Last Updated: October 29, 2025**
IMPORTANT: READ CAREFULLY**
This Privacy Policy describes how SlyWriter LLC ("we", "us", or "our") collects, uses, stores, and protects your information when you use our software and services ("Service"). By using SlyWriter, you consent to the data practices described in this policy.
1. INFORMATION WE COLLECT
1.1 Account Information
When you create an account, we collect:
- **Email address** (for account identification and communication)
- **Name** (optional, for personalization)
- **Password** (encrypted and hashed)
- **OAuth tokens** (if you sign in with Google)
- **Account creation date**
- **Subscription plan** (Free or Pro)
- **Payment information** (processed by third-party payment processors)
1.2 Usage Data
We automatically collect information about how you use the Software:
- **Typing statistics:**
- Words typed per session
- Characters typed
- Average typing speed (WPM)
- Typing accuracy
- Typing profile used (Slow, Medium, Fast, Very Fast)
- Number of typos and pauses
- Session duration and timestamps
- **Feature usage:**
- AI text generation requests and token usage
- Humanizer feature usage
- Learn tab interactions
- Profile configurations
- Hotkey settings
- **Application data:**
- Software version
- Operating system and version
- Installation date
- Last login date
- Error logs and crash reports
1.3 Text Content
IMPORTANT: WE DO NOT STORE THE ACTUAL TEXT YOU TYPE.**
What We DON'T Store:**
- ❌ **NOT STORED:** The actual text you type or input into typing sessions
- ❌ **NOT STORED:** Modified/humanized text output
- ❌ **NOT STORED:** The content of your essays, assignments, or documents
- ❌ **NOT STORED:** Your typing input remains on your device only
**What We DO Store (Metadata Only):**
- ✅ **Word count** (e.g., 1,250 words typed)
- ✅ **Character count** (e.g., 6,432 characters)
- ✅ **Typing speed** (e.g., 65.5 WPM average)
- ✅ **Accuracy percentage** (e.g., 97.8% accurate)
- ✅ **Typo and pause counts** (e.g., 12 typos, 3 pauses)
- ✅ **Profile used** (e.g., "Medium" typing profile)
- ✅ **Feature flags** (e.g., ai_generated: true/false, humanized: true/false)
- ✅ **Session timestamps** (when you started and finished typing)
- ✅ **Duration** (how long the session lasted)
**AI Prompts (Temporary Storage):**
- **AI prompts** may be temporarily stored for billing verification purposes only
- Token counts tracked for AI generation billing
- Prompts automatically deleted after 30 days
- We do NOT store AI-generated responses
**Learning Materials:**
- Topics and lesson outlines you create may be stored
- Study questions and quizzes you generate
**Privacy Advantage:**
- Your actual text content stays on your device
- We can't see what you type, even if we wanted to
- A data breach cannot expose your essays or assignments
- No text content to subpoena or disclose in legal proceedings
1.4 Device and Technical Information
We may collect:
- IP address
- Device identifiers
- Browser type and version
- Operating system details
- Screen resolution
- Language preferences
- Time zone
1.5 Cookies and Local Storage
We use cookies and local storage to:- Maintain your login session
- Remember your preferences
- Track usage statistics
- Improve performance
2. HOW WE USE YOUR INFORMATION
2.1 Primary Uses
We use your information to:
- **Provide the Service:** Enable core functionality of the Software
- **Authenticate you:** Verify your identity and maintain your session
- **Process payments:** Handle subscriptions and billing (via third-party processors)
- **Track usage limits:** Enforce word limits and feature quotas based on your plan
- **Improve the Service:** Analyze usage patterns to enhance features
- **Provide support:** Respond to your inquiries and troubleshoot issues
- **Send communications:** Service updates, security alerts, and promotional emails (opt-out available)
- **Prevent abuse:** Detect and prevent fraud, misuse, and terms violations
- **Comply with legal obligations:** Respond to legal requests and protect our rights
2.2 Analytics and Aggregation
We analyze usage data in aggregate to:
- Understand how users interact with features
- Identify popular features and areas for improvement
- Generate anonymized statistics and trends
- Make data-driven product decisions
2.3 AI Features and Third-Party Processing
**When you use AI-powered features:**
**Sent to OpenAI's Servers:**
- Your prompts are transmitted to OpenAI's API for processing
- OpenAI processes your data according to their privacy policy (https://openai.com/privacy)
- **As of 2023, OpenAI does NOT use API data to train their models by default** (their policy changed to not use API inputs/outputs for training unless you explicitly opt in)
- OpenAI retains API data for up to 30 days for abuse monitoring purposes only
- We have no control over OpenAI's data handling practices beyond what their policies state
- AI-generated responses are sent back to your device
**Temporarily Stored on Our Servers:**
- AI prompts may be stored temporarily (up to 30 days) for billing verification
- Token usage and generation counts are tracked permanently for billing purposes
- Prompts are automatically deleted after 30 days
- We do NOT store AI-generated responses
**No Content Filtering:**
- We do NOT filter or moderate prompts before sending to OpenAI
- We do NOT review prompts for content
- You are solely responsible for the content of your prompts
- Inappropriate prompts may violate OpenAI's usage policies
**Privacy Note:** AI prompts are the only text content temporarily stored. All other text (essays, typing input, etc.) remains on your device only.
