Privacy Policy
Effective May 10, 2026
SoloScripter is built privacy-first. This policy explains what we collect, how we use it, and the choices you have. By using SoloScripter you agree to this policy.
1. What we collect
- Account data: email address, authentication identifiers, and (optional) profile details you provide.
- Content you submit: the prompts, notes, and drafts you send to the generator, plus the AI output we return to you. With PII Removal enabled, we redact names, emails, phone numbers, and addresses before sending your input to the AI model and only persist the redacted version in your history.
- Billing data: processed by our payment processor (Stripe). We store identifiers (customer ID, subscription ID, plan, status) but never your card number.
- Operational logs: minimal request metadata (timestamps, status codes) for security, debugging, and abuse prevention.
2. How we use your data
- To run the service: generate emails, save your history, manage your subscription.
- To send transactional emails (sign-in, invites, billing notifications, security).
- To detect and prevent abuse, fraud, and security incidents.
- To improve product reliability — we do not train AI models on your content.
3. AI processing
We send your (PII-redacted, when enabled) input to an upstream AI provider via our AI gateway to generate the response. The provider processes your input only to return the output and does not use it to train their public models under our agreement.
4. Sharing
We share data only with service providers who help us run SoloScripter:
- Our cloud platform (hosting, database, auth, file storage).
- Our AI gateway (model routing).
- Stripe (payment processing).
- Our transactional email provider (auth, invites, billing notifications).
We do not sell your personal data.
5. Chrome extension
The SoloScripter Chrome extension activates only on supported sites (currently Gmail at mail.google.com). It does not read, collect, or transmit anything from other tabs or sites you visit.
- On-device redaction: when you draft or refine an email, the extension runs our PII redactor locally in your browser first. Emails, phone numbers, addresses, SSNs, credit-card numbers, URLs, ZIPs, and dates of birth are replaced with bracketed placeholders ([EMAIL], [PHONE], …) before anything leaves your device.
- What's sent to our servers: only the locally-redacted text, along with your auth token so we can authenticate the request. We then run our server-side LLM redactor to catch names and nuance, generate the draft, and return it. You see a Before/After preview every time.
- Permissions: the extension uses
activeTaband a host permission formail.google.comto inject its compose-window UI, andstorageto remember your settings and session locally. It does not usetabs,history,cookies, or broad-host permissions. - What we store: the same as the web app — the redacted input and the AI output land in your generation history. Your raw, un-redacted text is never persisted on our servers. The extension does not send analytics or telemetry, and we do not sell or share extension data with third parties.
6. Retention
Your generation history is kept while your account is active so you can search and reuse it. You can delete individual items at any time. When you delete your account, we remove your content within 30 days, except where we must keep records for legal or financial obligations (e.g. invoices).
7. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. Email privacy@soloscripter.com and we will respond within 30 days.
You can unsubscribe from non-essential email at any time via the unsubscribe page or the link in any of those emails. Transactional messages (sign-in, billing, security) cannot be opted out of while your account is active.
8. Security
We use encryption in transit (HTTPS), encryption at rest for your database, and least- privilege access controls. No system is perfectly secure — please use a strong, unique password and report suspected issues to security@soloscripter.com.
9. International transfers
Our infrastructure runs on global cloud providers, which may process data outside your country. Where required, we rely on standard contractual clauses or equivalent safeguards.
10. Children
SoloScripter is not directed to children under 16 and we do not knowingly collect their data.
11. Changes
We may update this policy. Material changes will be communicated by email or in-app notice and will take effect on the new effective date.
12. Contact
Questions? Email privacy@soloscripter.com.
See also our Terms of Service.