Introduction
Credits AI (“we”, “our”, “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Service.
Information We Collect
We collect information you provide (account details: name, email, hashed password; conversation data; uploaded files; payment info via Stripe) and information collected automatically (usage data, log data including IP address and browser type, and an essential authentication cookie).
How We Use Your Information
We use your data to provide and operate the Credits AI Service, authenticate your account and maintain security, process payments and manage subscriptions, improve our AI models and Service quality, send transactional emails (verification codes, receipts), respond to support requests, and comply with legal obligations.
AI Model Processing
Your messages and uploaded files are sent to AI model providers configured in our system to generate responses. These providers process data according to their own privacy policies. We recommend not sharing sensitive personal information in conversations.
Data Sharing
We do not sell your personal information. We may share data with AI Providers (to process your requests), Stripe (to process payments securely), Email Providers (to send transactional emails), and Law Enforcement (when required by law or to protect our rights).
Data Retention
Account data is retained while your account is active. Conversation history is retained until you delete it or close your account. Uploaded files are automatically deleted after 30 days. Logs are deleted after 90 days.
Cookies
We use a single, essential authentication cookie (“dmx-token”) to keep you logged in. This cookie is HttpOnly (not accessible by JavaScript), Secure (transmitted only over HTTPS in production), and automatically expires after 7 days. We do not use tracking or advertising cookies.
Your Rights
Depending on your location, you may have the right to access the personal data we hold about you, correct inaccurate data, request deletion of your data, export your data in a portable format, object to processing of your data, and withdraw consent at any time. Contact: privacy@Credits AI.com
Security
We implement industry-standard security measures including passwords hashed with bcrypt (12 rounds), JWT tokens with secure httpOnly cookies, HTTPS encryption in transit, database encryption at rest, and regular security audits.
Children's Privacy
Credits AI is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it immediately.
International Transfers
Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email. Your continued use of the Service after changes indicates acceptance of the updated policy.
Contact Us
For privacy-related questions or requests, please contact us at: privacy@Credits AI.com