3. HOW WE SHARE YOUR INFORMATION
3.1 Third-Party Service ProvidersWe share your information with third-party service providers who help us operate the Service:
**AI Services:**
- **OpenAI** - Processes AI generation, humanization, and learning features
- Your prompts and text are sent to OpenAI's API
- Subject to OpenAI's privacy policy and data usage terms
- **OpenAI does NOT use API data to train their models by default** (as of 2023 policy update; data is retained for 30 days for abuse monitoring only)
**Authentication Services:**
- **Google OAuth** - Handles Google sign-in authentication
- Subject to Google's privacy policy
**Payment Processors:**
- **Stripe, PayPal, or similar** - Processes subscription payments
- We do not store full credit card numbers
- Subject to payment processor's privacy policy
**Cloud Hosting:**
- **Render, AWS, or similar** - Hosts our backend servers and databases
- Data is encrypted in transit and at rest
**Analytics Services:**
- **Google Analytics or similar** - Tracks usage patterns and statistics
- May use cookies and tracking technologies
3.2 Legal Requirements
We may disclose your information if required by law or legal process:
- **Court orders and subpoenas**
- **Law enforcement requests**
- **Government investigations**
- **Compliance with regulations**
**IMPORTANT:** If you use the Software to violate laws or policies (e.g., academic cheating, unauthorized access), and we receive a legal request for your information, we will comply with that request.
3.3 Academic, Employer, or Law Enforcement Investigations
**IF AN EDUCATIONAL INSTITUTION, EMPLOYER, OR LAW ENFORCEMENT CONTACTS US** regarding suspected misuse of our Software:
**We WILL Cooperate by Providing:**
- Usage logs, account information, and timestamps
- Word counts, typing speeds, and session metadata
- Feature usage details (AI generation, humanizer, etc.)
- AI prompts (if still within 30-day retention period)
- Confirmation of account activity
**We CANNOT Provide:**
- ❌ The actual text you typed (we don't store it)
- ❌ Essays, assignments, or document content (stays on your device)
- ❌ Humanized or modified text (not stored)
- ❌ AI-generated responses (not stored)
**What This Means:**
- We have limited information to disclose in investigations
- Your actual written content cannot be provided because we don't have it
- Metadata (word counts, timestamps, features used) may be disclosed
- Temporary AI prompts (if within 30 days) may be disclosed
**We are NOT Obligated to:**
- Notify you before disclosing metadata to investigators
- Protect you from consequences of misuse
- Assist you in disputes or disciplinary proceedings
- Challenge legal requests on your behalf
**Types of Requests We Honor:**
- Academic integrity investigations from schools/universities
- Employer policy violation inquiries
- Court subpoenas and legal orders
- Law enforcement requests with proper legal authority
**Privacy Benefit:** Since we don't store your text content, it cannot be disclosed even if legally requested
.
3.4 Business TransfersIf SlyWriter is acquired, merged, or sells assets, your information may be transferred to the new entity as part of the transaction.
3.5 With Your ConsentWe may share your information for other purposes with your explicit consent
.
3.6 What We DON'T Share
We do not:
- Sell your personal information to third parties for marketing purposes
- Share your typing data with advertisers
- Publicly disclose your account information without consent
4. DATA STORAGE AND SECURITY
4.1 Where We Store DataYour data is stored:
- **Cloud servers** - Hosted on secure cloud infrastructure (Render, AWS, etc.)
