Privacy Policy

1. Who We Are

Smartsnip is a software application that enables users to interact with AI models locally and via cloud services. When we refer to "we" or "us" in this Policy, we are referring to the Smartsnip development team. For the purposes of data protection law, we act as the "data controller" of your personal data (meaning we determine how and why your personal data is processed) when you use our Service. If you have any questions about this Policy or your data, you can reach us at hi.smartsnip@gmail.com.

2. Information We Collect

We aim to collect only the information that is necessary to provide and improve our Service for you. Broadly, the categories of information we collect are:

• Account Information (like your email address and authentication credentials)
• Usage Data (like how many requests you make, to enforce plan limits, and analytics data about your use of the app or website)
• Payment and Subscription Information (for paid users, via our payment processor)
• User Content (the data you choose to input into the Service, which we largely do not store, as explained below)
• Cookies and Similar Technologies (small data files stored on your device, which we use sparingly for specific purposes)

2.1 Account Information

When you register for a Smartsnip account, we collect:

• Email Address: We require a valid email address to create an account. This acts as your login identifier and is our primary means of communicating with you for account-related matters.
• Authentication Data: If you create an account with a password, we will store a hashed (encrypted) version of your password via our authentication provider (Firebase). We do not store passwords in plain text.
• User ID: Firebase assigns a unique user ID to your account, which we use internally to reference your data.

Google reCAPTCHA: During sign-up we employ Google reCAPTCHA to deter automated ("bot") account creation. reCAPTCHA collects hardware- and browser-related information to evaluate whether the interaction is human. This data is transmitted directly to Google for analysis; Smartsnip only receives a pass/fail token and does not see the raw reCAPTCHA data.

2.2 Usage Data and Analytics

We collect certain information about how you use Smartsnip:

• Cloud Usage Metrics: We track the number of requests or "credits" you consume when using cloud-based AI models to ensure you stay within the quota of your plan.
• Feature Usage: We might collect aggregated data on which features are used how often to help us improve the Service.
• Analytics Data: We use Firebase Analytics to collect anonymized or pseudonymized analytics data about app usage, including device information, app version, region, and engagement information.
• Log Information: Our servers may automatically record certain information in server logs when you use our website, including web requests, IP address, browser type, and timestamps.

2.3 Payment and Subscription Information

For users who choose to subscribe to a paid plan:

• Subscription Status: We keep a record of your subscription plan and its status, as well as your start and renewal dates.
• Stripe Customer ID: When you subscribe, Stripe creates a customer profile for you. We store a reference to that in our database.
• Payment Details: We do not collect or store your full credit card number or bank account details. Payment processing is handled by Stripe.
• Transactions and Invoices: Stripe provides us with records of your payments for customer service and accounting purposes.

2.4 User Content (Queries, Snips, and AI Interactions)

Ephemeral Server Processing & Local Retention: When you interact with AI models through Smartsnip, we transmit your prompt to the selected model only for the duration of that request, after which we discard it. Separately, the Smartsnip app stores a copy of each screenshot you capture and the full chat transcript locally on your own device so you can review previous sessions offline. These local copies never leave your device and are not accessible to Smartsnip.

Third-Party Model Providers: When your User Content is sent to third-party AI providers, those providers may store your data or logs on their end. Smartsnip does not control the data retention policies of these external services.

2.5 Cookies and Similar Technologies

We use a very limited number of cookies on our website and within the app's web content:

• Localization Cookie: To remember your selected country or currency preferences.
• CSRF Token Cookie: For security measures to protect forms from Cross-Site Request Forgery attacks.
• Analytics Cookies: Firebase/Google Analytics may set cookies to collect analytics data.
• reCAPTCHA Cookies: Google reCAPTCHA may set cookies for security purposes during account creation.

3. How We Use Your Information

We use the collected information for the following purposes:

• To Provide the Service: Using your information to operate Smartsnip and provide its features to you.
• To Maintain and Improve the Service: Analyzing usage data and feedback to understand how Smartsnip is performing and where improvements are needed.
• To Enforce Usage Limits and Fair Use: Using usage metrics to enforce the monthly limits of your plan and prevent abuse.
• To Process Payments and Manage Subscriptions: Managing billing and subscription-related communications.
• Customer Support and Communication: Providing support and sending service-related communications.
• Security and Fraud Prevention: Monitoring for and preventing fraud, abuse, or security breaches.
• Compliance with Legal Obligations: Processing and retaining certain data to comply with applicable laws and regulations.
• Aggregated Insights: Using data in an aggregated, anonymized form for business analysis.

