madebyvibing.com

Privacy policy

Last updated: 10 June 2026

Made By Vibing ("we", "us", "our") runs a directory of projects built with AI coding tools. This policy explains what we collect, why we collect it, how we use it and the rights you have over your information. We aim to collect the minimum needed to run the service well.

Who we are

Made By Vibing is operated from the United Kingdom. For any privacy question, contact hello@madebyvibing.com.

Information we collect

  • Account data: email address, display name and avatar URL. When you sign in with Google or GitHub we receive your name, email and profile picture from that provider.
  • Project submissions: the project name, tagline, description, URL, logo, screenshots, category, tags and the AI tools you used.
  • Usage data: basic logs (IP address, browser, pages visited, timestamps) needed to run the site, prevent abuse and debug issues.
  • Communications: messages you send us by email or through any contact form.
  • Payments: if you purchase a Boost! placement, our payment processor handles your card details — we never see or store them. We retain the transaction ID and amount for accounting.

How we use your information

  • To create and manage your account and authenticate you on return visits.
  • To publish the projects you choose to submit, with attribution to your profile.
  • To review submissions before they go live and remove anything that breaks our terms.
  • To respond to support requests and send essential service emails (e.g. submission status, password resets).
  • To protect the service from spam, abuse and security threats.
  • To comply with our legal obligations.

Legal bases (UK/EU GDPR)

We rely on contract to provide the account and submission features you sign up for, legitimate interests to keep the service secure and improve it, consentfor any optional marketing emails, and legal obligation where the law requires us to retain certain records.

Service providers

We share data only with the providers we need to run the service:

  • Supabase — authentication, database and file storage.
  • Cloudflare — hosting, CDN and bot protection.
  • Google and GitHub — optional OAuth sign-in (only if you choose to use them).
  • Email provider — to deliver magic links and transactional emails.
  • Payment processor — to handle Boost! purchases when applicable.

These providers process data on our behalf under their own security and privacy commitments.

Cookies

We use a small number of strictly necessary cookies to keep you signed in and to remember preferences. We do not use advertising cookies. If we add analytics in future it will be a privacy-friendly, cookieless tool and disclosed here.

Data retention

We keep account and submission data for as long as your account is active. If you delete your account, we remove your profile and unpublish your projects within 30 days. Some logs and transaction records may be retained for up to 12 months for security and accounting.

International transfers

Some of our providers process data outside the UK/EEA. Where they do, we rely on appropriate safeguards such as the UK International Data Transfer Addendum or EU Standard Contractual Clauses.

Your rights

You can access, correct, export or delete your data at any time from your dashboard, or by emailing hello@madebyvibing.com. You also have the right to object to or restrict certain processing and to lodge a complaint with your local data protection authority (in the UK, the ICO at ico.org.uk).

Children

Made By Vibing is not directed at children under 13 and we do not knowingly collect their data.

Changes to this policy

We may update this policy from time to time. When we do, we'll update the "last updated" date above and, for material changes, let you know by email or an in-app notice.