Privacy Policy

Introduction

prompt.lib ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you use our website and services.

Information We Collect

Information You Provide

• Account Information: When you sign up, we collect your email address and optionally your name and profile picture (via OAuth providers like Google or GitHub).
• User Content: Prompts you create, save, rate, or submit to our library. When you use the AI Prompt Enhancer feature, we store your original and enhanced prompts to track your monthly usage limit.
• Profile Information: Display name and avatar URL if you customize your profile.
• Payment Information: When you subscribe to Premium, PayPal processes your payment. We store only your PayPal subscription ID and subscription start date — we never see or store your credit card number, bank details, or PayPal password.

Information Collected Automatically

• Usage Data: Pages viewed, features used, timestamps, and interaction patterns.
• Device Information: IP address, browser type, device type, operating system.
• Cookies: We use essential cookies for authentication and session management. See our Cookie Policy below.

How We Use Your Information

• Provide Services: Authentication, saving prompts, creating collections, rating content.
• Improve Our Platform: Analyze usage patterns to enhance features and user experience. We may review aggregated (anonymized) prompt enhancement data to improve our AI enhancement algorithms.
• Communication: Send important service updates, security alerts, and respond to your inquiries.
• Security: Detect and prevent fraud, abuse, and security incidents.
• Legal Compliance: Comply with legal obligations and enforce our Terms of Service.

Data Storage and Security

Your data is stored securely using Supabase (a PostgreSQL database with enterprise-grade security). We implement industry-standard security measures including:

• Encryption in transit (HTTPS/TLS)
• Encryption at rest
• Row-level security policies
• Regular security audits
• Rate limiting and DDoS protection

Data Sharing and Third Parties

We share your information only in these limited circumstances:

• Service Providers: Supabase (database/auth), Vercel (hosting), PayPal (payment processing), Anthropic (AI prompt enhancement via Claude API), and analytics providers process data on our behalf.
• Legal Requirements: When required by law, court order, or to protect our rights.
• With Your Consent: Any other sharing will require your explicit permission.

We never sell your personal data to third parties.

Cookies Policy

We use cookies and similar technologies for essential functionality:

Essential Cookies (Required)

• Authentication: Supabase session cookies to keep you logged in.
• Security: CSRF protection tokens.

Analytics (Optional)

• Google Analytics: We use Google Analytics to understand site usage patterns. These cookies (_ga, _ga_*) are only set after you accept analytics cookies via our consent banner. You can opt out at any time by clearing your browser storage.

You can disable cookies in your browser settings, but this may affect authentication functionality.

Your Rights (GDPR & CCPA)

You have the following rights regarding your personal data:

• Access: Request a copy of your data.
• Correction: Update inaccurate information via your profile settings.
• Deletion: Delete your account and all associated data (Settings → Delete Account).
• Portability: Export your prompts and collections in JSON format.
• Opt-out:Unsubscribe from marketing emails (we don't send them unless you opt in).
• Objection: Object to processing of your data for specific purposes.

To exercise these rights, contact us at promptlibrarygarden@gmail.com

Data Retention

We retain your data as follows:

• Account Data: Until you delete your account.
• User Prompts: Until you delete them individually or delete your account.
• Analytics Data: Anonymized, retained for 90 days.
• Security Logs: 30 days for fraud prevention.
• Payment Records: PayPal subscription ID retained while your account is active; removed upon account deletion.

Children's Privacy

Our service is not intended for users under 13 years old. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal data, please contact us.

International Data Transfers

Your data may be processed in countries outside your residence. We ensure adequate protection through:

• Standard Contractual Clauses (SCCs)
• GDPR-compliant data processors
• Adequate security measures

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by posting a notice on our website or sending an email to registered users. Your continued use of our services after changes constitutes acceptance.

Contact Us

If you have questions about this privacy policy or our data practices, contact us:

• Email: promptlibrarygarden@gmail.com