AI

Privacy Policy

Effective Date: March 22, 2026

Welcome to AI Persona Generator ("we," "our," "us," or "the Company"). We are committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by AI Persona Generator when you visit our website or use our API/MCP services.

1. Information We Collect

We collect information to provide and improve our services to you:

  • Account Information: When you sign in via OAuth providers (such as Google or GitHub), we collect your email address, name, and profile picture provided by the OAuth provider. You can manage these connections directly within your provider's settings.
  • User Data: We store your generated persona configuration schemas, project descriptions, and the generated JSON/CSV results to build your History dashboard.
  • Usage Data & Analytics: We collect non-personally identifiable information automatically when you visit our services (such as browser type, device type, IP address, and page interactions) to monitor platform health and performance.

2. Payment Information & Stripe

If you purchase credits or a subscription, your payment details are processed directly and securely by our payment provider, Stripe. We do not collect, process, or store your full credit card numbers or PCI-DSS sensitive data on our servers. We only store a reference to your payment status (e.g., credit balance) and subscription tier in our database.

3. Cookies and Tracking Technologies

We use cookies and similar tracking technologies primarily to ensure the essential functionality of our platform:

  • Essential Cookies: We utilize secure HTTP-only cookies managed by Next.js and Supabase Auth to maintain your authenticated session. You cannot opt-out of these cookies without losing access to logged-in features.
  • Local Storage: We leverage your browser's local storage to save temporary preferences (such as light/dark mode and guest-mode trial limits).

We do not use third-party tracking cookies designed to serve you targeted advertising.

4. How We Use Your Information

We use the collected information for the following purposes:

  • To provide, maintain, and securely host our AI data generation features.
  • To process your transactions and manage your pricing subscription.
  • To provide customer support and respond to requests.
  • To detect, prevent, and address technical issues or fraudulent activities (e.g., API abuse).

5. Third-Party Sub-processors

To operate effectively, we share necessary data with trusted third-party providers. We do not sell your personal data. We do not use your private schema inputs to train our proprietary large language models.

  • OpenAI: Used for processing text prompts to generate structured persona data and prompt recommendations. Data sent to OpenAI through our API integration is excluded from their model training by default, in accordance with their API data privacy policies.
  • Replicate: Used for generating synthetic AI avatars based on your demographic specifications.
  • Supabase: Our backend provider, securely managing authentication and database hosting for your histories, protected via Row-Level Security (RLS) policies.

6. Data Retention and Security

Your data is transmitted strictly over HTTPS and stored securely using Supabase. We maintain your generation history only as long as your account remains active. While we employ industry-standard security practices—including encrypted API keys and JWT-based authentication—no method of transmission over the internet is completely infallible.

7. Your Privacy Rights (GDPR / CCPA)

Depending on your residency, you may be entitled to specific rights regarding your personal data:

  • Right to Access & Delete: You have the right to request a copy of the data we hold on you, or request its complete erasure. You can delete individual generation records directly from the History dashboard.
  • Right to Rectification: You can update your account information via the Profile settings.

To exercise comprehensive data removal, please contact our support team to entirely purge your records from our Supabase tables.

8. Children's Privacy

Our Service does not address anyone under the age of 13 (or 16 in the EEA). We do not knowingly collect personally identifiable information from children. If you are a parent or guardian and are aware that your child has provided us with Personal Data, please contact us so we can take immediate action to remove that info from our servers.

9. Changes to this Privacy Policy

We may update our Privacy Policy from time to time. We will let you know via a prominent notice on our Service and specify the "Effective Date" at the top of this Privacy Policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at support@yourdomain.com.