- **Local storage** - Some preferences and settings stored locally on your device
- **Third-party servers** - AI content processed by OpenAI, authentication by Google
4.2 Data Security Measures
We implement reasonable security measures including:
- **Encryption in transit** - HTTPS/TLS for all communications
- **Encryption at rest** - Database encryption for stored data
- **Password hashing**- Bcrypt or similar secure hashing for passwords
- **Access controls** - Limited employee access to user data
- **Regular backups** - To prevent data loss
- **Security monitoring** - For unauthorized access attempts
4.3 Limitations**
HOWEVER, NO SYSTEM IS 100% SECURE.** We cannot guarantee:
- That your data will never be breached
- Protection against all cyber threats
- Prevention of unauthorized access by sophisticated attackers
- Security of third-party services we integrate with
**YOU USE THE SERVICE AT YOUR OWN RISK** regarding data security.
4.4 Data BreachesIn the event of a data breach that affects your personal information, we will:
- Notify you via email within a reasonable timeframe
- Inform relevant authorities as required by law
- Take steps to secure the system and prevent future breaches
5. DATA RETENTION
5.1 How Long We Keep Data
We retain your information for as long as:
- Your account is active
- Necessary to provide the Service
- Required by law or for legitimate business purposes
5.2 Specific Retention Periods
**Stored INDEFINITELY (until you request deletion):**
- **Typing metadata:** Word counts, WPM, accuracy, timestamps stored permanently
- **Usage statistics:** Aggregated analytics retained indefinitely
- **Feature usage flags:** AI generation usage, humanizer usage, etc.
- **Account information:** Email, subscription details, settings
**Temporary Storage (Auto-Deleted):**
- **AI prompts:** Automatically deleted after 30 days
- **Telemetry events:** May be purged after 90 days
**Limited Retention:**
- **Account information:** Retained while active, then 90 days after deletion
- **Payment records:** Retained for 7 years (required by law for tax/accounting)
- **Support communications:** Retained for 3 years
**NOT Stored at All:**
- ❌ **Typing input text:** Never stored (stays on your device)
- ❌ **Output text:** Never stored (stays on your device)
- ❌ **AI-generated responses:** Never stored (sent directly to your device)
**Third-Party Retention:**
- **OpenAI:** Retains prompts per their policies (30 days API retention typically)
- **Google OAuth:** Retains authentication data per Google's policies
- **Stripe:** Retains payment data per their policies (typically 7+ years)
5.3 Account Deletion
**When you delete your account:**
- Personal information (email, name, OAuth tokens) is removed within 90 days
- Typing metadata (word counts, WPM, timestamps) is removed within 90 days
- AI prompts (if any remain) are immediately deleted
- Aggregated, anonymized usage statistics may be retained indefinitely
- Payment records retained for 7 years as required by law
- Database backups may contain your metadata for up to 90 days after deletion
**Important Notes:**
- Since we don't store your typing text, there's no text content to delete
- Third-party services (OpenAI, Google, Stripe) retain data per their policies
- We cannot delete data that has already been:
- Disclosed to law enforcement or legal proceedings
- Backed up to third-party services
- Aggregated into anonymized statistics
6. YOUR RIGHTS AND CHOICES
6.1 Access and Portability
You have the right to:
- **Access** your personal information
- **Download** your data in a portable format
- **Request** a copy of information we have about you
6.2 Correction and Updates
You can:
- **Update** your account information through the app
- **Request corrections** to inaccurate information
- **Change** your password and email address
6.3 Deletion
You can:
- **Delete your account** through the app or by contacting us
- **Request deletion** of specific data (subject to legal retention requirements)
6.4 Opt-Out Options
You can opt out of:
- **Marketing emails** - Click unsubscribe in any promotional email
- **Analytics tracking** - Some tracking can be disabled in settings
- **AI data usage** - Contact third-party providers directly (e.g., OpenAI)
6.5 Cookie Controls
You can:
- Clear cookies through your browser settings
- Block cookies (may affect functionality)
- Use browser privacy modes
6.6 Withdrawal of Consent
You may withdraw consent for data processing at any time, but this may limit or prevent your use of the Service.
7. CHILDREN'S PRIVACY
7.1 Age Requirement
SlyWriter is **ONLY for users 18 years of age or older.** By using this service, you certify that you are 18+
.
7.2 COPPA Compliance
We do not knowingly collect personal information from children under 18. If we learn we have collected information from a user under 18, we will delete it promptly and may terminate the account.
7.3 Age VerificationWe use an honor system for age verification (similar to adult websites). We do not verify your age beyond your self-certification. However, if we discover you are under 18, your account will be terminated immediately.
