Privacy policy

AI Prompt Fixer is operated by the team behind aipromptfixer.com ("we," "us," or "our"). This policy describes our practices for the marketing website, customer dashboard, APIs, and the browser extension published on the Chrome Web Store and other extension marketplaces.

We do not sell your personal information. We do not use third-party advertising pixels or cross-site tracking networks.

We collect the following categories of data:

• Prompt content you submit for scoring or optimization, including optional recent chat turns when conversation context is enabled in the extension (capped at roughly 6 turns and 8,000 characters per request).
• Prompt journey analytics: original prompt, optimized prompt, follow-up questions and answers, platform name, timestamps, quality scores, and whether the optimized prompt was used.
• Account and authentication data when you register or sign in: email address, password (stored only as a salted hash on our servers), optional display name, and mobile number collected at registration.
• Extension install identifier and local preferences stored in chrome.storage.local (tone, language, auto-mode, templates, progress stats, optional classifier API key, and extension session token after sign-in).
• Website session and security data when you use the dashboard or magic-link sign-in: session cookies, IP address, and user-agent as part of standard HTTP requests.
• Operational telemetry: model tier used, latency, detected prompt category, and error codes needed to run and improve the service.

The extension works without an account. Account sign-in is optional and only links your extension install to your dashboard for authenticated analytics.

• Provide prompt scoring, rewriting, and coaching inside the extension and on supported chat sites.
• Route prompts to the appropriate inference provider based on complexity and availability.
• Store prompt-session records so signed-in customers can review usage and so operators can maintain service quality.
• Authenticate customers on the website and extension using email and password credentials.
• Send transactional email (magic links, security notices) when email delivery is configured.
• Detect abuse, enforce rate limits, and debug outages.
• Improve product quality; we do not use your prompts to train third-party foundation models.

We share data only with the parties below, and only as needed to operate the product:

Inference providers (prompt text only for the duration of a request; we do not send account identifiers with prompts)

• Groq — Prompt classification and optimization (tier-1 / tier-2 models).

• Google (Gemini API) — Prompt classification and optimization (tier-2 / tier-3 models).

• Hugging Face — Prompt classification and optimization (tier-2 / tier-3 fallback).

Infrastructure and service providers

• Cloud hosting provider — Hosts the website, APIs, and authenticated dashboards (application runtime and logs).
• PostgreSQL database provider — Stores account records, prompt-session analytics, and admin configuration.
• Email delivery provider (when configured) — Sends magic-link and transactional email for website sign-in only.

We may disclose information if required by law, court order, or to protect the rights, safety, and security of users and our systems. We do not share data with data brokers or ad networks.

• Local extension data (preferences, templates, history, session token) stays in chrome.storage.local on your device until you clear it, sign out, or uninstall the extension.
• Server-side prompt-session records for authenticated and anonymous usage are retained for up to 24 months unless you request earlier deletion.
• Account records (email, hashed password, mobile number, profile fields) are retained while your account is active and for up to 90 days after deletion request processing.
• Server and application logs that may contain IP addresses are rotated and deleted within 90 days.

Signed-in customers can review prompt sessions in the dashboard. To delete local extension data, uninstall the extension or sign out from the Profile tab. For export or deletion of server-held data tied to your account, email privacy@aipromptfixer.com.

• Passwords are hashed before storage; we never store plaintext passwords.
• Extension session tokens are signed and expire automatically.
• HTTPS is required for all website and extension API traffic in production.
• Access to production databases and admin tools is restricted to authorized operators.

No method of transmission or storage is 100% secure. If you believe your account has been compromised, contact us immediately at support@aipromptfixer.com.

The website uses first-party session cookies to keep you signed in to the dashboard and to protect forms against abuse. We do not set third-party advertising cookies. The browser extension does not use browser cookies; it uses chrome.storage.local for on-device preferences and session state.

You can clear website cookies through your browser settings. Clearing cookies signs you out of the website but does not remove extension local storage.

You may create a customer account on the website or in the extension (Profile tab → Customer account). Registration requires email, password (minimum 8 characters), and mobile number. Sign-in requires email and password only.

After successful sign-in, the extension stores a session token locally and sends it with analytics events so usage can appear on your dashboard. Signing out clears the token from local storage.

AI Prompt Fixer is not directed at children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us data, contact privacy@aipromptfixer.com and we will delete it.

We and our subprocessors may process data in the United States and other countries where our hosting and inference providers operate. Where required by law, we rely on appropriate safeguards for cross-border transfers. By using the product, you acknowledge that your data may be processed in these locations.

• Access and review prompt sessions when signed in to your dashboard.
• Request export or deletion of account-linked server data by emailing privacy@aipromptfixer.com.
• Disable conversation context in the extension Profile tab to stop sending chat history with classify requests.
• Use the extension without creating an account; core prompt coaching does not require sign-in.
• Residents of the EEA, UK, and California may have additional rights (access, correction, deletion, objection, portability) subject to applicable law.

We will verify identity before fulfilling sensitive requests and respond within 30 days where legally required.

We may update this policy from time to time. We will post the revised version on this page and update the "Last updated" date. Material changes will be communicated on the website when practical. Continued use after changes take effect constitutes acceptance of the updated policy.