Legal policies

Privacy Policy

What we collect

• Account data: name, email, login provider, avatar (if provided).
• Authentication and security data for sessions and access control.
• Chat and usage data needed to provide AI responses and account features.
• Billing data and transaction references from Stripe for paid subscriptions.
• Audio uploaded for speech-to-text when you use voice transcription.

How we use data

• Provide and secure the service, authentication, and account management.
• Process payments, subscriptions, and wallet or credit allocation.
• Prevent abuse, fraud, and unauthorized access.
• Comply with legal obligations and handle support requests.

GDPR legal bases

• Contract: to provide requested services and account features.
• Legitimate interests: security, abuse prevention, and service reliability.
• Legal obligation: where retention or disclosure is required by law.
• Consent: where required for specific processing in your jurisdiction.

Third-party processors

• OpenRouter provider for AI processing and transcription.
• Google for OAuth sign-in and optional Cloudflare Turnstile checks.
• Stripe for payment processing and subscription checkout.

Data retention

We keep personal data only as long as needed for account, security, billing, and legal compliance. Local chat history may also be stored in your browser storage on your device.

Your GDPR rights

• Access, correction, deletion, portability, and restriction or objection rights.
• Right to withdraw consent where processing is consent-based.
• Right to lodge a complaint with your local data protection authority.