Privacy Policy

Last Updated: October 23, 2025

Welcome to GraphGPT. Your privacy is critically important to us. This policy outlines how we collect, use, and protect your information.

1. Information We Collect

A. Information You Provide

  • Google AI API Key (Current Model): We currently require you to provide your own Google AI (Gemini) API key to use the AI features. This key is stored *exclusively* in your browser's local storage. It is **never sent to, stored on, or seen by** GraphGPT servers.
  • Account Information (Future): When we implement user accounts, we will collect information necessary for account creation, such as your email address and a hashed password.
  • Payment Information (Future): For access to premium AI features, we will use Razorpay to process payments. We do not collect or store your full credit card information. Razorpay, our payment processor, will handle this data, and we will only store records of your subscription status and transaction history.

B. Information Collected Automatically

  • Usage Data: We may collect anonymous data about how you interact with our service (e.g., features used, page views) to help us improve the app.
  • Graph & Prompt Data: To provide the service, we must process the data and text prompts you enter. In the future, this data may be securely associated with your account to allow you to save and access your work.

2. How We Use Your Information

Your information is used to:

  • Provide the Service: Your AI prompts are sent to the Google AI API to generate graph data. In the future, your API key will be replaced by a secure cloud function, so your key will no longer be required.
  • Process Payments: To manage subscriptions via Razorpay (future).
  • Maintain & Improve Our Service: To understand how users interact with GraphGPT and to fix bugs or add features.
  • Communicate with You: To send account-related or service-related emails (future).

3. How We Share Your Information

We do not sell, rent, or trade your personal information. We only share it in the following limited circumstances:

  • With Service Providers:
    • Google AI: Your text prompts (but not your personal API key) are sent to Google's API to generate responses. When we move to a cloud function, these requests will be proxied through our server.
    • Razorpay (Future): Your payment details are sent directly to Razorpay to process transactions.
  • For Legal Reasons: We may disclose information if required by law or in response to a valid legal request.

4. Data Storage & Security

API Key (Current): Your API key is stored *only* in your browser's local storage. You can clear this at any time by clearing your browser's storage for this site or unchecking the "Store key locally" box in the app.

Account & Graph Data (Future): When user accounts are implemented, your account information and saved graph data will be stored in a secure, encrypted database. We will take all reasonable measures to protect your data from unauthorized access.

5. Your Choices & Rights

  • You can choose not to provide an API key, which will limit you to the non-AI features of the app.
  • You can clear your locally stored API key at any time.
  • (Future) You will be able to access, update, or delete your account information through your account settings.
  • (Future) You will be able to manage your subscription through your account settings.

6. Changes to This Privacy Policy

We may update this policy from time to time. If we make significant changes, we will notify you (for example, by email if you have an account). We encourage you to review this page periodically.

7. Contact Us

If you have any questions about this Privacy Policy, please contact us at "pietopylearning@gmail.com".