Privacy Policy

Last updated: 8/31/2025

1. Introduction

This Privacy Policy describes how we collect, use, and protect your information when you use our AI chatbot application ("Service"). We are committed to protecting your privacy and being transparent about our data practices.

2. Information We Collect

2.1 Information You Provide

  • Account information (email, password for registered users)
  • Chat messages and conversations
  • Uploaded files and attachments
  • Documents and artifacts you create
  • Feedback and votes on messages
  • Social media account connections (OAuth tokens)

2.2 Information Automatically Collected

  • Usage data and analytics
  • Device and browser information
  • IP address and location data
  • Session data and authentication tokens
  • Error logs and performance metrics

2.3 Third-Party Information

  • Social media profile information (when you connect accounts)
  • Payment information processed by Stripe
  • OAuth tokens from connected services

3. How We Use Your Information

We use your information to:

  • Provide and improve the AI chatbot service
  • Process your conversations with AI models
  • Manage your account and authentication
  • Enable social media posting features
  • Process payments and subscriptions
  • Analyze usage patterns and improve our service
  • Provide customer support
  • Comply with legal obligations
  • Prevent fraud and abuse

4. Data Storage and Processing

4.1 Database Storage

Your data is stored in a PostgreSQL database using Drizzle ORM. This includes chat messages, user accounts, documents, and social media tokens.

4.2 File Storage

Uploaded files and attachments are stored using Vercel Blob storage with appropriate security measures.

4.3 AI Processing

Your messages may be processed by AI models to generate responses. We use appropriate safeguards to protect your data during processing.

5. Data Sharing and Disclosure

We may share your information with:

  • AI Model Providers: To process your conversations
  • Social Media Platforms: When you authorize posting
  • Payment Processors: Stripe for subscription billing
  • Service Providers: Third-party services that support our operations
  • Legal Authorities: When required by law or to protect our rights

We do not sell your personal information to third parties.

6. Social Media Integration

When you connect social media accounts (Twitter/X, Instagram Threads), we store OAuth tokens to enable posting on your behalf. We only post content you explicitly request through the Service. You can revoke these permissions at any time by disconnecting your accounts.

7. Data Retention

We retain your information for as long as:

  • Your account remains active
  • Needed to provide our services
  • Required by law or for legitimate business purposes
  • You have not requested deletion

Guest user data may be retained for a shorter period based on usage patterns.

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit and at rest
  • Access controls and authentication
  • Regular security assessments
  • Secure hosting infrastructure
  • OAuth 2.0 and JWT token security

9. Your Rights and Choices

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request data deletion
  • Export your data
  • Withdraw consent for data processing
  • Disconnect social media accounts
  • Delete your account

10. Cookies and Tracking

We use cookies and similar technologies for authentication, session management, and analytics. Essential cookies are required for the Service to function. You can manage cookie preferences through your browser settings.

11. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable privacy laws.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us through the application or at our support channels.