VIBEFIX

Legal

Privacy
Policy

Last updated: February 2026

We keep this short and honest. We only collect what we need, we don't sell your data, and we give you control over it.

1. Who We Are

VibeFix ("we", "us", "our") operates vibefix.co — a bounty marketplace for vibe-coded apps. For any privacy questions, contact us at privacy@vibefix.co.

2. What We Collect

Account information

  • Name and email address (collected via Clerk authentication)
  • Profile photo (if you use Google OAuth)
  • Your chosen role (customer or developer)

Bounty and submission data

  • Job titles, descriptions, and screenshots you upload
  • Developer submissions, repo links, and solution descriptions
  • Messages exchanged within the platform

Payment information

  • Transaction amounts, bounty values, and payment status
  • We never store your card details. All card processing is handled by Dodo Payments.
  • For developer payouts, we may collect bank account or UPI details for manual transfers

Usage data

  • Pages visited, features used, and timestamps (standard web analytics)
  • Browser type and rough location (country level only)

3. How We Use Your Data

  • To operate the marketplace — matching customers with developers, processing payments, and releasing bounties
  • To send transactional emails (new submission alerts, payment confirmations, payout notifications via Resend)
  • To resolve disputes and enforce our Terms & Conditions
  • To improve the platform (aggregate, anonymised analytics only)

We do not sell, rent, or share your personal data with third parties for marketing purposes. Ever.

4. Third-Party Services

We use the following services to operate VibeFix:

ClerkAuthentication & user management
ConvexDatabase & file storage
Dodo PaymentsPayment processing
ResendTransactional email
VercelWeb hosting & CDN

Each service has its own privacy policy. We only share the minimum data required for them to function.

5. Data Retention

  • Account data is retained while your account is active.
  • Job and submission data is retained indefinitely for dispute resolution and audit purposes.
  • If you delete your account, we anonymise your personal details within 30 days, but job/submission records may remain in anonymised form.

6. Your Rights

You have the right to:

  • Access — request a copy of all data we hold about you
  • Correct — update inaccurate information via your profile settings
  • Delete — request account deletion (subject to retention requirements above)
  • Portability — receive your data in a machine-readable format

To exercise any of these rights, email privacy@vibefix.co. We'll respond within 30 days.

7. Security

All data is transmitted over HTTPS. Authentication is handled by Clerk with industry-standard security practices. Files (screenshots) are stored in Convex's encrypted storage. We don't store passwords — Clerk manages authentication credentials.

8. Changes to This Policy

We'll update this page when our practices change and update the "Last updated" date above. For significant changes, we'll notify you by email.

Questions?

Email privacy@vibefix.co — we read every message.