Privacy Policy
PromptPal provides an AI-powered prompt engineering platform. This policy explains how we collect, use, disclose, and safeguard your information.
Last Updated: 31st December 2025
PromptPal respects your privacy and is committed to protecting personal data in compliance with the General Data Protection Regulation (GDPR) and the Nigeria Data Protection Regulation (NDPR).
This Privacy Policy explains how we collect, use, store, and protect your data across our web app and Chrome Extension.
1. Overview
This policy describes how we handle personal data when you use PromptPal.
2. Data We Collect
Personal Data
- Name
- Email address
- Authentication identifiers (OAuth)
Usage Data
- Prompts and refinements
- Feature usage
- Interaction timestamps
Technical Data
- IP address
- Browser type
- Device information
Chrome Extension Data
- User-selected text (only during active use)
- Extension preferences
- Consent settings
We do not collect:
- Passwords from other sites
- Payment card data
- Background browsing history
3. Legal Basis for Processing
We process personal data based on:
- Contractual necessity
- User consent
- Legitimate interests (security, analytics)
- Legal obligations
4. How We Use Data
We use data to:
- Provide and improve PromptPal
- Process and refine prompts
- Authenticate users
- Prevent abuse and fraud
- Comply with legal obligations
5. AI Processing
User prompts are processed automatically by AI systems to generate outputs.
- Prompts are not reviewed by humans
- Prompts are not sold or used for advertising
- AI providers act as data processors under strict safeguards
6. Cookies & Analytics
We use cookies and similar technologies for:
- Authentication
- Preferences
- Analytics (where consented)
You may opt out of non-essential cookies at any time.
7. Data Sharing
We may share data with trusted service providers, including:
- Authentication providers
- Payment processors
- AI infrastructure providers
All third parties are contractually bound to protect your data.
8. Data Retention
We retain data only as long as necessary:
| Data Type | Retention |
|---|---|
| Account data | Until deletion |
| Prompts | User-controlled |
| Logs | 30-90 days |
| Billing records | As legally required |
9. Your Rights
You have the right to:
- Access your data
- Correct inaccuracies
- Delete your account
- Export your data
- Withdraw consent
- Object to processing
Requests can be made via your account settings or by contacting us.
10. Security Measures
We implement appropriate technical and organizational safeguards, including:
- Encryption in transit and at rest
- Access controls
- Audit logs
- Secure infrastructure
11. Data Breaches
In the event of a data breach, we will notify affected users and regulators within legally required timelines.
12. International Transfers
Where data is transferred internationally, we ensure adequate safeguards such as standard contractual clauses.
13. Children's Data
PromptPal is not intended for children under 18. We do not knowingly collect children's data.
14. Updates to This Policy
We may update this Privacy Policy periodically. Material changes will be communicated.
15. Contact & Data Protection Officer
For privacy questions or concerns, please contact:
privacy@promptpal.app