PromptSwitch

Privacy Policy

Last updated: September 21, 2025

PROMPTSWITCH PRIVACY POLICY

Effective Date: September 21, 2025
Last Updated: September 21, 2025

1. INTRODUCTION

PromptSwitch ("we," "our," or "us") provides AI prompt enhancement services through our web application and Chrome browser extension (collectively, the "Service"). This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our Service.

We are committed to protecting your privacy and being transparent about our data practices. This policy complies with applicable privacy laws, including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).

2. INFORMATION WE COLLECT

2.1 Account Information

When you create an account, we collect:

  • Email address (required for account creation and authentication)
  • Password (stored in encrypted/hashed format)
  • Display name
  • Phone number (optional, stored in E.164 international format)
  • Authentication details including sign-in methods and session data

2.2 Usage Data

We automatically collect information about how you use our Service:

  • Prompt generation counts and timestamps
  • API calls and feature usage statistics
  • Daily usage metrics for subscription quota enforcement
  • IP address and user agent string
  • Browser type and version (for Chrome extension compatibility)
  • Session duration and interaction patterns

2.3 User Content

We store content you create or provide:

  • Saved prompts and their associated metadata
  • Shared prompt links and access control settings
  • User-generated categories and organizational preferences
  • Prompt modification history and version data

2.4 Technical Information

Our Chrome extension and web application collect:

  • Browser extension permissions and settings
  • Local storage preferences
  • Website interaction data (limited to PromptSwitch functionality)
  • Performance metrics and error logs

3. HOW WE USE YOUR INFORMATION

3.1 Primary Uses

We use your information to:

  • Provide authentication and account management services
  • Enforce subscription tier limitations and quota management
  • Deliver prompt optimization and enhancement services
  • Generate usage analytics for service improvement
  • Ensure security and prevent unauthorized access
  • Communicate important service updates and notifications

3.2 Service Enhancement

We may use aggregated, de-identified data to:

  • Improve AI prompt suggestion algorithms
  • Develop new features and functionality
  • Conduct research on prompt effectiveness
  • Optimize user interface and experience

4. INFORMATION SHARING AND DISCLOSURE

4.1 Third-Party Service Providers

We share information with trusted third parties who help us operate our Service:

Authentication Services:

  • Firebase Authentication and Firestore for user account management
  • Session management and security services

AI Service Providers:

  • OpenAI (for GPT-based prompt processing)
  • Anthropic (for Claude-based prompt processing)
  • Other AI platforms as integrated for prompt enhancement

Infrastructure Providers:

  • Cloud hosting and database services
  • Content delivery networks
  • Analytics and monitoring services

4.2 User-Initiated Sharing

We enable sharing when you choose to:

  • Create public or team-accessible prompt links
  • Share prompts with specific users or groups
  • Export your data for personal use

4.3 Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal process or government requests
  • Protect our rights, property, or safety
  • Investigate potential violations of our Terms of Service
  • Prevent fraud or security threats

4.4 Business Transfers

If we are acquired or merge with another company, your information may be transferred as part of that transaction, subject to equivalent privacy protections.

5. CHROME EXTENSION PERMISSIONS

5.1 Required Permissions

Our Chrome extension requests the following permissions:

  • Active Tab Access: To inject prompt enhancement functionality into supported AI platforms
  • Storage: To save user preferences and sync settings across devices
  • Identity: For seamless authentication with your PromptSwitch account

5.2 Data Handling

The extension:

  • Only accesses websites where you actively use PromptSwitch features
  • Does not track browsing activity outside of PromptSwitch functionality
  • Stores minimal data locally for performance optimization
  • Syncs preferences securely with your account

6. COOKIES AND TRACKING TECHNOLOGIES

6.1 Essential Cookies

We use necessary cookies for:

  • User authentication and session management
  • Security features and fraud prevention
  • Basic functionality of the Service

6.2 Analytics Cookies

With your consent, we use analytics cookies to:

  • Understand how users interact with our Service
  • Identify popular features and usage patterns
  • Improve performance and user experience

6.3 Cookie Controls

You can control cookies through your browser settings. Disabling essential cookies may limit Service functionality.

