Privacy Policy
Last updated: 2026-02-23
1. Information We Collect
We collect the following information:
Required Information
- Email address (for authentication and communication)
- IP address and access logs (for security and service operation)
Optional Information
- Display name and avatar (profile customization)
- Google AI API key (encrypted storage for BYOK features)
- Social media links (public profile)
2. Purpose of Use
We use collected information for:
- Providing and maintaining the Service
- User authentication and account management
- Service improvement and analytics
- Communication regarding service updates
3. Third-Party Disclosure
We do not sell or share your personal information with third parties except as required by law.
4. External Services
The Service integrates with the following external services:
- Supabase — Authentication, database, and file storage
- Vercel — Hosting and deployment
- Google LLC — Gemini and Imagen AI services (BYOK, your API key is used directly)
- Postmark — Transactional email delivery
5. Data Retention
We retain data according to the following schedule:
- Account information: Duration of service + 30 days after account deletion
- API keys: Deleted immediately upon account deletion or key removal
- Access logs: 3 months
6. Data Deletion
Data is automatically deleted after the retention period expires. Users may request immediate deletion of their data by contacting us.
7. Cookies
We use the following types of cookies:
- Essential cookies: Authentication and security
- Functional cookies: Theme preference, language selection
- We do not use analytics or advertising cookies
8. Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion of your data
- Export your data
9. Security Measures
We implement the following security measures:
- AES-256-GCM encryption for API keys
- HTTPS for all data transmission
- Magic Link passwordless authentication
- Row Level Security (RLS) for database access
10. GDPR (EU/EEA Residents)
If you are located in the EU/EEA, you have additional rights under GDPR including the right to data portability, the right to restrict processing, and the right to object to processing. To exercise these rights, contact us at support@pour.ink.
11. Contact
For privacy-related inquiries, please contact us at support@pour.ink.
12. Policy Updates
We may update this Privacy Policy from time to time. Changes will be announced through the Service. Continued use of the Service after changes constitutes acceptance of the updated policy.