Privacy Policy

Welcome to Humanizer.ai ("we," "us," or "our"). We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, application, and services (collectively, the "Service"). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service. We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the "Last Updated" date of this Privacy Policy. You are encouraged to periodically review this Privacy Policy to stay informed of updates.

We collect information about you in various ways when you use our Service. The information we collect includes: Personal Information: • Name and email address (when you create an account) • Payment information (processed securely through Razorpay; we do not store full credit card numbers) • Profile information (name, profile picture from Google OAuth) • Account credentials and authentication data Usage Information: • Text content you submit for humanization (temporarily processed, not permanently stored) • Credit usage history and transaction records • Usage patterns, features accessed, and time spent on the Service • Device information (browser type, operating system, IP address) • Log data (access times, pages viewed, app features used) Automatically Collected Information: • Cookies and similar tracking technologies (see Section 7) • Analytics data about how you interact with our Service • Technical information about your device and connection Third-Party Information: • Information from Google OAuth authentication • Payment confirmation data from Razorpay • Analytics data from third-party services

We use the information we collect for various purposes, including: Service Delivery: • To provide, maintain, and improve our humanization service • To process your text through AI models and deliver humanized output • To manage your account and credits • To process payments and prevent fraud Communication: • To send you administrative information, updates, and security alerts • To respond to your inquiries and provide customer support • To send you marketing communications (with your consent) • To notify you about changes to our Service or policies Analytics and Improvement: • To analyze usage patterns and optimize the Service • To develop new features and improve existing ones • To monitor and analyze trends, usage, and activities • To personalize your experience with the Service Legal and Security: • To comply with legal obligations and enforce our Terms of Service • To protect against fraudulent, unauthorized, or illegal activity • To protect the rights, property, and safety of Humanizer.ai, our users, and others • To resolve disputes and troubleshoot problems We do NOT: • Sell your personal information to third parties • Use your submitted text content for training AI models without consent • Share your data with advertisers for targeting purposes • Retain your input text longer than necessary for service delivery

We may share your information with third-party service providers who perform services on our behalf: Authentication Services: • Google OAuth - for account creation and authentication • We receive basic profile information (name, email, profile picture) Payment Processing: • Razorpay - for secure payment processing • We do not store your full payment card details • Razorpay's privacy policy governs their data handling AI Processing: • Your text may be processed by third-party AI services (OpenAI, Anthropic, or similar) • These services process your text temporarily to generate humanized output • We use enterprise agreements with data protection clauses • Your text is not used to train their models without explicit consent Analytics and Monitoring: • Google Analytics or similar services for usage analytics • Error tracking services for debugging and improvement • Performance monitoring tools Legal Requirements: We may disclose your information if required to do so by law or in response to: • Valid legal processes (subpoenas, court orders) • Requests from law enforcement or government agencies • Protection of our rights, property, or safety • Prevention of fraud or security threats Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you before your information becomes subject to a different privacy policy.

Data Storage: • Your account information is stored securely in our Supabase database • Text submitted for humanization is processed in memory and not permanently stored • Transaction records are retained for accounting and legal compliance • We use industry-standard encryption for data at rest and in transit Data Retention: • Account information: Retained while your account is active • Transaction records: Retained for 7 years for tax and legal compliance • Usage logs: Retained for 90 days for security and analytics • Submitted text: Deleted immediately after processing (not stored) • Cookies: As specified in your browser settings or our cookie policy Data Deletion: • You may request deletion of your account and associated data at any time • We will delete your data within 30 days of a valid deletion request • Some information may be retained as required by law or legitimate business purposes • Anonymized data may be retained for analytics purposes Data Location: • Our servers are located in [Specify Region/Country] • We use cloud services that may store data in multiple geographic locations • Data transfers comply with applicable data protection laws

We implement appropriate technical and organizational security measures to protect your information: Technical Safeguards: • SSL/TLS encryption for data transmission • Encrypted storage for sensitive data • Secure authentication mechanisms • Regular security audits and penetration testing • Automated security monitoring and threat detection Access Controls: • Role-based access control for our team members • Multi-factor authentication for administrative access • Limited access to personal data on a need-to-know basis • Regular access reviews and privilege management Operational Security: • Employee training on data protection and privacy • Confidentiality agreements with all team members • Incident response procedures for security breaches • Regular backups with secure storage Limitations: While we strive to protect your information, no security system is impenetrable. We cannot guarantee the absolute security of your data. You use the Service at your own risk. If you believe your account has been compromised, contact us immediately at security@humanizer.ai.

We use cookies and similar tracking technologies to collect and store information: Types of Cookies We Use: • Essential cookies: Required for the Service to function (authentication, session management) • Analytics cookies: Help us understand how users interact with the Service • Preference cookies: Remember your settings and preferences • Security cookies: Detect and prevent security threats Third-Party Cookies: • Google Analytics for usage analytics • Authentication providers (Google OAuth) • Payment processors (Razorpay) Your Cookie Choices: • You can control cookies through your browser settings • Blocking essential cookies may affect Service functionality • You can opt out of analytics cookies through your preferences • Third-party cookies are governed by their respective privacy policies Do Not Track: We currently do not respond to "Do Not Track" signals as there is no industry standard for compliance. We will update this policy if a standard emerges.

