Privacy Policy for NoosAI

Last Updated: May 8th, 2025

1. Introduction

Welcome to NoosAI! This Privacy Policy explains how NoosAI ("we," "us," or "our") collects, uses, and discloses information about you when you use our Chrome browser extension ("Extension") and visit our website (`noosai.co.uk`) ("Website"). Your privacy is important to us. By using the Extension or Website, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect information in the following ways:

  • Information You Provide Directly:
    • License Key: If you purchase a premium subscription and activate it, you provide us with a license key via the Extension popup.
    • Integration Keys: If you use integrations like "Send to Notion," you provide your Notion API Key and Page ID in the Extension's options page. These are stored locally in your browser's synchronized storage.
    • Custom Personas: If you create custom personas, the name and prompt instructions you provide are stored locally in your browser's synchronized storage.
    • Payment Information: When you upgrade to premium via our Website, you provide payment information directly to our third-party payment processor (Stripe). We do not directly collect, store, or process your full payment card information. We receive limited information from Stripe, such as transaction confirmation, subscription status, your email address, and Stripe Customer ID.
    • Contact Information: If you contact us for support (e.g., via email at `[email protected]`), we collect your email address and the content of your communication.
  • Information Collected Automatically via the Extension:
    • Content for Analysis: When you trigger an analysis action (e.g., Explain, Summarize, AI Search, etc.), the relevant content (selected text, page content, or follow-up prompts) is sent securely over HTTPS to our backend service for processing via the Google Gemini API.
    • Extension Settings & Status: We use Chrome's synchronized storage (`chrome.storage.sync`) to save your preferences locally within your browser profile. This includes your extension settings, premium status, custom personas, and integration keys. This data may sync across your logged-in Chrome browsers but is primarily stored locally.
    • Basic Usage Data (Non-Personal): We may collect anonymized, aggregated usage data (e.g., number of analyses performed per day across all users, types of errors encountered by the backend service) solely for the purpose of improving the Extension's performance, stability, and understanding feature usage. This data does not contain personal information or the content of the analyzed text.
  • Information Collected Automatically via the Website (`noosai.co.uk`):
    • Log Data: Like most websites, our hosting provider (Cloudflare Pages) may collect standard log information when you visit, including your IP address, browser type, operating system, referring URLs, pages visited, and timestamps, primarily for security and analytics.
    • Cookies: We may use essential cookies for basic website functionality or analytics cookies to understand website traffic.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and maintain the Extension's core functionality (processing text for analysis, summarization, search, etc.).
  • To store your Extension settings and preferences locally.
  • To facilitate payment processing for premium upgrades via Stripe.
  • To communicate with you, primarily for support purposes and to send your license key upon purchase.
  • To monitor, analyze, and improve the Extension and Website performance and user experience (using anonymized data).
  • To maintain the security and integrity of our services.
  • To comply with legal obligations.

4. How We Share Your Information

We do not sell your personal information. We limit sharing to the following necessary circumstances:

  • Google (Gemini API): The content you submit for analysis (selected text or page content for summarization/keywords) is sent to Google's Gemini API for processing. Google's use of this data is subject to their API terms and privacy policies.
  • Notion (API): If you use the "Send to Notion" feature, the generated content and your API key are sent directly from your browser to Notion's API to create the page. We do not process this information on our backend.
  • Google Cloud Platform (Hosting & Database): Our backend service, database (Firestore), and website hosting run on GCP infrastructure. Google acts as a data processor.
  • SendGrid (Email Provider): Your email address and generated license key are shared with SendGrid solely to deliver the activation email upon purchase. Their use is governed by SendGrid's privacy policy.
  • Legal Requirements: We may disclose information if required by law or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, or to investigate fraud or respond to a government request.
  • Business Transfers: If NoosAI is involved in a merger, acquisition, or sale, user information may be transferred. We will provide notice before information is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement reasonable technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. This includes using HTTPS, securing API keys and credentials server-side (via Secret Manager), relying on reputable third parties (Stripe, Google Cloud), and verifying webhooks. However, no internet transmission or electronic storage is 100% secure.

6. Data Retention

  • Extension Settings: Data in `chrome.storage.sync` persists until you clear it or uninstall the extension.
  • Content for Analysis: We **do not** store the content sent for analysis (selected text for explanation, simplification, AI search, sentiment, summarization, keywords, or page content for summarization) on our backend servers after the analysis result is returned to your extension. Temporary processing logs may exist but are not intended for long-term storage of user content.
  • License & User Data: We retain license keys and associated subscription information (email, Stripe IDs, status) in our Firestore database for as long as your subscription is active and for a reasonable period afterward as necessary for business operations, support, and legal/financial compliance.
  • Support Communications: We may retain support emails.

7. Your Privacy Rights

Depending on your location (e.g., GDPR in Europe, CCPA in California), you may have rights regarding your personal information, including the right to access, correct, or request deletion. Please contact us at [email protected] with your request. We will respond in accordance with applicable law. For data held by third parties like Stripe or Google, please refer to their privacy policies.

8. Children's Privacy

Our Extension and Website are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to remove that information.

9. Changes to This Privacy Policy

We may update this Privacy Policy occasionally. We will notify you of significant changes by posting the new policy on our Website with an updated "Last Updated" date. Your continued use of the Extension or Website after changes constitutes your acceptance of the new policy.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: [email protected]