Legal

Privacy Policy

This page explains how ScriptorAI collects, uses, stores, shares, and protects personal information and related data when you use the Service.

Effective Date: 03/28/2026
Last Updated: 03/28/2026

Scope of This Privacy Policy

This Privacy Policy applies to personal information and other data collected by ScriptorAI in connection with:

  • our website;
  • our web application and user dashboards;
  • account registration and login functionality;
  • paid subscriptions, billing, and payment workflows;
  • manuscript, text, prompt, file, and content uploads;
  • AI-assisted analysis, writing, punctuation, editorial, and story-support features;
  • customer support, technical support, and user communications;
  • analytics, security, fraud prevention, and compliance activities.

This Privacy Policy does not apply to:

  • third-party websites, apps, or services that are not controlled by us;
  • payment processors and other third parties who process information under their own privacy notices;
  • information processed solely on behalf of enterprise customers under separate written agreements, to the extent those agreements control.

Information We Collect

We may collect the following categories of information.

Information You Provide Directly

We may collect information you provide directly to us, including:

  • your name, username, display name, or account identifier;
  • your email address;
  • login credentials or authentication-related information;
  • subscription and billing-related information;
  • support requests, feedback, and communications you send us;
  • any text, manuscripts, prompts, notes, files, documents, images, or other content you upload, submit, store, or transmit through the Service ("User Content");
  • preferences, settings, and account configuration choices;
  • information you provide when requesting refunds, support, or account changes.

Payment and Transaction Information

If you make a purchase, we and our third-party payment processor may collect transaction-related information, such as:

  • billing name and billing contact details;
  • payment method type;
  • transaction status;
  • limited payment metadata;
  • subscription status and billing history;
  • refund and chargeback records.

We do not intend to store full payment card numbers, CVV codes, or full sensitive payment credentials on our own systems unless explicitly stated otherwise. Payment card processing is typically handled by third-party processors such as Stripe or similar providers.

Information Collected Automatically

When you use the Service, we may automatically collect certain technical and usage information, including:

  • IP address;
  • device type and identifiers;
  • browser type, language, and settings;
  • operating system;
  • referring URLs and pages viewed;
  • access times, session duration, and usage logs;
  • clickstream and interaction data;
  • error logs, crash data, diagnostics, and performance data;
  • approximate geolocation derived from IP address;
  • cookie, local storage, and similar technology data.

AI Processing Data

Because ScriptorAI provides AI-assisted functionality, we may collect and process:

  • prompts you submit;
  • text selections or passages sent for analysis;
  • uploaded documents or extracted document text;
  • AI requests and outputs;
  • feedback signals such as whether a suggestion was accepted, rejected, modified, or ignored;
  • metadata associated with AI workflows, such as timestamps, processing events, model calls, and feature usage.

Information From Third Parties

We may receive information from third parties, including:

  • payment processors;
  • authentication providers or social login providers, if offered;
  • hosting, analytics, fraud prevention, and security vendors;
  • customer service or communication platforms;
  • advertising, referral, or attribution partners, if used;
  • law enforcement, regulators, courts, or other governmental authorities when legally required.

Information We Infer

We may generate or infer information based on your use of the Service, such as:

  • subscription eligibility or account standing;
  • likely feature preferences;
  • fraud or abuse risk indicators;
  • support priorities;
  • general usage patterns;
  • content-processing status and workflow metadata.

How We Use Information

We may use collected information for the following purposes:

To Provide and Operate the Service

  • create and manage accounts;
  • authenticate users;
  • provide paid and free features;
  • process uploads and generate outputs;
  • store and display user content;
  • maintain subscriptions and billing records;
  • enable customer service and account support.

To Process Payments and Refunds

  • process purchases and subscription renewals;
  • administer refunds under our 14-day refund policy;
  • manage billing issues, failed payments, disputes, and chargebacks;
  • maintain transaction records for accounting and compliance.

To Deliver AI-Assisted Features

  • analyze uploaded or submitted content;
  • generate writing suggestions, punctuation changes, structural observations, unresolved-thread analysis, editorial comments, and related outputs;
  • improve relevance, safety, and usability of model-assisted features;
  • maintain logs needed to troubleshoot AI behavior and feature performance.

To Improve, Monitor, and Secure the Service

  • debug, test, and improve the Service;
  • analyze usage and feature performance;
  • detect outages, bugs, and failures;
  • protect against fraud, abuse, unauthorized access, spam, scraping, and malicious activity;
  • enforce our Terms of Service and other policies.

To Communicate With You

  • send service notices, support replies, confirmations, receipts, billing notices, security alerts, and policy updates;
  • respond to support requests and user inquiries;
  • communicate about account changes, subscription status, and service functionality.

To Comply With Legal Obligations

  • comply with applicable laws, regulations, legal processes, and court orders;
  • maintain required business and tax records;
  • respond to lawful governmental requests;
  • exercise or defend legal claims.

For Business Operations

  • audits, compliance reviews, and recordkeeping;
  • internal reporting and forecasting;
  • corporate transactions, financing, restructuring, mergers, acquisitions, or asset sales;
  • business continuity and disaster recovery activities.