8. INTERNATIONAL USERS
8.1 Data Transfers
If you are located outside the United States:
- Your data will be transferred to and processed in the United States
- U.S. privacy laws may differ from those in your country
- By using the Service, you consent to this transfer
8.2 GDPR Compliance (EU Users)
If you are in the European Economic Area (EEA), you have additional rights under GDPR:
- **Right to erasure** ("right to be forgotten")
- **Right to restrict processing**
- **Right to data portability**
- **Right to object** to processing
- **Right to withdraw consent**
- **Right to lodge a complaint** with supervisory authority
8.3 Legal Basis for Processing (GDPR)
We process your data based on:
- **Contractual necessity** - To provide the Service you requested
- **Legitimate interests** - To improve and secure our Service
- **Legal obligations** - To comply with laws and regulations
- **Consent** - For optional features and marketing
9. CALIFORNIA PRIVACY RIGHTS (CCPA)
If you are a California resident, you have specific rights under CCPA:
9.1 Right to Know
You can request:
- Categories of personal information we collect
- Specific pieces of personal information we have about you
- Categories of sources from which we collect information
- Business purposes for collecting information
- Categories of third parties we share information with
9.2 Right to Delete
You can request deletion of your personal information (subject to exceptions).
9.3 Right to Opt-Out of Sale
**We do not sell your personal information.** If this changes, we will provide an opt-out mechanism.
9.4 Non-Discrimination
We will not discriminate against you for exercising your CCPA rights.
9.5 How to Exercise Rights
Email: support@slywriter.ai with "CCPA Request" in the subject line.
10. TRACKING AND DO NOT TRACK
10.1 Tracking Technologies
We use:
- **Cookies** - Small files stored on your device
- **Local storage** - Browser-based data storage
- **Session tokens** - For authentication
- **Analytics scripts** - To track usage
10.2 Do Not Track Signals
We currently do not respond to "Do Not Track" browser signals, as there is no industry standard for compliance.
11. THIRD-PARTY LINKS AND SERVICES
11.1 External Links
The Software may contain links to third-party websites. We are not responsible for the privacy practices of these sites. Review their privacy policies before providing information.
11.2 Third-Party Privacy Policies
Key third parties and their privacy policies:
- **OpenAI:** https://openai.com/privacy
- **Google:** https://policies.google.com/privacy
- **Stripe:** https://stripe.com/privacy
12. CHANGES TO THIS PRIVACY POLICY
12.1 Updates
We may update this Privacy Policy at any time. Changes will be effective immediately upon posting.
12.2 Notification
For material changes, we will:
- Post a notice in the application
- Send an email to your registered address (if applicable)
- Update the "Last Updated" date at the top
12.3 Your Responsibility
**IT IS YOUR RESPONSIBILITY TO REVIEW THIS POLICY REGULARLY.** Continued use after changes constitutes acceptance of the modified policy.
13. DATA SUBJECT REQUESTS
13.1 How to Submit Requests
To exercise your privacy rights:
- **Email:** support@slywriter.ai
- **Subject Line:** Include your request type (Access, Deletion, Correction, etc.)
- **Information Required:** Provide your name, email, and account details for verification
13.2 Response Time
We will respond to requests within:
- **30 days** for general requests
- **45 days** for complex requests
- As required by applicable law (e.g., GDPR: 30 days, CCPA: 45 days)
13.3 Verification
We may require additional information to verify your identity before processing requests to protect your privacy and security.
14. SENSITIVE INFORMATION
14.1 What We DON'T Intentionally Collect
We do not intentionally collect:
- Social Security numbers
- Financial account numbers (beyond payment processing)
- Health or medical information
- Racial or ethnic origin
- Political opinions or affiliations
- Religious beliefs
- Biometric data
- Sexual orientation information
14.2 If You Provide Sensitive Data
If you include sensitive information in text you input (e.g., typing personal information into the app), **WE ARE NOT RESPONSIBLE** for how that data is processed, especially if sent to third-party AI providers.
**DO NOT INPUT SENSITIVE PERSONAL INFORMATION INTO THE SOFTWARE.**
15. AUTOMATED DECISION-MAKING
15.1 Use of Automation
We may use automated systems to:
- Detect abuse or terms violations
- Calculate usage limits and quotas
- Generate AI content based on prompts
- Recommend features or settings
15.2 No Significant Automated Decisions
We do not use automated decision-making that has legal or similarly significant effects on you, except as required to enforce terms (e.g., account suspension for violations).
