Privacy Policy
Last updated: 2026-06-03
Draft — not yet reviewed by legal counsel. This policy is written to be a serviceable first draft for review by counsel familiar with India's DPDP Act, the EU/UK GDPR, and US state privacy laws. Bracketed […] tokens must be filled in before publication.
This Privacy Policy describes how Play or Party Private Limited ("itsmysite", "we", "us") collects, uses, shares, and protects information when you use our Claude connector to build and host personal websites, when visitors come to those sites, and when you discover other users on the platform (collectively, the "Service").
This policy applies to: - The Claude connector at https://mcp.itsmysite.ai; - Our marketing site at https://itsmysite.ai; - Personal sites hosted at *.itsmysite.ai and any custom domains attached to those sites; - Our dashboard, admin tooling, and support channels.
1. Who we are
itsmysite is operated by Play or Party Private Limited, incorporated in India with its registered office at [Registered Office Address, India]. We are the "Data Fiduciary" under India's Digital Personal Data Protection Act, 2023 ("DPDP Act"), the "Controller" under the EU and UK General Data Protection Regulation ("GDPR"), and the "Business" under U.S. state privacy laws for the personal information processed through the Service.
You can reach us at: - General privacy enquiries: privacy@itsmysite.ai - Data Protection Officer (EU / UK): dpo@itsmysite.ai - Data Protection Officer (India, under the DPDP Act): [Name of DPO], dpo-in@itsmysite.ai - Grievance Officer (India, under the IT Rules, 2021 and DPDP Act): [Name of Officer], grievance@itsmysite.ai
2. What we collect
2.1 Information you provide
| Category | What it is |
|---|---|
| Account information | Your email address and (where the identity provider returns it) display name. We do not receive your password. |
| Site content | Anything you ask Claude to publish on your site: text, images, layout, code, fonts, uploaded assets. Public by definition because it is served on the public internet at your subdomain or custom domain. |
| Profile information | Structured data about you generated by Claude from your conversation and site content: tagline, bio, location, services you offer, what you are looking for, interests, contact preferences. You can review and edit this any time. |
| Payment information | Collected and stored by Paddle, our merchant of record (see Section 4). We receive a subscription record (status, plan, period end), but not your card number or bank account details. |
| Custom domain information | If you add a custom domain on a paid tier, the domain name and DNS records you configure. |
| Support communications | If you email support@itsmysite.ai or reach us through another channel, the content of those communications. |
2.2 Information we collect automatically
| Category | What it is |
|---|---|
| Connector usage | Which tools you call (e.g., create_site, find_people), when, and whether they succeeded. We do not log the contents of your Claude conversations — those stay between you and Claude. |
| Site analytics (aggregate) | Page views and referrers for your site, in aggregate. By default we do not set cookies on visitors and we do not store visitor IP addresses beyond what is needed for short-term security and abuse handling. |
| Discovery interactions | When you use find_people, we log the query text, the matches returned, and which matches you asked for more details about. This is used to improve match quality and to detect abuse (scraping, harvesting, etc.). |
| Technical logs | Request IDs, timestamps, error codes, IP address, user agent. Retained for security and debugging on the schedule in Section 7. |
| Vector embeddings | A numerical representation of your profile, generated by an embedding model, used to power the discovery feature. |
2.3 Information we do NOT collect
- We do not collect, see, or store your Claude conversation history. We only see the specific tool calls Claude makes to our connector and their arguments.
- We do not set tracking cookies on visitor browsers when they visit your
*.itsmysite.aisite, unless you have explicitly added a feature that requires them. - We do not sell your personal information. We have no sales or sharing of personal information in the legal sense used by U.S. state privacy laws.
- We do not use your personal information, your site content, or your profile data to train any AI model. AI models we use (Anthropic, Cloudflare Workers AI) operate on your data only for the purpose of providing the Service.
3. Discovery: how matchmaking works
This is the part of the Service that processes the most user-identifying information beyond what you have made public, so it gets its own section.
When you create a site, we generate a vector embedding from your profile (tagline, bio, services, looking-for, interests). This embedding is stored alongside your site_id in our vector database.