4. How We Share or Disclose Information

We do not sell your information to third parties. We only share information in the following circumstances:

4.1 Service Providers and Partners

We share some information with third-party service providers who perform services on our behalf, such as:

• Hosting and Infrastructure: We use Firebase (a Google Cloud service) for data storage and authentication.
• Payment Processor (Stripe): Stripe handles payments and we share necessary billing information with them.
• Analytics (Google/Firebase Analytics): Google collects analytics data on our behalf.
• Email Service: If we use an email service provider to send account-related emails.
• Software Update Service: Sparkle retrieves updates from our server for macOS updates.
• Google reCAPTCHA (Security): We use Google reCAPTCHA to protect our sign-up form from automated abuse.

4.2 Third-Party AI Model Providers

When you use cloud-based AI models, we share the content of your queries with third-party AI services via the OpenRouter API. These third-party AI providers will process your data to generate the answer and may also log or retain that data under their own terms.

4.3 Business Transactions

If Smartsnip or its assets are involved in a merger, acquisition, or other business transaction, your information may be transferred as part of that transaction.

5. Data Retention

Account Data Retention: We retain your personal data for as long as your account is active and as needed to provide you the Service.

Deletion Upon Account Closure: If you choose to delete your Smartsnip account, we will promptly delete or anonymize the personal data associated with your account.

Retention for Legal Obligations: Even after account deletion, we may retain certain information if necessary for legal compliance or legitimate business interests.

6. Data Security

We take the security of your data seriously and employ various measures to protect it:

• Encryption: All communication is encrypted using TLS (HTTPS), and our databases are encrypted at rest.
• Access Controls: Access to our backend systems is restricted to authorized personnel.
• Password Protection: User passwords are never stored in plaintext; we use Firebase Auth with industry best practices.
• Vulnerability Management: We keep our software and dependencies up to date with security patches.
• Testing and Least Privilege: We test our application for security issues and follow the principle of least privilege.
• Physical Security: Our data is stored in cloud services with enterprise-grade physical security measures.
• Employee and Contractor Training: Team members who handle personal data are briefed on confidentiality and data protection practices.

7. International Data Transfers

Your information may be transferred to and processed in countries other than the country in which you reside. We ensure appropriate safeguards are in place for international transfers, including adequacy decisions, Standard Contractual Clauses, and additional technical measures.

8. Your Rights and Choices

As a user of Smartsnip, you have certain rights regarding your personal data:

• Right to Access: You can request confirmation of whether we are processing your personal data and obtain a copy of it.
• Right to Rectification: You can request that we correct or update inaccurate or incomplete personal data.
• Right to Erasure: You can request deletion of your personal data by deleting your account.
• Right to Restrict Processing: In certain circumstances, you can ask us to restrict processing of your data.
• Right to Data Portability: You can obtain your personal data in a machine-readable format.
• Right to Object: You can object to our processing of your personal data in certain situations.
• Right to Withdraw Consent: Where we rely on your consent, you can withdraw it at any time.
• Right to Lodge a Complaint: You can file a complaint with a supervisory authority if you believe our processing infringes data protection laws.

9. Children's Privacy

Smartsnip is not intended for use by children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are between 13 and the age of legal majority in your jurisdiction, you should only use Smartsnip under the supervision of a parent or guardian and with their consent.

10. Third-Party Links and Services

The Smartsnip website or documentation may contain links to third-party websites or services. This Privacy Policy does not apply to third-party websites or services. We encourage you to review the privacy policies of any third-party sites or services before providing any information to them.

11. Changes to This Privacy Policy

We may update or modify this Privacy Policy from time to time. If we make material changes to how we handle your personal data, we will provide you with notice in advance of the change by appropriate means. Please review this Privacy Policy periodically to stay informed about how we are protecting your information.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

We will do our best to respond promptly and address your inquiry. Thank you for reading our Privacy Policy. We are committed to protecting your privacy and ensuring that Smartsnip is a service you can use with confidence.