16. DATA PROTECTION OFFICER
For privacy inquiries or to exercise your rights, contact our Data Protection Officer:
**Email:** support@slywriter.ai
**Subject Line:** "Privacy Inquiry" or "Data Subject Request"
17. SUPERVISORY AUTHORITY
If you are in the EU and believe we have violated GDPR, you have the right to lodge a complaint with your local data protection authority.
18. CONSENT
18.1 Acceptance
By using SlyWriter, you consent to:
- Collection of information as described in this policy
- Use of your information for stated purposes
- Sharing with third-party service providers
- Transfer of data to the United States
- Processing by third-party AI providers
18.2 Withdrawal
You may withdraw consent at any time by:
- Deleting your account
- Discontinuing use of the Service
- Contacting us to request data deletion
**Note:** Withdrawal may limit or prevent your use of the Service.
19. SECURITY INCIDENT REPORTING
If you discover a security vulnerability or data breach, please report it immediately to:
**Email:** support@slywriter.ai
**Subject Line:** "Security Incident Report"
We appreciate responsible disclosure and will work to address security issues promptly.
20. JURISDICTION-SPECIFIC RIGHTS
20.1 Other U.S. States
If you reside in states with specific privacy laws (Virginia, Colorado, Connecticut, Utah, etc.), you may have additional rights similar to CCPA. Contact us to exercise these rights.
20.2 Other Countries
If you are in a jurisdiction with specific privacy laws not covered above, you may have additional rights under your local laws. Contact us for information about your rights.
21. LIMITATION OF LIABILITY
21.1 Data Breaches
While we implement security measures, **WE CANNOT GUARANTEE ABSOLUTE SECURITY.** You agree that we shall not be liable for unauthorized access to your data resulting from:
- Hacking or cyber attacks beyond our control
- Third-party service breaches
- Your own security negligence (e.g., sharing passwords)
- Vulnerabilities in third-party software
21.2 Third-Party Data Use
We are not responsible for how third-party services (OpenAI, Google, etc.) use your data. Review their privacy policies.
21.3 Jurisdiction-Specific Limitations
**IMPORTANT:** Some jurisdictions do not allow certain limitations of liability or exclusions of warranties. If applicable law in your jurisdiction prohibits any of the limitations or disclaimers in this Privacy Policy or our Terms of Service, those provisions shall not apply to you, but only to the extent prohibited by law.
In such cases:
- Our liability and responsibility will be determined according to the applicable laws of your jurisdiction.
- Certain statutory consumer rights or data protection laws (such as GDPR, CCPA, or similar regulations) cannot be waived and remain in full effect.
- Nothing in this Privacy Policy shall exclude or limit our liability for fraud, gross negligence, willful misconduct, or any other liability that cannot be excluded under applicable law.
The limitations and disclaimers in this Privacy Policy are intended to apply to the maximum extent permitted by law. If you are a consumer in a jurisdiction with stronger privacy protections or consumer rights, those protections shall override any conflicting provisions in this policy to the extent required by law.
22. CONTACT US
For privacy questions, concerns, or requests:
**Company:** SlyWriter LLC
**Email:** support@slywriter.ai
**Website:** https://slywriter.ai/privacy
**Mailing Address:**
SlyWriter LLC
257 N Ridgewood Road
South Orange, NJ 07079
United States
23. ACKNOWLEDGMENT
**BY USING SLYWRITER, YOU ACKNOWLEDGE THAT:**
1. ✓ You have read and understood this Privacy Policy
2. ✓ You certify that you are 18 years of age or older
3. ✓ You consent to the collection and use of typing metadata as described
4. ✓ You understand that actual text you type is NOT stored on our servers
5. ✓ You understand that AI prompts may be temporarily stored for up to 30 days
6. ✓ You understand that AI prompts are sent to third-party providers (OpenAI)
7. ✓ You understand typing metadata (word counts, WPM, timestamps) is stored
8. ✓ You understand we may cooperate with legal and academic investigations
9. ✓ You understand metadata (not text content) may be disclosed in legal proceedings
10. ✓ You are responsible for your own data security practices
11. ✓ You understand that we cannot guarantee absolute data security
12. ✓ You understand deletion requests take up to 90 days to process
13. ✓ You agree to review this policy regularly for updates
**© 2025 SlyWriter. All rights reserved.**
.png)