7. DATA RETENTION

7.1 Account Data

We retain your account information for as long as your account remains active, plus:

  • 30 days after account deletion for backup purposes
  • Extended periods as required by law or legitimate business interests

7.2 Usage Data

Usage statistics and analytics data are retained for:

  • 24 months for detailed usage patterns
  • Indefinitely in aggregated, de-identified form for service improvement

7.3 User Content

Your prompts and content are retained according to your settings:

  • Active prompts: Until you delete them or close your account
  • Deleted prompts: 30 days in backup systems
  • Shared prompts: Until all sharing links are revoked

8. DATA SECURITY

8.1 Technical Safeguards

We implement industry-standard security measures:

  • Encryption in transit (HTTPS/TLS) and at rest
  • Secure authentication using token-based systems
  • Regular security audits and vulnerability assessments
  • Access controls and monitoring systems

8.2 Data Breach Response

In the event of a data breach, we will:

  • Investigate and contain the incident within 72 hours
  • Notify affected users without undue delay
  • Report to relevant authorities as required by law
  • Implement additional safeguards to prevent recurrence

9. YOUR PRIVACY RIGHTS

9.1 Access and Portability

You have the right to:

  • Access your personal information and usage data
  • Export your prompts and account data
  • Receive information about how your data is processed

9.2 Correction and Deletion

You can:

  • Update your account information at any time
  • Delete individual prompts or your entire account
  • Request correction of inaccurate personal information

9.3 Data Processing Controls

You may:

  • Withdraw consent for non-essential data processing
  • Opt out of marketing communications
  • Limit certain automated processing activities

9.4 GDPR Rights (EU Users)

If you're in the European Union, you have additional rights including:

  • Right to object to processing
  • Right to restrict processing
  • Right to data portability
  • Right to lodge complaints with supervisory authorities

9.5 CCPA Rights (California Users)

California residents have the right to:

  • Know what personal information is collected and how it's used
  • Delete personal information (with certain exceptions)
  • Opt out of the "sale" of personal information (we don't sell data)
  • Non-discrimination for exercising privacy rights

10. INTERNATIONAL DATA TRANSFERS

10.1 Cross-Border Processing

Your information may be processed in countries other than your residence, including the United States. We ensure adequate protection through:

  • Standard contractual clauses
  • Adequacy decisions by relevant authorities
  • Other appropriate safeguards as required by law

10.2 Data Transfer Mechanisms

We comply with applicable frameworks for international data transfers and maintain appropriate safeguards for all cross-border data processing.

11. CHILDREN'S PRIVACY

Our Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover we have collected information from a child under 13, we will delete it immediately.

Users between 13-17 years of age may use the Service with parental consent where required by applicable law.

12. CHANGES TO THIS PRIVACY POLICY

12.1 Update Notifications

We may update this Privacy Policy periodically. We will notify you of material changes through:

  • Email notification to your registered address
  • In-app notifications within the Service
  • Prominent notices on our website

12.2 Continued Use

Your continued use of the Service after policy updates constitutes acceptance of the revised terms. We encourage you to review this policy regularly.

13. CONTACT INFORMATION

13.1 Privacy Questions

For privacy-related questions or to exercise your rights, contact us at:

Email: privacy@promptswitch.com
Subject Line: Privacy Policy Inquiry

13.2 Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer:

Email: dpo@promptswitch.com

13.3 Response Time

We will respond to privacy requests within:

  • 30 days for general inquiries
  • 1 month for GDPR requests (extendable to 3 months for complex requests)
  • 45 days for CCPA requests

14. LEGAL BASIS FOR PROCESSING (GDPR)

We process your personal information based on the following legal grounds:

  • Contract Performance: To provide the Service you've requested
  • Legitimate Interests: For service improvement, security, and business operations
  • Consent: For optional features like analytics cookies
  • Legal Obligations: To comply with applicable laws and regulations

Last Updated: September 21, 2025

This Privacy Policy is effective as of the date listed above and supersedes all previous versions. Please review this policy regularly as we may update it from time to time.

Back to home