When another user issues a discovery query like "find me a wedding photographer in Tampa," we: 1. Embed their query; 2. Search profile embeddings for similarity, filtered by location and other criteria; 3. (Optionally) re-rank the top results with an LLM that returns a one-sentence rationale per match; 4. Return matches to the searching user.
You control your discoverability
- By default, new profiles are not discoverable and contact info is hidden. Discovery is fully opt-in.
- You can opt in by asking Claude to make your profile discoverable (the
set_profile_visibilitytool). You can opt back out at any time, and your vector is removed from the discovery index when you do. - You can separately opt in to make your contact email visible to people who match against you.
- Even when discoverable, we do not reveal contact information in bulk. Searching users must request specific match details one at a time, and must themselves have a deployed site (a reciprocity / anti-leech rule).
You can ask Claude to show you exactly what your profile looks like to others.
4. Payment information and Paddle
Paid subscriptions are sold through our merchant of record, Paddle.com Market Limited ("Paddle"). Paddle is the controller of your payment information for the payment leg of your purchase. Paddle's collection and use of your information is governed by Paddle's Privacy Policy.
We receive from Paddle only the information needed to provision and manage your subscription: subscription identifier, plan, status, current-period end, billing email, country (for tax reasons), and the last four digits of your card if you ask us to identify the source of a charge.
5. How we use your information
| Purpose | Categories used | Legal basis (GDPR / UK GDPR) | Lawful purpose (DPDP) |
|---|---|---|---|
| Operate the Service: deploy your site, store your profile, route traffic, serve visitors | Account info, site content, profile, custom domain, technical logs | Performance of contract | Specified lawful purpose (signup terms) |
| Make you discoverable to other users (only if you opt in) | Profile, embeddings | Consent | Consent |
| Process payments and manage subscriptions | Account info, subscription record from Paddle | Performance of contract | Specified lawful purpose |
| Detect abuse, fraud, illegal content; enforce Acceptable Use | All categories | Legitimate interest | Specified lawful purpose; legitimate use |
| Comply with legal obligations (e.g., DMCA, IT Act takedowns, court orders, tax records) | As required | Legal obligation | Legal obligation |
| Respond to your support requests | Account info, support communications | Performance of contract | Specified lawful purpose |
| Send service-critical notifications (e.g., site suspended, billing failure, subscription renewal) | Account info | Legitimate interest / contract | Specified lawful purpose |
| Improve match quality using aggregated, anonymised usage patterns | Discovery interactions (anonymised) | Legitimate interest | Specified lawful purpose |
| Improve and secure the Service generally | Technical logs | Legitimate interest | Specified lawful purpose |
We do not use your data for advertising. We do not share it with advertisers. We do not engage in cross-context behavioural advertising.
Automated decision-making
The discovery feature uses automated processing (vector similarity + optional LLM re-ranking) to surface matches. These do not produce legal or similarly significant effects on you in the GDPR Article 22 sense. We do not use automated processing to make decisions about your access to the Service, your eligibility for any tier, or anything else with a legal or similarly significant effect.
6. Who we share with
We share your information only with:
- Cloudflare — our infrastructure provider, hosting the Service and your site (Workers, R2, D1, Vectorize, KV, Workers AI). Acts as our processor (UK GDPR) / data processor (DPDP).
- Paddle — our merchant of record for paid subscriptions (see Section 4). Acts as an independent controller for the payment leg.
- WorkOS — our authentication provider (OAuth / OIDC brokering for Google, Microsoft, Apple sign-in). Processor.
- Anthropic — the maker of Claude. You interact with Claude directly; Anthropic does not receive data from us beyond the natural flow of tool calls you initiate through Claude. We list Anthropic for transparency. Anthropic's handling of your conversation is governed by Anthropic's own privacy policy.
- AI inference providers (pass-through). When you use Service features that invoke an AI model on your data — for example, profile inference, content safety classification, vector embeddings, or LLM re-ranking of discovery results — your inputs are transmitted to the relevant AI provider (currently Cloudflare Workers AI) for the sole purpose of generating the response and are not retained by that provider for training, profiling, or other purposes beyond producing the response. Cloudflare's processing in this capacity is covered by its DPA.
