PPrompt Save
Home
Sign up
Back to home

Privacy Policy

Last updated: April 27, 2026

This Privacy Policy explains how Prompt Save ("we", "us") collects, uses, and shares information when you use our website. We aim to keep this page in plain language. If anything is unclear, contact us before relying on it.

1. Information we collect

Account information

  • Email address — required to sign in and recover your account.
  • Username and display name — shown publicly on your profile and your prompts.
  • Avatar, cover image, bio, and social links — optional profile fields you choose to add.
  • Hashed password — only when you sign up locally; never stored or transmitted in plain text.
  • Google account identifier — when you sign in with Google, we receive your email and basic profile info from Google's OAuth response.

User-generated content

Prompts, collections, comments, follows, and saves you create. Public prompts and public collections are visible to anyone, including search engines and AI crawlers. Private prompts and saves are visible only to you.

Technical data

  • IP address, user agent, and request timestamps in server logs (security + abuse prevention).
  • Device storage we set in your browser: a session token (necessary), your language preference, and your cookie-consent choices.
  • A copy of your cookie-consent decision (the categories you accepted or rejected, plus a random per-browser identifier, your IP, and the user agent at the time) is also stored on our servers as an audit trail. We retain this so we can demonstrate, if asked by a regulator, that consent was actually given.
  • If you opt in to advertising cookies, Google AdSense receives standard ad-tech identifiers — see our Cookie Policy for details.

2. How we use your information

  • To operate the service: authentication, rendering your prompts, sending account emails.
  • To prevent abuse: rate-limiting, fraud detection, enforcing our Terms of Service.
  • To improve the product: understanding which features are used (only with your analytics consent).
  • To show ads: only if you opt in to the advertising category in our cookie banner.

3. How we share your information

We do not sell your personal data. We share data only with service providers we need to run the site:

  • Hosting — Vercel and Railway run the site infrastructure.
  • Authentication — Google when you choose Google sign-in.
  • Email — our SMTP provider for transactional emails.
  • Advertising — Google AdSense, only when you have opted in.

We may also disclose information if required by law or to protect rights, property, or safety.

4. Your rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal data, and to withdraw consent. To exercise any of these rights, contact us through the email listed on the About page. We will respond within 30 days.

5. Data retention

We keep account data while your account exists. When you delete your account, we remove your profile and private content; public prompts may persist if other users have saved or remixed them, with your username removed.

6. International transfers

Our servers are operated in the United States. By using the service from outside the US, you understand that your data is processed there.

7. Children

The service is not directed at children under 13. We do not knowingly collect personal data from children. If you believe we have, contact us and we will delete it.

8. Changes

We may update this policy. Material changes will be announced via in-app banner or email at least 14 days before they take effect.

9. Contact

Questions? See the About page for how to reach us.