Legal
Privacy Policy
Last updated: July 09, 2026 · Effective: January 1, 2024 · Applies to: doctorhtmlai.com and all subdomains
Summary: 2minsHTML collects minimal data needed to provide the service. We do not sell your data. Your uploaded design files are used only for AI conversion and are deleted within 30 days. We use standard security practices to protect your information.
1. Who We Are
2minsHTML is an AI-powered frontend reconstruction platform operated by 2minsHTML, Chennai, Tamil Nadu, India. We convert uploaded design files (images, PDFs, Figma screenshots, email mockups) into clean, responsive HTML/CSS code using artificial intelligence.
For privacy-related questions, contact us at hello@2minshtml.com.
2. Information We Collect
We collect the following categories of information:
- Account Data: Name, email address, password hash (bcrypt encrypted), account plan, and account creation date.
- Uploaded Files: Design files you upload for conversion — images (PNG, JPG, WebP), PDFs, PPTX presentations, and email mockups. These are stored securely and used only to perform the conversion you request.
- Conversion Data: The HTML/CSS output files we generate, stored in your account for download.
- Usage Data: Number of conversions performed, project names, timestamps of logins, browser type, and approximate geographic region (country/state level).
- Payment Data: We do not store full payment card details. Payments are processed by third-party providers (Razorpay/Stripe) who are PCI-DSS compliant.
- Communications: If you contact support, we retain the content of those communications.
3. How We Use Your Information
We use your information to:
- Provide the 2minsHTML conversion service you signed up for
- Send uploaded files to OpenAI's API for AI-powered HTML generation
- Store generated HTML/CSS outputs for you to preview and download
- Send transactional emails (account creation, password resets, conversion notifications)
- Detect and prevent abuse, fraud, and unauthorized access
- Improve our AI prompts and output quality (using anonymized, aggregated data only)
- Comply with applicable laws and respond to lawful requests
We do NOT use your data for advertising, and we do NOT sell your data to any third party.
4. Third-Party Services
2minsHTML relies on the following third-party services to operate:
- OpenAI (api.openai.com): Your uploaded files and conversion instructions are sent to OpenAI's GPT-4o API for processing. OpenAI's data usage policies apply. OpenAI does not use API data to train models by default.
- Hostinger: Web hosting, file storage, and MySQL database services in India/EU data centers.
- Razorpay / Stripe: Payment processing. We share only minimal order information required for payment.
- Cloudflare: CDN, DDoS protection, and performance optimization. Cloudflare may log request metadata.
5. Data Retention
- Uploaded design files: Retained for 30 days after upload, then automatically deleted.
- Generated HTML/CSS outputs: Retained for 90 days or until you delete them.
- Account data: Retained while your account is active. Deleted within 30 days of account deletion request.
- Usage logs: Retained for 12 months for security and abuse prevention purposes.
- Payment records: Retained for 7 years as required by Indian financial regulations.
6. Security
We take the security of your data seriously. Our measures include:
- HTTPS/TLS encryption for all data in transit
- Bcrypt password hashing with a cost factor of 12
- CSRF protection on all forms
- Session-based authentication with regenerated session IDs on login
- File uploads validated by MIME type and restricted by extension
- Database access restricted to application server only
No security measure is 100% guaranteed. If you discover a security vulnerability, please report it responsibly to hello@2minshtml.com.
7. Your Rights
Depending on your jurisdiction, you may have the following rights:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate personal data.
- Deletion: Request deletion of your account and associated data.
- Portability: Request your data in a machine-readable format (JSON/CSV).
- Objection: Object to certain types of processing.
To exercise any of these rights, email hello@2minshtml.com with your account email. We will respond within 30 days.
8. Cookies
2minsHTML uses the following cookies:
- Session cookie (PHPSESSID): Required for authentication. Deleted when you log out or close your browser.
- CSRF token cookie: Required for form security. Session-scoped.
We do not use advertising cookies, tracking pixels, or third-party analytics cookies.
9. Children's Privacy
2minsHTML is not directed to individuals under 13 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us at hello@2minshtml.com and we will delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by displaying a notice on your dashboard. Continued use of the service after changes constitutes acceptance of the revised policy.