Skip to main content
Back to The Prompt Fixer™

Privacy Policy

Last updated: January 5, 2026

1. Introduction

The Prompt Fixer™ ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI prompt optimization service. Please read this policy carefully.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address and authentication data when you create an account
  • Prompt Content: Prompts are processed transiently for optimization. We do not store, log, or retain your prompt content.
  • Payment Information: Processed securely through Stripe; we never store full payment details

2.2 Automatically Collected Information

  • Usage Data: Features used, prompts generated (count only, not content), timestamps, subscription tier
  • Device Identifier: A randomly generated device ID stored in localStorage to track free tier usage limits
  • Device Information: Browser type, operating system, device type
  • Local Storage: Theme preferences only

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve our Service
  • Process transactions and manage subscriptions
  • Enforce usage limits for free tier users
  • Send service-related communications and updates
  • Respond to customer support requests
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

4. Data Processing and AI Providers

To provide prompt optimization, we offer two processing modes:

Standard Mode (No AI Processing)

Standard Mode uses deterministic, rule-based prompt enhancement that runs entirely in your browser:

  • No AI involved: Prompts never leave your browser for AI processing
  • Template-based: Uses pre-built prompt templates and structural improvements based on proven prompt engineering patterns
  • Deterministic: Same input always produces the same output
  • Instant: No network latency - results appear immediately

Standard Mode applies best practices like adding role context, specifying output formats, breaking down complex requests, and structuring instructions clearly.

Expert Mode - Zero Data Retention (ZDR) Enabled

Expert Mode uses Anthropic Claude 3.5 Haiku through Vercel AI Gateway with Zero Data Retention enabled. This means:

  • Your prompts are not used to train AI models
  • Data is processed transiently and not retained after generating a response
  • This protection applies to all users (free and paid)
  • Anthropic (Claude 3.5 Haiku via Vercel AI Gateway): Prompts are processed with Zero Data Retention. Anthropic is a verified ZDR provider through Vercel AI Gateway, meaning your data is not retained or used for model training.

4.1 How Your Data Flows

Zero Data Retention Pipeline
STEP 1

You

Enter your prompt

STEP 2Encrypted

TLS Encryption

256-bit encryption in transit

STEP 3ZDR Flag

Prompt Fixer Servers

ZDR policy enforced

STEP 4 No Storage

Vercel AI Gateway

ZDR routing enforced

STEP 5 No Storage

Anthropic Claude

Process & immediately discard

STEP 6Optional

Response Returns

24hr cache max, then deleted

STEP 7 Complete

You

Receive optimized prompt

4.2 Why Expert Mode?

We selected Expert Mode for optimal performance across key metrics:

  • Speed: < 1 second typical response time vs 3-5s for Sonnet
  • Cost-efficiency: Allows $29/mo pricing vs $99+ alternatives
  • Quality: 95%+ optimization quality vs larger models
  • Privacy: Full Zero Data Retention support

Our testing shows Expert Mode achieves optimal balance of speed, quality, and cost for prompt optimization tasks.

5. Third-Party Privacy Policies

For complete details on Anthropic's data handling:

Anthropic Privacy PolicyAnthropic Compliance

We selected Anthropic specifically for their industry-leading privacy standards and Zero Data Retention capabilities.

6. Data Storage

6.1 What We Store in Our Database

  • Users Table: Email, Stripe customer/subscription IDs, subscription tier, usage counts, timestamps
  • Device Usage: Anonymous device IDs with daily usage counts (for free tier limits only)
  • Grade Cache: Hashed prompt identifiers with grades to avoid re-processing identical prompts (no actual prompt content stored)

6.2 What We Do NOT Store

  • Your prompt content
  • Generated/optimized outputs
  • Prompt history
  • Grading details or feedback

6.3 What We Store Locally (Your Device)

  • Device identifier (random string for usage tracking)
  • Theme preference

7. Data Retention

  • Account Data: Retained while your account is active, deleted within 30 days of account deletion request
  • Device Usage Records: Retained to enforce daily limits, automatically reset daily
  • Payment Records: Retained as required by law (typically 7 years)
  • Prompt Content: Not retained - processed transiently only

8. Local Storage

We use browser localStorage for essential functionality only:

  • Theme Preference: Remembers your light/dark mode choice
  • Device ID: A randomly generated identifier used solely to enforce free tier usage limits - this is not used for tracking or analytics
  • Authentication: Session tokens for logged-in users (via Supabase)

We do not use tracking cookies, analytics cookies, or any third-party cookies. All storage is essential for the service to function.

9. API Data Handling

9.1 Prompts Submitted via API

  • Processing: Prompts processed in real-time for optimization
  • Storage: Not stored permanently; deleted within 24 hours
  • Training: We do NOT use your prompts to train our models
  • Access: Only automated systems process prompts; no human review unless you report an issue

9.2 API Keys

  • Encrypted in transit (TLS 1.3) and at rest
  • Regenerate anytime via dashboard
  • Keys are hashed; we cannot recover lost keys

9.3 Usage Analytics

We collect:

  • Request counts and timestamps
  • Response times and error rates
  • Endpoint usage patterns

We do NOT collect: Actual prompt content for analytics

9.4 Data Retention (API)

  • Active accounts: Usage metadata retained for billing
  • Deleted accounts: All data purged within 30 days
  • Backups: 90-day retention for disaster recovery

10. Your Rights and Choices

10.1 All Users

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Opt-out: Unsubscribe from marketing communications
  • Export: Export usage history

Contact privacy@thepromptfixer.com to exercise these rights.

10.2 European Users (GDPR)

If you are in the European Economic Area, you have additional rights including the right to object to processing, restrict processing, and data portability. Our legal basis for processing includes consent, contract performance, and legitimate interests.

10.3 California Users (CCPA)

California residents have the right to know what personal information is collected, request deletion, and opt-out of the sale of personal information (note: we do not sell personal information).

11. Security

We implement industry-standard security measures including:

  • TLS/SSL encryption for all data in transit
  • Encryption at rest for stored data (Supabase)
  • Row-level security (RLS) policies ensuring users can only access their own data
  • Secure authentication via Supabase Auth
  • Security headers (CSP, HSTS, X-Frame-Options)
  • PCI-compliant payment processing via Stripe

12. International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers through our providers' compliance certifications.

13. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it promptly.

14. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through the Service. Your continued use after changes constitutes acceptance of the updated policy.

15. Contact Us

For privacy-related questions or to exercise your rights, contact us at: privacy@thepromptfixer.com

16. Questions?

For frequently asked questions about privacy, security, and how The Prompt Fixer works, please visit our FAQ page. For other inquiries, contact us at privacy@thepromptfixer.com.