Privacy Policy

Last Updated: May 2025

Welcome to PDD Cloud (“Prompt Driven,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our website, CLI tools, and marketplace (collectively, the “Services”).

1. Introduction

Our mission is to transform cloud development and migration through our prompt-driven platform. Protecting your personal data is a core part of this mission. This policy provides you with clear information about our data practices so you can confidently use our Services.

2. Information We Collect

We collect information that you provide directly to us, information we collect automatically when you use our Services, and information from third-party sources.

A. Information You Provide to Us

  • Account Information: When you register for an account, we collect your name, email address, and password.
  • Payment Information: To purchase PDD Credits (PDDC), passes, or other services, we collect payment information through our secure third-party payment processors. This may include bank card details, ACH information, or cryptocurrency wallet addresses (e.g., for USDC).
  • Prompts and Generated Assets: Our Services are built around prompts. We collect the prompts you submit, the configurations you provide, and the code or infrastructure assets generated. This includes "few-shot examples" which are crucial for the platform's functionality.
  • Marketplace Contributions: If you are a creator, we collect the patterns, templates, and examples you submit to our marketplace, including any associated metadata and pricing you set. Features like `pdd --auto-submit` may automatically submit successful, anonymized patterns to the marketplace to improve the ecosystem.

B. Information We Collect Automatically

  • Usage and Transaction Data: We log details about your use of the Services, including transaction history, credits purchased and spent, Gross Merchandise Volume (GMV) for creators, and features used (e.g., Regeneration Insurance, Loyalty Rebates).
  • Performance and Quality Metrics: We automatically compute metrics tied to your activity and contributions, such as Quality Score (QS), conversion rates, and token consumption, to ensure service quality and calculate creator royalties.
  • Device and Log Information: We collect standard log data, including IP address, browser type, operating system, and access times.

3. How We Use Your Information

We use the information we collect for various purposes, including:

  • To Provide and Maintain the Services: To process transactions, manage your account, execute migrations, and deliver the core functionality of our platform.
  • To Improve and Curate the Marketplace: Your prompts and generated assets, especially those contributed to the marketplace, are the lifeblood of our platform. We use this data to train our models, improve pattern matching, and enhance the quality and relevance of our marketplace for all users.
  • To Manage Creator Royalties and Incentives: We use GMV, Quality Score, and other metrics to determine creator status (Starter, Growth, Elite) and calculate revenue shares, staking yields, and other incentives.
  • For Security and Fraud Prevention: To monitor for malicious activity, enforce our policies (e.g., "slashing" for plagiarism or low-quality submissions), and protect the integrity of our Services.
  • To Communicate with You: To send you transactional confirmations, technical notices, updates, and support messages.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to access or store information. We use them to operate our Services, analyze performance, and ensure a secure and personalized user experience. You can control the use of cookies at the individual browser level.

5. Data Sharing and Third-Party Services

We do not sell your personal data. However, we may share information with third-party vendors and service providers who need access to such information to carry out work on our behalf.

  • LLM Providers: To generate code and infrastructure, we send your prompts to third-party Large Language Model (LLM) providers (such as OpenAI, Anthropic, and Google) via their batch APIs. We have data processing agreements in place with these providers.
  • Cloud Providers: As part of our migration services, we interact with cloud providers like Amazon Web Services (AWS), Google Cloud Platform (GCP), and Vercel on your behalf.
  • Payment Processors: We share payment information with third-party payment processors to handle transactions. We do not store your full credit card or bank account numbers.

6. Data Retention and Expiry

We retain your data for as long as necessary to fulfill the purposes outlined in this policy unless a longer retention period is required or permitted by law.

  • PDD Credits (PDDC): Off-chain PDDC credits expire 18 months after purchase. Enterprise Vault credits expire at the end of the contract term.
  • On-Chain Tokens: In the future, on-chain PDDC tokens (ERC-20) will not expire and will remain under your control indefinitely.
  • Account Data: We retain your account information as long as your account is active. You may request deletion of your account at any time.

7. Data Security

We implement a variety of security measures designed to protect the security of your personal information. This includes technical measures like abstraction layers to prevent prompt-hacking and organizational measures like working towards SOC2 compliance. However, no electronic transmission or storage is 100% secure, so we cannot guarantee absolute security.

8. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information, including the right to:

  • Access, correct, or update your personal information.
  • Request the deletion of your personal information.
  • Object to the processing of your personal information.
  • Withdraw consent at any time.

You can exercise these rights by contacting us. Please note that some data, particularly on-chain assets or anonymized marketplace data, may not be subject to deletion.

9. Children’s Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last Updated” date. We encourage you to review this policy periodically for any changes.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at legal@promptdriven.ai. For more information about the rules governing our platform, please see our Terms of Service.