Privacy Policy

We collect information in the following categories:

Account information: When you register, we collect your name, email address, and authentication credentials. If you sign in via Google OAuth, we receive your name, email, and profile picture from Google.

Usage data: We automatically collect information about how you use the service, including the prompts you generate (text inputs), the AI models you select, features used, timestamps, and interaction patterns. This helps us improve the service.

Uploaded images: If you use our image-to-prompt feature, we process the images you upload to generate prompts. Images are processed in real time and are not permanently stored beyond the duration needed to generate your prompt unless you explicitly save them.

Payment information: We do not store full payment card details. All payment processing is handled by our secure payment provider. We receive only a payment confirmation and subscription status.

Device and technical data: We may collect your IP address, browser type, operating system, and referrer URL for security and analytics purposes.

We use your information to:

• Provide the service: Process your inputs, generate prompts, manage your account, and apply your subscription limits
• Improve the platform: Analyse usage patterns to identify bugs, improve features, and develop new capabilities
• Communicate with you: Send transactional emails (account confirmation, billing receipts, service updates) and, where you have opted in, promotional messages
• Ensure security: Detect and prevent fraud, abuse, and unauthorised access
• Legal compliance: Meet our obligations under applicable Egyptian law

We do not sell your personal data to third parties. We do not use your prompt inputs to train or fine-tune our own AI models without your explicit consent.

Your data is stored on secure servers with industry-standard safeguards, including:

• Encryption in transit using TLS/HTTPS for all data transmitted between your browser and our servers
• Encryption at rest for sensitive stored data
• Access controls limiting who on our team can access personal data
• Regular security reviews and monitoring for suspicious activity

While we take all reasonable steps to protect your data, no transmission over the internet can be guaranteed to be 100% secure. If you believe your account has been compromised, please contact us immediately via our contact page.

We use cookies and similar technologies to operate the service and understand how it is used. Specifically:

• Essential cookies: Required for authentication, session management, and security. These cannot be disabled.
• Analytics cookies: We use Google Analytics (GA4) to understand aggregate usage patterns. This data is anonymised and used only to improve the product.
• Preference cookies: We store your model preferences and UI settings in your browser's localStorage to personalise your experience.

You can manage or delete cookies through your browser settings. Disabling essential cookies may affect your ability to use the service.

droPrompt integrates with the following third-party services, each governed by their own privacy policies:

• Google OAuth: Used for sign-in. Google receives your authentication request; we receive your basic profile data. Google Privacy Policy
• Payment Processor: Processes subscription payments securely. Your payment card data is handled exclusively by our payment provider and is never stored on droPrompt servers.
• AI model APIs: Your text inputs may be sent to third-party AI model providers (such as OpenAI, Anthropic, Google) to generate prompts. These providers process inputs per their own data policies. We select providers with strong data protection commitments and do not share your personal account data with them — only the prompt input text.
• Google Analytics: Used for anonymised usage statistics to improve the platform.

We retain your personal data for as long as your account is active or as needed to provide you with the service. Specifically:

• Account data is retained while your account exists and for up to 90 days after deletion
• Generated prompts saved to your history are retained for the duration of your subscription and 30 days after cancellation
• Uploaded images are deleted from our servers within 24 hours of processing
• Payment records are retained for 7 years as required by applicable financial regulations

You can request deletion of your data at any time by contacting us (see Section 11). Certain data may be retained longer where required by Egyptian law.

Under the Egyptian Personal Data Protection Law No. 151 of 2020, you have the following rights regarding your personal data:

To exercise any of these rights, please contact us via our contact page. We will respond within 30 days of receiving your request.

droPrompt is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If we discover that a child under 18 has provided us with personal data, we will delete it immediately. If you believe we have inadvertently collected data from a minor, please contact us without delay.

Some of our third-party service providers (such as AI model APIs) are based outside Egypt. When we transfer your data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses or transfers to countries with adequate data protection levels, in accordance with Egyptian data protection law.

By using droPrompt, you consent to your data being transferred to and processed in countries where our service providers operate.

We may update this Privacy Policy from time to time. When we make significant changes, we will update the effective date at the top of this page and notify you by email or via an in-app notice where appropriate.

We encourage you to review this policy periodically. Your continued use of droPrompt after any changes constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy or wish to exercise your data rights, please get in touch:

• Website: droprompt.com/contact
• Location: Egypt, Arab Republic of Egypt

We aim to respond to all privacy-related enquiries within 30 days.