Privacy Policy

Last updated: October 13, 2025

Overview

This Privacy Policy explains how Prompt2Go ("Company", "we", "us") collects, uses, and shares information when you access our websites, web applications, browser extensions, mobile apps, software, and related services (the "Services"). Your use of the Services also remains subject to our Terms of Service.

Information We Collect

Account & Contact Data

When you create an account, subscribe to our newsletter, or interact with our Services, we may collect:

  • Email address
  • Name (if provided)
  • Any information you choose to submit through forms (e.g., waitlist, feedback, support requests)

Prompts & User Content

When you use our AI prompt enhancement features, we process:

  • Your original prompts and inputs
  • Enhanced or optimized prompts generated by our Services
  • Context and metadata you provide to improve prompt generation
  • Feedback and ratings you provide on generated outputs

Note: We retain prompts temporarily to provide the service and may use de-identified, aggregated data to improve our AI models. You can request deletion of your prompts as described in the "Your Rights" section.

Usage Data

We automatically collect information about how you interact with the Services:

  • Pages viewed and features used
  • Button clicks, interactions, and navigation patterns
  • Device information (type, operating system, browser type and version)
  • IP address and approximate geographic location (country/region)
  • Language preferences
  • Timestamps and session duration
  • Referral sources (how you found our Services)
  • Search queries within the Services

Crash & Diagnostic Data

To improve stability and performance, we may collect:

  • Error logs and crash reports
  • Performance metrics (page load times, API response times)
  • Session replay data (if enabled and with appropriate notice)
  • Console logs and debugging information

We use services like Sentry or similar error monitoring providers, which process this data according to their own privacy policies and our data processing agreements.

Cookies & Similar Technologies

We use cookies, local storage, and similar technologies for:

  • Essential functionality (authentication, session management, preferences)
  • Analytics and performance monitoring (with consent where required by law)
  • Security and fraud prevention

You can control cookies through your browser settings, though disabling certain cookies may limit functionality.

How We Use Information

We use the information we collect to:

  • Provide, operate, maintain, and improve the Services, including AI prompt enhancement features;
  • Process your prompts through AI models and deliver enhanced outputs;
  • Personalize your experience and remember your preferences;
  • Communicate with you about the Services, including updates, security notices, and support responses;
  • Send marketing communications (with your consent where required); you can opt out at any time;
  • Analyze usage patterns to understand how users interact with the Services;
  • Develop new features and improve our AI models using aggregated, de-identified data;
  • Maintain the safety, security, and integrity of the Services;
  • Detect, prevent, and respond to fraud, abuse, security incidents, and other harmful activities;
  • Comply with legal obligations, enforce our Terms of Service, and protect our rights;
  • Conduct research and development to advance AI and prompt engineering technologies.

Legal Bases for Processing (EEA/UK)

If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdictions where the General Data Protection Regulation (GDPR) or similar data protection laws apply, we process your personal data based on the following legal grounds:

  • Contract: Processing is necessary to provide the Services you requested and fulfill our contractual obligations;
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving the Services, analyzing usage, ensuring security, and preventing fraud—provided these interests do not override your fundamental rights;
  • Consent: Where required by law, we obtain your consent for certain processing activities (e.g., analytics cookies, marketing emails);
  • Legal Obligations: Processing is necessary to comply with applicable laws, regulations, legal processes, or enforceable governmental requests.

You have the right to withdraw consent at any time where we rely on consent, without affecting the lawfulness of processing based on consent before withdrawal.

Sharing & Service Providers

We may share your information with third-party service providers that help us operate and improve the Services. These providers are contractually obligated to process data according to our instructions and to implement appropriate security measures.

Categories of Service Providers

AI Model Providers:

We use third-party AI services (such as OpenAI, Anthropic, Google Gemini, or others) to process your prompts and generate enhanced outputs. Your prompts may be transmitted to these providers according to their terms and privacy policies. We select providers with strong privacy and security commitments and configure services to protect your data.

