Last Updated:
AnyGist ("we," "us," or "our") is deeply committed to protecting your privacy and handling your data transparently. This Privacy Policy details how we collect, use, process, and safeguard your information, especially your User Content, when you use our services ("Service").
1. Information We Collect and Process
We collect and process information in the following categories:
- 1.1 Identity and Account Data (Personal Data): Your name and email address that you provide when you register for an account or subscribe.
- 1.2 Financial and Transaction Data (Payment Data): We do not store your full payment card details. All financial transactions and compliance are handled by our third-party Merchant of Record, Paddle.
- 1.3 User Content (The Core Data): This includes the files, text, links, audio, and video content ("User Content") you upload or input for summarization, transcription, and generation.
- 1.4 Derivative Data (Usage and Metrics): Information our servers automatically collect when you access the Service, such as your IP address, browser type, device information, and usage statistics (word count, media minutes processed) for billing and quota management.
2. How and Why We Use Your Information
We process your data primarily based on Contractual Necessity (to provide the Service you paid for) and Legitimate Interest (to improve and secure the Service).
- Service Provision & Quota Management: To deliver the requested summaries, outputs, and track usage against your Subscription limits.
- Service Improvement: To monitor and analyze usage, and to improve our AI models using aggregated and anonymized User Content.
- Account Management: To process payments and send necessary service communications (invoices, renewal notices).
3. Sharing and Disclosure of Your Information (AI Subprocessors)
We do not share, sell, rent, or trade your Personal Data or User Content with third parties for their commercial purposes.
We may disclose information in the following situations:
- 3.1 Third-Party Subprocessors (AI Backend): We share User Content with our cloud computing and AI model providers (e.g., Google Cloud, Vertex AI) solely to perform the requested processing. These subprocessors are restricted from using your User Content for training their general models.
- 3.2 Payment Processor: We share necessary Identity and Financial Data with Paddle to process your payments and handle tax compliance.
- 3.3 Legal Obligations: To comply with the law, such as a court order, or to protect the rights, property, and safety of AnyGist or others.
4. Data Security and International Data Transfers
- 4.1 Security Measures: We implement administrative, technical, and physical security measures to protect your information.
- 4.2 Content Retention: User Content is retained only for the duration necessary to provide the service and retrieve stored outputs. If you delete your account, we will erase all copies of that User Content from our active systems within a reasonable timeframe.
- 4.3 International Transfers: Your data may be transferred outside of your country (e.g., to Google Cloud servers in the US). For users in the EU/UK, we rely on legally approved mechanisms, such as Standard Contractual Clauses (SCCs), to ensure your data receives an adequate level of protection.
5. Your Data Protection Rights
Depending on your location (including the EU, UK, and California), you may have the right to exercise the following regarding your Personal Data:
- Access and Portability: The right to request copies of your Personal Data.
- Erasure ("Right to be Forgotten"): The right to request the erasure of your Personal Data (available directly via your Account page).
- Restriction and Objection to Processing: The right to object to or request restrictions on how we process your data.
6. Contact Us
If you have questions or comments about this Privacy Policy, please contact us by submitting a ticket in our "Help Center".