mechanic, Burnet County, Texas, USA.
Email: support@affiliateprogrampro.com

← Back to home