Privacy Policy
Last updated: March 2026
Your privacy matters. This policy explains what data we collect, how we use it, and your rights.
1. Data We Collect
When you use DrafterPlus AI, we collect the following information:
- Account data: Name, email address, and profile picture provided by Google OAuth
- Chat history: Messages you send and responses generated by AI models
- Usage data: Number of requests, token usage, timestamps, and plan information
- Technical data: IP address, browser type, and request logs for security and abuse prevention
- Payment data: Processed by Stripe — we do not store credit card numbers
2. How We Use Your Data
We use your data to:
- Provide and maintain the DrafterPlus AI service
- Authenticate your identity and manage your account
- Track usage to enforce plan limits and prevent abuse
- Process payments via Stripe
- Improve the service and fix bugs
- Communicate important service updates
3. Third-Party AI Providers
Your messages are sent to third-party AI providers (such as Anthropic) to generate responses. These providers have their own privacy policies and data handling practices. By using DrafterPlus AI, you consent to your message content being processed by these providers.
We do not control how third-party providers use or store your data beyond the scope of our API agreements with them.
4. Data Storage & Security
Your data is stored on secure servers. We implement reasonable security measures to protect against unauthorized access, alteration, or destruction of your data. However, no method of electronic storage is 100% secure.
- Passwords are never stored — authentication is handled by Google OAuth
- API keys are stored with hashed secrets
- All connections use HTTPS/TLS encryption
5. Data Sharing
We do not sell your personal data. We only share data in these circumstances:
- With AI providers to process your requests (see section 3)
- With Stripe to process payments
- When required by law or to protect our rights
- With OAuth-authorized applications that you explicitly approve (scoped access only)
6. OAuth Applications & Connected Services
When you authorize a third-party application via OAuth, that application receives a scoped access token. This token allows the application to make AI requests on your behalf. The application:
- Can use your AI quota for chat and image generation
- Can see your display name and email
- Cannot access your API keys or password
- Can be revoked at any time from your dashboard
7. Cookies
We use minimal cookies and local storage for:
- Authentication tokens (to keep you logged in)
- User preferences
We do not use third-party tracking cookies or analytics services.
8. Your Rights (GDPR)
If you are in the European Economic Area, you have the right to:
- Access your personal data
- Correct inaccurate data
- Delete your account and all associated data
- Export your data in a portable format
- Object to certain processing activities
You can delete your account at any time from the dashboard. This permanently removes all your data, chat history, API keys, and connected applications.
9. Data Retention
We retain your data for as long as your account is active. When you delete your account, all associated data is permanently removed. Request logs may be retained for up to 30 days for security purposes.
10. Children's Privacy
DrafterPlus AI is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal data, please contact us.
11. Changes to This Policy
We may update this privacy policy from time to time. We will update the "Last updated" date at the top of this page when changes are made. Continued use of the service constitutes acceptance of the updated policy.
12. Contact
For privacy-related questions, you can reach us through the Support section in the DrafterPlus AI dashboard.