Privacy Policy

PCB Cupid (“we”, “our”, or “us”) operates pcbcupid.com, shop.pcbcupid.com, app.pcbcupid.com, and related services (collectively, the “Services”). This Privacy Policy explains what information we collect, how we use it, and the choices you have.

By using our Services you agree to the practices described in this policy. If you do not agree, please discontinue use.

Account information. When you register, we collect your name, email address, and a hashed password. If you sign in via a third-party provider (Google, GitHub), we receive the profile information that that provider shares with us. For professional accounts, we may collect organization name, role, and business contact details.

Circuit Spell usage data. We log your interactions with Circuit Spell — including prompts submitted, design parameters, generated PCB layouts, component selections, and export actions. This data is used exclusively to improve our AI models, debug technical issues, and enhance user experience. Your specific design files and prompt history are never sold, rented, or shared with third-party advertisers or competitors.

E-commerce and order data. For purchases through our shop, we collect billing name, shipping address, contact information, order history, and payment method details. Payment card information is processed directly by Razorpay and is never stored on our servers. We retain order records for fulfillment, warranty claims, and tax compliance purposes.

Design files and project data. When you use Circuit Spell or upload design files, we store these files securely in your account to enable collaboration, version control, and future access. You retain full ownership and intellectual property rights to your original designs.

Technical and interaction data. We automatically collect IP address, browser type, operating system, device identifiers, page views, click patterns, and session duration. This information is essential for security monitoring, performance optimization, and understanding how our tools are used in real-world scenarios.

Communication data. When you contact our support team or participate in community forums, we collect your communications and related metadata to provide assistance and maintain community standards.

• Service Delivery: Provide, operate, and maintain all PCB Cupid services including Circuit Spell AI design tools, e-commerce platform, and community features.
• Order Processing: Process your orders, manage inventory, coordinate with manufacturing partners, and send order confirmations and shipping updates.
• Customer Support: Respond to technical inquiries, provide design assistance, troubleshoot issues, and resolve disputes related to our services.
• Service Improvement: Analyze usage patterns and feedback to enhance Circuit Spell's AI capabilities, improve user interface, and develop new features based on real-world hardware design needs.
• AI Model Training: Use anonymized, aggregated data from Circuit Spell interactions to train and fine-tune our AI models. Individual designs and prompts are never used in training without explicit consent.
• Security and Fraud Prevention: Detect and prevent fraudulent activities, protect against unauthorized access, and ensure the integrity of our platform and user data.
• Legal Compliance: Comply with applicable laws, regulations, and industry standards including electronics manufacturing regulations and data protection requirements.
• Communication: Send transactional emails, product updates, security notices, technical documentation updates, and relevant industry news.

Important commitments: We do not sell your personal data to third parties. We do not use your design files, schematics, or prompt history for targeted advertising. We do not share your proprietary designs with competitors or other users without your explicit permission.

We work with carefully selected third-party service providers who may receive your data solely as necessary to provide their services to us. All providers are subject to strict data processing agreements and security requirements:

• Razorpay — Payment processing and financial services. PCI-DSS compliant payment gateway that processes credit/debit cards, UPI, and other payment methods. We do not store card details.
• Supabase — Database infrastructure, authentication, and real-time services. SOC 2 Type II certified with data encryption at rest and in transit.
• PostHog — Product analytics and user behavior insights. Self-hosted instance with EU data residency for European users. No personal data is shared with third-party advertising networks.
• Cloudflare — Content delivery network, DDoS protection, and edge computing. Provides security services and improves global access speed.
• ZeptoMail — Transactional email delivery service for order confirmations, password resets, and support communications.
• GitHub — Code hosting and version control for open-source hardware modules and community contributions.

Data sharing commitments: We do not sell, rent, or trade your personal information. We only share data with third parties when necessary to provide services you've requested, comply with legal requirements, or protect our rights. Each sub-processor is bound by Data Processing Agreements consistent with GDPR, CCPA, and other applicable privacy regulations.

We use strictly necessary cookies for authentication sessions and CSRF protection. We also set first-party analytics cookies (via PostHog) to understand how features are used. We do not place third-party advertising cookies.

You may disable non-essential cookies in your browser settings. Doing so will not affect core functionality.

Account and profile data: Retained for the lifetime of your account plus 90 days after deletion to allow recovery from accidental deletions and resolve any pending transactions.

Design files and project data: Stored indefinitely while your account remains active. You may delete individual projects or your entire account at any time. Deleted projects are removed from our servers within 30 days, except where required for legal compliance.

Order and transaction records: Retained for 7 years to comply with tax regulations, accounting standards, and consumer protection laws. This includes invoices, shipping records, and warranty information.

Analytics and usage data: Anonymized, aggregated analytics data may be retained indefinitely for service improvement and trend analysis. Individual user identifiers are removed after 24 months unless required for security purposes.

Support communications: Retained for 3 years to maintain service quality and track ongoing technical issues. Sensitive information is redacted after resolution when appropriate.

Automatic deletion: Inactive free accounts are automatically deleted after 2 years of inactivity, with a 30-day notice period before deletion.

Depending on your jurisdiction, you have the following rights regarding your personal data:

• Access: Request a copy of all personal data we hold about you, including design files, order history, and account information.
• Correction: Request correction of inaccurate or incomplete personal data.
• Portability: Request transfer of your data to another service provider in a structured, machine-readable format.
• Deletion: Request deletion of your account and associated data, subject to legal retention requirements.
• Restriction: Limit how we use your data to specific purposes or withdraw consent for certain processing activities.
• Object: Object to processing of your data for direct marketing or other legitimate interests.

How to exercise your rights: Email us at[email protected] with "Data Rights Request" in the subject line. We will verify your identity and respond within 30 days with the requested action or an explanation if we cannot comply.

Design file ownership: You retain full intellectual property rights to all designs you create using Circuit Spell. We provide tools to export all your design files in standard formats (Gerber, KiCad, Eagle) at any time.

Marketing preferences: You can opt out of marketing emails at any time using the unsubscribe link in our emails or through your account settings. Transactional emails (order confirmations, security alerts) cannot be disabled as they are essential for service delivery.

We may update this policy from time to time. Material changes will be announced via email or an in-app notice at least 14 days before they take effect. Continued use of the Services after the effective date constitutes acceptance of the revised policy.

PCB Cupid — privacy queries: [email protected]