Analytics Services:

We may use analytics platforms such as Google Analytics, Plausible Analytics, or similar services to understand usage patterns. Where required by law, these services are configured with consent controls and privacy-respecting defaults (e.g., IP anonymization).

Error Monitoring & Performance:

We use error monitoring services like Sentry to capture crash reports, performance metrics, and session replay data (where enabled). These tools help us identify and fix bugs and improve application stability.

Hosting & Infrastructure:

Our Services are hosted on cloud infrastructure providers (e.g., Vercel, AWS, Google Cloud, or similar) and use content delivery networks (CDNs) to deliver content efficiently. These providers process operational data necessary to serve and secure the Services.

Email & Communication:

We use email service providers to send transactional emails (e.g., account confirmations, password resets) and, with your consent, marketing communications.

Additional Sharing Circumstances

  • Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request;
  • Protection of Rights: We may share information to enforce our Terms of Service, protect our rights and property, or ensure the safety of our users or the public;
  • Business Transfers: If we are involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal data.

We do not sell your personal information. We do not share your personal data with third parties for their own marketing purposes without your explicit consent.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods vary by data category:

  • Account Data: Retained for the duration of your account and a reasonable period thereafter for legal and business purposes;
  • Prompts & User Content: Retained temporarily to provide the service (typically 30-90 days), unless you request earlier deletion. De-identified, aggregated data may be retained indefinitely for model improvement;
  • Usage & Analytics Data: Typically retained for 12-26 months, depending on the purpose and legal requirements;
  • Crash & Error Logs: Retained for up to 90 days or until the issue is resolved;
  • Marketing Communications: Retained until you unsubscribe or request deletion.

You can request deletion of your data at any time as described in the "Your Rights" section below.

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you;
  • Correction: Request correction of inaccurate or incomplete personal data;
  • Deletion: Request deletion of your personal data, subject to certain exceptions (e.g., legal obligations, ongoing disputes);
  • Data Portability: Request a machine-readable copy of your personal data to transfer to another service;
  • Objection: Object to processing of your personal data based on legitimate interests;
  • Restriction: Request restriction of processing in certain circumstances;
  • Withdraw Consent: Withdraw consent for processing based on consent at any time;
  • Lodge a Complaint: File a complaint with your local data protection authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at tulituvlad@gmail.com. We may ask you to verify your identity before responding to your request.

International Transfers

Our Services are operated globally, and information may be transferred to, stored, and processed in countries other than your own, including the United States and other jurisdictions where our service providers operate.

If we transfer personal data from the European Economic Area (EEA), United Kingdom, or Switzerland to countries that have not been deemed to provide an adequate level of data protection, we will implement appropriate safeguards, such as:

  • Standard Contractual Clauses approved by the European Commission;
  • Data Processing Agreements with service providers;
  • Other legally recognized transfer mechanisms.

We take steps to ensure that your personal data receives an adequate level of protection regardless of where it is processed.

Security

We implement administrative, technical, and organizational measures designed to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit (HTTPS/TLS) and at rest where appropriate;
  • Access controls and authentication mechanisms;
  • Regular security assessments and monitoring;
  • Employee training on data protection and security best practices;
  • Vendor security reviews and contractual obligations.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

Children's Privacy

Our Services are not directed to children under the age of 13 (or 16 in the European Economic Area, or other applicable age of digital consent in your jurisdiction). We do not knowingly collect personal data from children without appropriate parental or guardian consent where required by law.

If you believe that a child has provided us with personal data without proper consent, please contact us at tulituvlad@gmail.com, and we will take steps to delete such information.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will provide notice by:

  • Updating the "Last updated" date at the top of this Policy;
  • Posting a notice on our website or within the Services;
  • Sending you an email notification (where we have your email address).

Your continued use of the Services after changes take effect constitutes your acceptance of the revised Privacy Policy. We encourage you to review this Policy periodically to stay informed about how we protect your information.

Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: tulituvlad@gmail.com

Note: This document is provided for informational purposes and does not constitute legal advice. Please consult your attorney to tailor this Privacy Policy to your specific circumstances and ensure compliance with all applicable data protection laws and regulations.