Privacy Policy

Last Updated: November 30, 2024

🔒 Our Privacy Principles

  • ✓ Transparency: Clear about what we collect
  • ✓ Minimization: Collect only what's needed
  • ✓ Security: Industry-standard protection
  • ✓ No Sale: We never sell your personal data

1. Overview

PromptRaptor ("we," "us," "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

This Policy applies to our website (promptraptor.com and subdomains), browser extensions, mobile applications (if applicable), and related services.

By using our Service, you consent to this Privacy Policy. If you don't agree, please don't use our Service.

2. Information We Collect

Information You Provide

Account Information: When you create an account, we collect your username, date of birth (for age verification), and email address (optional but recommended).

Payment Information: When you make purchases, credit card information is stored by Stripe (not us). We store billing address, transaction history, and tax information if required.

Prompt Submissions: Content you submit including original prompts, enhanced prompts, category selections, submission timestamps, and associated metadata.

Communications: Email correspondence, support tickets, survey responses, and feedback you provide.

Automatically Collected Information

Usage Data: Pages visited, features used, time spent on platform, click patterns, prompt submissions, contest participation, auction activity, and search queries.

Device Information: Browser type and version, operating system, device type, screen resolution, language settings, time zone, and IP address.

Extension Data: Extension version, platforms used (ChatGPT, Claude, etc.), enhancement requests, submission frequency, and error logs.

3. How We Use Information

Service Delivery

  • Create and manage your account
  • Process coin earnings
  • Run contests and auctions
  • Provide library access (if purchased)
  • Enhance prompts via AI
  • Display leaderboards
  • Send transactional emails

Improvement & Security

  • Analyze usage patterns
  • Identify bugs and issues
  • Test new features
  • Improve AI algorithms
  • Prevent fraud and detect abuse
  • Enforce Terms of Service

Marketing Communications

We may send marketing emails if you opt in. You can opt out anytime via unsubscribe link in email, account settings, or by emailing privacy@promptraptor.com.

4. How We Share Information

🔒 We never sell, rent, or trade your personal information to third parties.

Service Providers

We share data with trusted service providers:

  • Stripe: Payment processing (payment information, email)
  • SendGrid: Transactional emails (email address, name, content)
  • Google Analytics: Usage analytics (anonymized usage data)

All service providers are contractually obligated to protect your data and use it only for specified purposes.

Legal Requirements

We may disclose information if required by court order, subpoena, government request, to protect our rights, or to prevent harm.

5. Cookies and Tracking

We use cookies and similar technologies:

  • Essential Cookies: Authentication and security (required)
  • Analytics Cookies: Understanding usage patterns (Google Analytics)
  • Preference Cookies: Remembering your settings and language
  • Local Storage: Extension functionality

You can control cookies through your browser settings. Disabling certain cookies may affect functionality.

6. Data Retention

We retain your data for different periods:

  • Account Data: Until account deletion + 30 days
  • Prompt Submissions: Indefinitely (part of library)
  • Transaction Records: 7 years (legal requirement)
  • Usage Logs: 90 days
  • Support Tickets: 2 years

After account deletion, we anonymize or delete your data within 30 days, except where legally required to retain.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

All Users

  • Access: Request a copy of your data
  • Correction: Update inaccurate information
  • Deletion: Delete your account and data
  • Opt-out: Unsubscribe from marketing

EU/UK Users (GDPR)

  • Right to portability (receive data in machine-readable format)
  • Right to restrict processing
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge complaint with supervisory authority

California Users (CCPA)

  • Right to know what data we collect
  • Right to delete personal information
  • Right to opt-out of sale (we don't sell data)
  • Right to non-discrimination for exercising rights

To exercise your rights, email privacy@promptraptor.com. We'll verify your identity and respond within 30 days.

8. Children's Privacy

We comply with the Children's Online Privacy Protection Act (COPPA).

We do NOT knowingly collect information from children under 13.

If we discover a user is under 13:

  • Account terminated immediately
  • All data deleted within 30 days
  • Parent/guardian notified (if contact info available)

Users 13-17: May use Service with parental consent. Parents can review child's information, request deletion, and refuse further collection by contacting privacy@promptraptor.com.

Parents: If you believe your child under 13 has an account, email privacy@promptraptor.com with subject "COPPA - Child Account".

9. International Users

Our primary location is the United States. If you're outside the US, your data is transferred to US servers.

Legal Basis for Transfers: Standard Contractual Clauses (EU), adequacy decisions where applicable, and your consent.

For EU users, we comply with GDPR. For UK users, we comply with UK GDPR. We also strive to comply with local data protection laws including Canada (PIPEDA), Australia (Privacy Act), and Brazil (LGPD).

You have rights under your country's privacy laws. Contact us to exercise them.

10. Data Security

We implement industry-standard security measures:

Technical Measures

  • Data in transit: TLS 1.3 encryption
  • Data at rest: AES-256 encryption
  • Password hashing: bcrypt
  • Role-based access control
  • Regular security patches
  • Firewalls and DDoS protection

Data Breach Response

If a breach occurs, within 72 hours we will contain the breach, assess impact, notify authorities (if required), and begin investigation. If your personal data is compromised, we'll notify you via email with description of breach, data affected, and steps to take.

Your Responsibility

You're responsible for keeping your password secure, not sharing account credentials, logging out on shared devices, and reporting suspicious activity.

11. Third-Party Services

Our Service may link to third-party websites. We're not responsible for their privacy practices. Please review their privacy policies.

Third-Party Integrations:

Our extension is distributed via Chrome Web Store. Google Privacy Policy applies.

12. Changes to Policy

We may update this Privacy Policy to reflect legal changes, new features, industry practices, or user feedback.

For material changes, we'll provide email notification (if provided), in-app notification, website banner, and 30 days' notice when possible.

Changes are effective on the posted "Last Updated" date unless stated otherwise. We review this Policy annually.

13. Contact Us

General Privacy Questions

Email: privacy@promptraptor.com

Response time: 5 business days

Data Rights Requests

Email: privacy@promptraptor.com

Subject: "Data Rights Request - [Type]"

Response time: 30 days

Child Privacy (COPPA)

Email: privacy@promptraptor.com

Subject: "COPPA Inquiry"

Security Concerns

Email: security@promptraptor.com

Response: Immediate

Website: https://promptraptor.com

By using our Service, you acknowledge you have read and understood this Privacy Policy.