- Email delivery providers (currently Resend) — for transactional emails.
- Error monitoring (currently Sentry) — for diagnosing crashes and bugs, with PII scrubbed where reasonably possible.
- Other users — but only the specific information you have made discoverable, only when they query for someone matching you, and only via the Service (we do not expose bulk lists).
- Professional advisers (lawyers, accountants, auditors) — under confidentiality.
- Law enforcement — only if compelled by valid legal process, or if we believe in good faith disclosure is necessary to prevent imminent harm. We will notify you unless legally prohibited.
- A successor entity — if we are acquired, merge, sell substantially all of our assets, or undergo a similar corporate event. Your data would transfer with the same protections.
A current list of subprocessors, their location, and what they process is maintained at SUBPROCESSORS.md. We update this list when subprocessors change, and we notify you (via email or in-product notice) of material changes.
7. How long we keep it
| Data | Retention |
|---|---|
| Account information | While your account is active, plus 30 days after closure |
| Site content (HTML/CSS/JS/assets) | While the site is active; deleted versions purged after 90 days |
| Profile and embeddings | While your account is active; vector removed within 24 hours of opting out of discovery |
| Discovery query logs | 90 days, then anonymised for analytics |
| Connection records (who matched whom) | 1 year |
| Subscription / billing records (your side of what Paddle sends) | While account is active, plus 7 years after closure for tax / statutory compliance |
| Technical / security logs | 30 days |
| Audit logs (legal / compliance) | 1 year, longer if subject to litigation hold |
| Backups | 30 days rolling |
| Grievance / complaint records | 7 years (DPDP and IT Rules) |
When you close your account, we remove all of the above on the schedule shown within 30 days, except records we are legally required to retain (tax, audit, grievance).
8. Where your data lives, and cross-border transfers
We are based in India. Your data is processed and stored predominantly on the Cloudflare global network and in Cloudflare services located across multiple regions. The Cloudflare network is designed for global redundancy; specific data-centre locations vary.
Our subprocessors are based in India, the EU, the UK, and the United States (see SUBPROCESSORS.md).
If you are in the EU, UK, or Switzerland, your personal data may be transferred to countries outside the EEA / UK that have not been deemed to have an "adequate" level of data protection. Where this happens, the transfer is protected by: - Standard Contractual Clauses approved by the European Commission (or, for UK transfers, the UK Addendum / IDTA); - For transfers to Cloudflare specifically, Cloudflare's Data Processing Addendum incorporating the SCCs and additional technical and organisational measures.
A copy of the relevant clauses is available on request from privacy@itsmysite.ai.
If you are in India, the DPDP Act permits cross-border transfers except to countries notified by the Central Government as restricted (no such restrictions are in force at the date of this policy).
9. Your rights
Depending on where you live, you have some or all of these rights. To exercise any of them, email privacy@itsmysite.ai or use the in-Claude tools mentioned below. We respond within 30 days (sometimes 45, or 90 in complex cases, with notice).
9.1 Rights under the DPDP Act (India)
If you are in India, you have the right to: - Access the personal data we process about you and a summary of how we process it. - Correct inaccurate, incomplete, or out-of-date personal data. - Erase personal data that is no longer needed for the purpose for which it was collected (subject to legal-retention obligations). - Grievance redressal — raise a grievance with our Grievance Officer. - Nominate a person to exercise these rights on your behalf in the event of your death or incapacity.
You also have the right to withdraw consent at any time where processing is based on consent.
9.2 Rights under the GDPR / UK GDPR (EU, UK, Switzerland)
You have the right to: - Access — get a copy of your data; - Rectification — correct inaccurate data; - Erasure ("right to be forgotten") — have your data deleted in defined circumstances; - Restriction — limit how we process your data while a dispute is resolved; - Portability — receive your data in a portable, machine-readable format and have it transmitted to another controller; - Object — to processing based on legitimate interest, including profiling; - Withdraw consent — at any time, for processing based on consent; - Lodge a complaint with your local supervisory authority (EU: your national DPA; UK: the Information Commissioner's Office at https://ico.org.uk).
