Trust & Privacy
We believe privacy is a fundamental right, not a feature. Here's how we protect you and your visitors.
Our Privacy Principles
These aren't just policies — they're commitments built into every layer of our platform.
Zero Tracking Cookies
We don't use tracking cookies, third-party advertising scripts, or fingerprinting. Your visitors are never tracked across the web. Our analytics use privacy-friendly, daily-rotating hashes that can't identify individuals.
We Never Sell Your Data
Your data is yours. We don't sell it, share it with advertisers, or use it for any purpose other than delivering your website. We're a website platform, not an ad company.
Global Privacy Control
We honor Global Privacy Control (GPC) signals sent by your browser. When detected, we respect your preference automatically — no pop-ups, no cookie banners, no dark patterns.
Encrypted Everywhere
All data is encrypted in transit with TLS and at rest with industry-standard encryption. Passwords are hashed with per-user salts. API keys are stored in dedicated secrets management. Your data is protected at every layer.
Minimal Data Collection
We only collect what's needed to run your website. Analytics store pseudonymized hashes that rotate daily — we never store raw IP addresses for analytics. Chatbot conversations auto-delete after 30 days. Sessions expire after inactivity.
Fully Transparent
We publish our complete list of subprocessors, our Data Processing Addendum, and our Transfer Impact Assessment. No surprises, no hidden third parties, no fine-print data sharing.
EU Data Residency
For EU customers, we go beyond compliance. Your visitors' data stays in Europe.
When you're identified as an EU-resident website operator, we automatically apply strict data residency measures. Your visitor data — form submissions, chatbot conversations, sessions, and user records — is stored and processed exclusively within EU data centers.
Visitor data stored exclusively in EU data centers
Your website email delivery is processed in the EU (Stockholm)
Content submission notifications routed through EU infrastructure
Jurisdictional storage restrictions via Cloudflare's EU jurisdiction API
Compliance & Certifications
We maintain certifications and representations across multiple jurisdictions to ensure your website meets regulatory requirements worldwide.
GDPR
Full compliance with the EU General Data Protection Regulation, including appointed Art. 27 representative in the EU.
UK-GDPR
Compliant with the UK General Data Protection Regulation, with an appointed representative in the United Kingdom.
EU Digital Services Act
Compliant with the EU Digital Services Act, including content moderation and transparency reporting obligations.
CCPA / CPRA
We act as a CCPA service provider and never sell or share personal information for advertising purposes.
PIPEDA
Compliant with Canada's Personal Information Protection and Electronic Documents Act, with contractual protections for cross-border transfers.
Swiss FADP
Compliant with Switzerland's Federal Act on Data Protection, with appropriate transfer mechanisms in place.
Security Built In
Our infrastructure is designed from the ground up to protect your data.
DDoS Protection & WAF
Enterprise-grade protection via Cloudflare shields every website from attacks.
Per-Website Isolation
Each website runs in its own isolated sandbox with dedicated storage.
Bot Protection
Proof-of-work challenges prevent automated abuse without CAPTCHAs.
Automatic SSL
Every website gets free SSL/HTTPS with automatic certificate management.
Spam Detection
AI-powered spam detection protects your forms without degrading user experience.
Secure Code Execution
Custom code runs in WebAssembly-based sandboxes — fully isolated from other websites.
Legal Documents
Read the details. We've worked hard to make these thorough, transparent, and fair.
Privacy Policy
How we collect, use, and protect your personal information.
Data Processing Addendum
Detailed terms for how we process visitor data on your behalf, including subprocessor lists and security measures.
Transfer Impact Assessment
Our assessment of data transfer risks and supplementary measures for international data flows.
Terms & Conditions
The full terms governing use of the platform.
Acceptable Use Policy
Guidelines for appropriate use of the platform.
Your Privacy, Our Priority
We don't sell your data, we don't use tracking cookies — that's why you won't see a cookie banner here. We honor Global Privacy Control, and for EU customers, visitor data is stored and processed exclusively within the European Union.
Acira AI
Build beautiful websites with AI. No coding required.
Proudly built in the United States
© 2026 Acira AI LLC. All rights reserved.