Privacy Policy for NoosAI

Last Updated: May 8th, 2025

1. Introduction

Welcome to NoosAI! This Privacy Policy explains how NoosAI ("we," "us," or "our") collects, uses, and discloses information about you when you use our Chrome browser extension ("Extension") and visit our website (`noosai.co.uk`) ("Website"). Your privacy is important to us. By using the Extension or Website, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect information in the following ways:

  • Information You Provide Directly:
    • License Key: If you purchase a premium subscription and activate it, you provide us with a license key via the Extension popup.
    • Payment Information: When you upgrade to premium via our Website, you provide payment information directly to our third-party payment processor (Stripe). We do not directly collect, store, or process your full payment card information. We receive limited information from Stripe, such as transaction confirmation, subscription status, your email address, and Stripe Customer ID.
    • Contact Information: If you contact us for support (e.g., via email at `[email protected]`), we collect your email address and the content of your communication.
  • Information Collected Automatically via the Extension:
    • Content for Analysis: When you trigger an analysis action (e.g., selecting text, using the right-click menu for sentiment, summarization, or keywords, or summarizing a page via the popup/menu), the relevant content (selected text snippet or the main content of the page) is sent securely over HTTPS to our backend service (hosted on Google Cloud Run) for processing via the Google Gemini API.
    • Extension Settings & Status: We use Chrome's synchronized storage (`chrome.storage.sync`) to save your preferences locally within your browser profile. This includes whether the extension is enabled/disabled, your animation preferences (`enableNegativeAnimation`, `enablePositiveAnimation`), your premium activation status (`isPremium`), and your free tier usage count (`totalFreeTierUsageCount`). This data may sync across your logged-in Chrome browsers but is primarily stored locally. The `isPremium` status may be checked against our backend during license verification.
    • Basic Usage Data (Non-Personal): We may collect anonymized, aggregated usage data (e.g., number of analyses performed per day across all users, types of errors encountered by the backend service) solely for the purpose of improving the Extension's performance, stability, and understanding feature usage. This data does not contain personal information or the content of the analyzed text.
  • Information Collected Automatically via the Website (`noosai.co.uk`):
    • Log Data: Like most websites, our hosting provider (Cloudflare Pages) may collect standard log information when you visit, including your IP address, browser type, operating system, referring URLs, pages visited, and timestamps, primarily for security and analytics.
    • Cookies: We may use essential cookies for basic website functionality or analytics cookies to understand website traffic.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and maintain the Extension's core functionality (processing selected text or page content for analysis, summarization, or keyword extraction upon your action).
  • To store your Extension settings and preferences locally.
  • To facilitate payment processing for premium upgrades via Stripe.
  • To communicate with you, primarily for support purposes and to send your license key upon purchase.
  • To monitor, analyze, and improve the Extension and Website performance and user experience (using anonymized data).
  • To maintain the security and integrity of our services.
  • To comply with legal obligations.

4. How We Share Your Information

We do not sell your personal information. We limit sharing to the following necessary circumstances:

  • Google (Gemini API): The content you submit for analysis (selected text or page content for summarization/keywords) is sent to Google's Gemini API for processing. Google's use of this data is subject to their API terms and privacy policies.
  • Google Cloud Platform (Hosting & Database): Our backend service, database (Firestore), and potentially website hosting run on GCP infrastructure. Google acts as a data processor.
  • SendGrid (Email Provider): Your email address and generated license key are shared with SendGrid solely to deliver the activation email upon purchase. Their use is governed by SendGrid's privacy policy.
  • Legal Requirements: We may disclose information if required by law or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, or to investigate fraud or respond to a government request.
  • Business Transfers: If NoosAI is involved in a merger, acquisition, or sale, user information may be transferred. We will provide notice before information is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement reasonable technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. This includes using HTTPS, securing API keys and credentials server-side (via Secret Manager), relying on reputable third parties (Stripe, Google Cloud), and verifying webhooks. However, no internet transmission or electronic storage is 100% secure.

6. Data Retention

  • Extension Settings: Data in `chrome.storage.sync` persists until you clear it or uninstall the extension.
  • Content for Analysis: We **do not** store the content sent for analysis (selected text or page content) on our backend servers after the analysis result is returned to your extension. Temporary processing logs may exist but are not intended for long-term storage of user content.
  • License & User Data: We retain license keys and associated subscription information (email, Stripe IDs, status) in our Firestore database for as long as your subscription is active and for a reasonable period afterward as necessary for business operations, support, and legal/financial compliance.
  • Support Communications: We may retain support emails.

7. Your Privacy Rights

Depending on your location (e.g., GDPR in Europe, CCPA in California), you may have rights regarding your personal information, including the right to access, correct, or request deletion. Please contact us at [email protected] with your request. We will respond in accordance with applicable law. For data held by third parties like Stripe or Google, please refer to their privacy policies.

8. Children's Privacy

Our Extension and Website are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to remove that information.

9. Changes to This Privacy Policy

We may update this Privacy Policy occasionally. We will notify you of significant changes by posting the new policy on our Website with an updated "Last Updated" date. Your continued use of the Extension or Website after changes constitutes your acceptance of the new policy.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: [email protected]