9.3 Rights under U.S. state privacy laws (California, Colorado, Virginia, Connecticut, Utah, Texas, Oregon, Montana, Iowa, Tennessee, Delaware, New Hampshire, New Jersey, Maryland, Minnesota, Nebraska, and similar)
Depending on the state, you have the right to: - Know what categories of personal information we have collected, the sources, the purposes, and the categories of recipients; - Access a copy of your personal information; - Correct inaccurate personal information; - Delete your personal information (subject to exceptions); - Opt-out of sale or sharing for cross-context behavioural advertising — we do not sell or share personal information in this sense, so there is nothing to opt out of, but we honour Global Privacy Control signals as a confirmation of that preference; - Limit the use of sensitive personal information — we do not use sensitive personal information beyond what is necessary to provide the Service; - Non-discrimination — we will not deny service, charge different prices, or provide a different quality of service because you exercised a right; - Appeal — if we deny your request, you may appeal within 60 days of our denial by replying to our response email. We will respond to appeals within 45 days and explain the outcome and your further options (including, in some states, the right to contact your state attorney general).
9.4 How to exercise your rights through Claude
Many actions are available directly through Claude: - Update your profile: update_profile - View your profile as others see it: view_my_profile - Make yourself discoverable or not: set_profile_visibility - Delete a site: delete_site - See what sites you have: list_my_sites
For account-wide deletion, export, or anything else, email privacy@itsmysite.ai.
10. Children
The Service is not directed to children under 18, and we do not knowingly collect personal data from anyone under 18. India's DPDP Act requires verifiable parental consent for processing children's (under-18) personal data, and we do not offer that flow. If you are under 18, do not use the Service. If you believe a child has signed up, contact privacy@itsmysite.ai and we will delete the account.
11. Security
We use: - Encryption in transit (TLS) for all traffic to and from the Service; - Encryption at rest for refresh tokens, secrets, and other sensitive fields in our database; - Least-privilege API tokens, rotated on a regular schedule; - Daily JWT signing-key rotation (background cron) with a 7-day overlap so old sessions don't break; - Automated content scanning for malware, phishing, and known-bad signatures on every deploy; - Sentry for error monitoring with a PII scrubbing filter; - Regular access review of administrative accounts; - Standard secure-development practices (typed code, validated inputs, prepared statements / parameterised queries, dependency scanning).
No system is perfectly secure. If we detect a personal-data breach affecting your data, we will notify you and the relevant supervisory authority within the time required by applicable law (72 hours under GDPR; without undue delay under the DPDP Act and the rules thereunder).
12. Cookies and similar technologies
- The Claude connector does not set cookies — it operates over the MCP protocol using bearer tokens.
- The marketing site at
itsmysite.aiuses no third-party analytics and sets no cookies by default. Strictly necessary cookies (e.g., a CSRF cookie on a contact form) may be set; these don't require consent under EU/UK law. - Sites you create at
*.itsmysite.aido not set cookies by default. If you add a feature that requires cookies (forms, comments, third-party embeds), we'll add them only at your direction. You are responsible for any consent obligation those features create vis-à-vis your visitors. - The dashboard uses a session cookie for authentication; this is strictly necessary and does not require consent.
We do not use cookies for advertising or for cross-context behavioural tracking.
13. Changes to this policy
If we make material changes, we'll notify you by email and by an in-Claude notice the next time you connect, at least 30 days before the changes take effect (or sooner if required by law). The "Last updated" date at the top reflects the current version. Prior versions are available on request.
14. Contact and complaints
- General privacy questions: privacy@itsmysite.ai
- Data Protection Officer (EU / UK): dpo@itsmysite.ai
- Data Protection Officer (India): dpo-in@itsmysite.ai
- Grievance Officer (India): grievance@itsmysite.ai
- Postal address: Play or Party Private Limited, [Registered Office Address, India]
If you have unresolved concerns: - EU residents: contact your national data protection authority. - UK residents: contact the Information Commissioner's Office (https://ico.org.uk). - India residents: after exhausting the grievance redressal mechanism above, contact the Data Protection Board of India (once notified). - U.S. state residents: contact your state's attorney general.
We will always prefer to resolve issues directly, so please give us a chance to make it right first.