Privacy Policy - Chrombyte

Account Information: Name, email address, password, and billing details provided during registration.

Brand Data: Logos, brand colors, website URLs, and existing social media profiles you choose to link.

Generated Content: All AI-generated posts, captions, images, and brand assets created through Chrombyte.

Technical Data: IP addresses, browser types, device information, and usage patterns collected via cookies and logs.

Third-Party Data: Information received if you log in via Google or link other third-party integrations.

Contractual Necessity: To provide the core AI generation services you've signed up for.

Consent: For marketing communications, which you can withdraw at any time.

Legitimate Interests: To improve our AI models, detect fraud, and ensure platform security.

Personalization: Tailoring AI outputs based on your provided brand context and previous interactions.

Essential Cookies: Necessary for secure login and session management.

Analytics Cookies: We use Google Analytics and similar tools to understand platform performance.

Preference Cookies: To remember your workspace settings and brand selections.

You can manage your cookie preferences through your browser settings at any time.

AI Providers: Your brand prompts are sent to providers like OpenAI and Anthropic for generation. We ensure they do not use your data to train their models without permission.

Payment Processing: Handled exclusively by Stripe; we never store your full credit card information.

Cloud Infrastructure: Our data is hosted on secure servers (e.g., AWS/Vercel) with strict access controls.

We never sell your personal or brand data to third-party data brokers.

We retain your data as long as your account is active or as needed to provide services.

Generated assets are stored permanently unless you choose to delete them or close your account.

Upon account deletion, all personal data is purged within 30 days, except where legally required for tax/audit purposes.

Access & Portability: Request a copy of all data we hold about you.

Rectification: Correct any inaccurate brand or personal information.

Erasure (Right to be Forgotten): Request the complete deletion of your account and data.

Opt-out of 'Sale': Chrombyte does not sell data, but we honor 'Do Not Track' signals.

California residents: You have specific rights under the CCPA/CPRA regarding data transparency.

Information may be transferred to and maintained on computers located outside of your state or country.

For users in the EU/UK, we use Standard Contractual Clauses (SCCs) to ensure data protection levels match GDPR standards.

Chrombyte is not intended for use by children under the age of 13 (or 16 in certain jurisdictions).

We do not knowingly collect personal data from minors. If discovered, such data is deleted immediately.