Privacy Policy.

01

Summary

• We collect the minimum data needed to run the Service and bill you.
• We do not sell your data.
• We do not use your submitted text to train AI models.
• Your submissions stay in your account until you delete them.
• You can delete submissions at any time. To delete your account, email us.

02

Data We Collect

Account data. Email, password (stored hashed), name, preferences.

Billing data. Stripe handles payments. We never see full card numbers. We receive billing name, country, last four digits, and transaction history.

User content. The text you submit for humanization, detection, or any other tool, along with the output we return.

Usage data. IP address, device type, browser, pages visited, feature usage, error logs, API request metadata.

Support data. Your messages and their attachments when you contact us.

03

How We Use Data

To run the Service, process payments, provide support, prevent abuse, comply with legal obligations, and improve the product in aggregate. We may also send product updates and occasional marketing emails to users. Every email includes an unsubscribe link, and you can opt out of non-essential emails at any time.

04

User Content

Your submitted text is confidential.

• We do not train AI models on your content. Not our own models, not those of the third-party AI providers we use. Our agreements prohibit this.
• We store your content until you delete it. Submissions are saved in your account so you can revisit them through Projects and History. You can delete any submission at any time. Deletion is immediate from our primary systems and removed from backups within about 35 days. API submissions are retained for up to 30 days.
• We do not review your content manually except as required for abuse investigation or legal compliance.
• If you close your account, all content is deleted within 30 days.

05

Sub-Processors

We use a small number of third-party services to run HumanTone. Each processes user data only as needed to provide their service.

• Stripe (payment processing)
• Cloudflare (hosting, CDN, DDoS protection)
• OpenAI and other AI providers (used across our pipeline for various processing tasks such as analysis, classification, and quality checks)
• Resend (transactional emails: signup, password reset, billing)
• Autosend (marketing emails and product updates)
• Google Analytics (aggregate website analytics)
• Microsoft Clarity (session recordings and heatmaps)

06

Cookies

We use cookies for:

• Essential functions (login, security). Required for the Service to work.
• Preferences (theme, tool settings).
• Analytics (Google Analytics, Microsoft Clarity).
• Marketing attribution when ad campaigns are active.

You can control or block cookies through your browser settings. Blocking essential cookies will break parts of the Service, including login.

07

International Users

We are based in the United States. If you use the Service from outside the US, your data is transferred to and processed in the US and in the jurisdictions where our providers operate.

08

Data Retention

We keep data only as long as needed for the purpose it was collected, or as required by law. Billing records are kept for seven years for tax purposes. Server and API logs are kept for approximately 90 days. Analytics data follows each provider's default retention.

09

Your Rights

You can:

• Access the data we hold about you.
• Ask us to correct or delete it.
• Export your account data.
• Object to marketing emails (unsubscribe link in every email).

Email [email protected] to exercise any of these rights. We respond within a reasonable time.

10

Children

The Service is intended for users 18 and older. We do not knowingly collect data from anyone under 18.

11

Security

We use industry-standard measures including TLS in transit, encryption at rest, role-based access, and payment handling through Stripe so we do not store card numbers. No system is perfectly secure. If we become aware of a breach that affects your data, we will notify affected users.

12

Changes

We may update this policy. Material changes will be communicated through the app or by email. The "Last updated" date always reflects the current version.