You have certain rights regarding your personal information: Access and Portability: • Request access to the personal information we hold about you • Request a copy of your data in a structured, machine-readable format • Export your account data and transaction history Correction and Updates: • Update your account information at any time through your profile • Request correction of inaccurate or incomplete information • Contact us to update information you cannot change directly Deletion: • Request deletion of your account and associated data • We will process deletion requests within 30 days • Some data may be retained as required by law Objection and Restriction: • Object to processing of your data for marketing purposes • Request restriction of processing in certain circumstances • Withdraw consent for data processing (where consent is the legal basis) Marketing Communications: • Opt out of marketing emails using the unsubscribe link • Adjust email preferences in your account settings • We will still send essential service communications GDPR Rights (for EU/EEA users): • Right to data portability • Right to be forgotten • Right to restrict processing • Right to object to processing • Right to lodge a complaint with a supervisory authority CCPA Rights (for California residents): • Right to know what personal information is collected • Right to know if personal information is sold or disclosed • Right to say no to the sale of personal information (we do not sell data) • Right to deletion • Right to non-discrimination for exercising privacy rights To exercise any of these rights, contact us at privacy@humanizer.ai.

Our Service is not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you are under 18, do not: • Use or provide any information on the Service • Make any purchases or provide any payment information • Use any interactive features of the Service If we learn that we have collected personal information from a child under 18 without parental consent, we will delete that information as quickly as possible. If you believe we might have information from or about a child under 18, please contact us at privacy@humanizer.ai. Parents and guardians can request: • Access to information collected from their child • Deletion of their child's information • Refusal to permit further collection or use of their child's information

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. Data Protection Measures: • We ensure appropriate safeguards are in place for international transfers • We use standard contractual clauses approved by regulatory authorities • We comply with applicable data protection frameworks • We maintain appropriate technical and organizational security measures Specific Jurisdictions: For EU/EEA Users: • Data transfers comply with GDPR requirements • We use EU-approved mechanisms for data transfers • You have the right to obtain details of transfer safeguards For UK Users: • Data transfers comply with UK GDPR and Data Protection Act 2018 • We use UK-approved transfer mechanisms For California Residents: • We comply with CCPA requirements for data transfers • You have specific rights under California law By using our Service, you consent to the transfer of your information to countries outside your country of residence, including India and the United States.

For users in the EU/EEA, we process your personal data under the following legal bases: Contractual Necessity: • To provide the Service you've requested • To process payments and manage your account • To deliver humanized text output Legitimate Interests: • To improve and optimize our Service • To prevent fraud and ensure security • To analyze usage patterns and develop new features • To send relevant service updates Legal Obligations: • To comply with applicable laws and regulations • To respond to legal processes and authorities • To maintain records for tax and accounting purposes Consent: • For marketing communications (you can withdraw consent anytime) • For optional features requiring explicit consent • For cookies beyond essential ones You have the right to: • Withdraw consent at any time • Object to processing based on legitimate interests • Lodge a complaint with your data protection authority

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. How We Notify You: • We will post the updated Privacy Policy on this page • We will update the "Last Updated" date at the top • For material changes, we will send email notifications to registered users • We may display a prominent notice on our Service Your Continued Use: • Your continued use of the Service after changes become effective constitutes acceptance • If you do not agree with the updated Privacy Policy, you should stop using the Service • You may delete your account if you disagree with material changes Previous Versions: • We maintain records of previous versions of this Privacy Policy • You may request access to previous versions by contacting us Material Changes: Material changes may include: • Changes in how we collect or use personal information • Changes in data sharing practices • Changes in data retention policies • New uses of personal information not previously disclosed

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: General Inquiries: Email: privacy@humanizer.ai Website: www.humanizer.ai Response Time: We will respond within 48-72 business hours Data Protection Officer: Email: dpo@humanizer.ai For GDPR-related inquiries and rights requests Security Concerns: Email: security@humanizer.ai For reporting security vulnerabilities or data breaches Customer Support: Email: support@humanizer.ai For general service questions and account issues Mailing Address: Humanizer.ai [Your Company Address] [City, State, Postal Code] [Country] Supervisory Authority: If you are located in the EU/EEA, you have the right to lodge a complaint with your local data protection authority if you believe we have violated data protection laws. We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If you believe we have not adequately addressed your concerns, you have the right to contact the appropriate regulatory authority.

California Privacy Rights: California residents have additional rights under the California Consumer Privacy Act (CCPA): • We do not sell personal information • You have the right to opt out of sales (if applicable) • You have the right to non-discrimination for exercising privacy rights • You can designate an authorized agent to make requests on your behalf Nevada Privacy Rights: Nevada residents have the right to opt out of the sale of personal information. We do not sell personal information as defined under Nevada law. Data Breach Notification: In the event of a data breach that affects your personal information: • We will notify affected users within 72 hours of discovery • We will notify relevant regulatory authorities as required by law • We will take immediate steps to mitigate the breach • We will provide information about the breach and protective measures Automated Decision-Making: We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you. Links to Other Websites: Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to read their privacy policies. Service Providers: Our service providers are contractually bound to: • Process data only according to our instructions • Maintain appropriate security measures • Not use your data for their own purposes • Delete or return data when services end