Privacy Policy

1. Introduction

Avoid.so ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered text humanization service.

By using our Service, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, name, and password (for email registration) or profile information from Google OAuth
• Payment Information: Processed securely through Stripe (we do not store credit card details)
• Content Data: Text you submit for processing and the humanized results (stored securely and accessible only by you)
• Communication Data: Information from support requests or feedback

2.2 Information Automatically Collected

• Usage Data: Credits consumed, processing history, feature usage patterns
• Device Information: Browser type, operating system, IP address
• Cookies and Similar Technologies: Session cookies, authentication tokens, preferences
• Analytics Data: Page views, click patterns, performance metrics

3. How We Use Your Information

We use collected information for the following purposes:

• Provide and maintain our text humanization service
• Process payments and manage subscriptions through Stripe
• Track and manage your credit usage and quotas
• Send service-related communications (account updates, billing notices)
• Improve service quality and develop new features
• Detect and prevent fraud or abuse
• Comply with legal obligations
• Analyze usage patterns to optimize performance

4. Data Processing and Storage

Data Retention: We retain account information and your processed content for as long as your account is active. Your humanized text history remains accessible to you for reference and reuse. Transaction records are retained for tax and legal compliance purposes (typically 7 years). Upon account deletion, your processed content is permanently removed from our systems within 30 days.

Data Security: We implement industry-standard security measures including:

• SSL/TLS encryption for data in transit
• Encrypted database storage
• Secure password hashing (bcrypt) for email/password accounts
• Regular security audits and updates
• Access controls and authentication
• Secure API endpoints with rate limiting

5. Third-Party Services

We integrate with the following third-party services:

5.1 Stripe (Payment Processing)

We use Stripe, Inc. to process all payments. When you make a purchase, your payment information is transmitted directly to Stripe and is subject to Stripe's Privacy Policy (https://stripe.com/privacy). We do not store credit card numbers or other sensitive payment details.

5.2 Authentication Services

We offer two authentication methods: email/password registration and Google OAuth. For email registration, passwords are securely hashed using industry-standard encryption before storage. When you sign in with Google OAuth, we receive your basic profile information (name, email, profile picture) as authorized by you. We never store or have access to your Google password.

5.3 AI Processing Technology

We use proprietary AI models fine-tuned from OpenAI's base technology for text processing. Your content is processed through our custom-trained models to ensure optimal humanization results. Content submitted through our service is not used for training OpenAI's models.

5.4 Resend

We use Resend for transactional email delivery (account notifications, receipts). Your email address is shared with Resend solely for email delivery purposes.

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share your information only in the following circumstances:

• Service Providers: With third-party services necessary for operations (as listed above)
• Legal Requirements: When required by law, court order, or government request
• Protection of Rights: To protect our rights, property, or safety, or that of our users
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Consent: With your explicit consent for specific purposes

7. Your Rights and Choices

7.1 Access and Control

You have the right to:

• Access your personal information
• Correct inaccurate data
• Request deletion of your account and associated data
• Export your usage history
• Opt-out of marketing communications

7.2 Account Deletion

You can request account deletion by contacting [email protected]. Upon deletion, we will remove your personal information except for data we must retain for legal or legitimate business purposes.

8. Cookies and Tracking Technologies

We use cookies and similar technologies for:

• Essential Cookies: Required for authentication and core functionality
• Performance Cookies: To analyze usage and improve service performance
• Preference Cookies: To remember your settings and preferences

You can manage cookie preferences through your browser settings. Disabling essential cookies may impact service functionality.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Children's Privacy

Our Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal information, we will delete such information from our systems.

11. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA), including:

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to refuse the sale of personal information
• Right to access personal information
• Right to request deletion of personal information
• Right to non-discrimination for exercising privacy rights

To exercise these rights, please contact us at [email protected].

12. GDPR Compliance (European Users)

For users in the European Economic Area (EEA), we process personal data based on the following legal bases:

• Contract: To provide services you've requested
• Legitimate Interests: To improve our services and prevent fraud
• Legal Obligation: To comply with applicable laws
• Consent: For marketing communications and optional features

You have the right to data portability, to object to processing, and to lodge a complaint with your local data protection authority.

13. Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify you via email within 72 hours of becoming aware of the breach, as required by applicable laws.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through prominent notice on our Service. The “Last Updated” date at the top of this policy indicates when it was last revised.

15. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

General Inquiries: [email protected]
Privacy Concerns: [email protected]
Data Protection Officer: [email protected]
Website: https://www.avoid.so