If and to the extent applicable data protection laws require a legal basis for processing, we may rely on one or more of the following bases:

  • Contract: processing is necessary to provide the Service you requested, including account administration, billing, and feature delivery;
  • Legitimate Interests: processing is necessary for our legitimate interests, such as service improvement, analytics, security, fraud prevention, support, and business operations, where those interests are not overridden by your rights;
  • Consent: where required by law, we rely on your consent for certain processing activities;
  • Legal Obligation: processing is necessary to comply with law, regulation, legal process, or governmental request;
  • Protection of Rights and Safety: processing is necessary to protect rights, property, safety, and security of users, the public, ScriptorAI, and related parties.

Cookies and Similar Technologies

We may use cookies, pixels, local storage, session tokens, software development kits, and similar technologies to operate and improve the Service.

Types of Technologies We May Use

  • essential cookies required for login, security, session management, and core site operation;
  • preference cookies that remember settings and user choices;
  • analytics technologies that help us understand traffic and feature usage;
  • fraud prevention and security technologies;
  • marketing or attribution technologies, if used.

How We Use These Technologies

  • keep you signed in;
  • remember preferences;
  • measure site performance and engagement;
  • diagnose issues;
  • prevent abuse and unauthorized access;
  • understand referral sources and campaign performance, if applicable.

Your Choices

Most browsers allow you to control cookies through browser settings. Blocking certain cookies may affect the functionality of the Service. If required by law, we may also provide additional cookie choices or consent tools.

When We Share Information

We do not sell your personal information in exchange for money in the ordinary sense unless we clearly state otherwise. However, we may share information in the following circumstances.

Service Providers and Vendors

We may share information with vendors and service providers that perform services on our behalf, such as:

  • payment processors;
  • cloud hosting providers;
  • storage providers;
  • analytics providers;
  • email and communications vendors;
  • customer support platforms;
  • security, logging, and fraud prevention providers;
  • AI model providers or infrastructure vendors that assist in processing content and generating outputs.

These parties may access information only as reasonably necessary to perform services for us, subject to contractual, technical, or legal restrictions as applicable.

Payment Processing Partners

When you make a purchase, relevant information may be shared with our payment processor to process payment, detect fraud, issue refunds, and maintain transaction records.

Legal and Compliance Disclosures

We may disclose information if we believe in good faith that disclosure is reasonably necessary to:

  • comply with law, regulation, subpoena, court order, or other legal process;
  • respond to requests from public authorities;
  • enforce our agreements and policies;
  • detect, investigate, or prevent fraud, abuse, security issues, or illegal activity;
  • protect the rights, property, safety, and security of ScriptorAI, users, third parties, or the public.

Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, dissolution, sale of company assets, or other corporate transaction, information may be disclosed, transferred, or assigned as part of that process, subject to applicable law.

With Your Direction or Consent

We may share information with third parties when you direct us to do so or otherwise consent.

Aggregated or De-Identified Information

We may use and share aggregated, anonymized, or de-identified information that does not reasonably identify you, subject to applicable law.

AI Models, Content Processing, and Training

Because ScriptorAI relies on AI-assisted functionality, we may process submitted content through internal systems and third-party AI infrastructure providers.

Content Processing

When you upload or submit text, prompts, manuscripts, or files, we may:

  • store them;
  • extract text from them;
  • process them through automated systems;
  • send relevant portions to AI systems or service providers to generate outputs;
  • log the request, output, and related technical metadata for service delivery, security, debugging, and performance monitoring.

Human Review

We may allow limited human access to certain information where reasonably necessary for:

  • technical support;
  • abuse prevention;
  • bug diagnosis;
  • legal compliance;
  • security investigations;
  • service quality review.

Such access will be limited to authorized personnel or service providers with a need to know, subject to applicable confidentiality obligations.

Training and Improvement

Unless we expressly state otherwise in a product setting, separate agreement, or updated policy, we may use submitted content, prompts, outputs, logs, usage patterns, and related metadata to improve, test, develop, monitor, and refine the Service, including safety systems, quality assurance, and feature performance.

If you do not use customer content for model training or service improvement beyond immediate service delivery, you should revise this section before publishing.

User Responsibility for Submitted Content

You are responsible for ensuring that you have the rights and permissions needed to upload or submit content to the Service and that your use of the Service complies with applicable law.

Data Retention

We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention periods may depend on:

  • whether the information is needed to provide the Service;
  • account status and subscription status;
  • billing, accounting, tax, and refund obligations;
  • security, fraud prevention, and abuse monitoring needs;
  • backup, disaster recovery, and system integrity needs;
  • legal obligations and dispute resolution requirements.

We may retain some information after account deletion for limited purposes such as legal compliance, fraud prevention, enforcing agreements, tax recordkeeping, resolving disputes, backup integrity, and security logging.

Data Security

We use reasonable administrative, technical, and organizational measures intended to protect information against unauthorized access, loss, misuse, alteration, or destruction.

Security measures may include, where appropriate:

  • access controls;
  • encryption in transit;
  • secure authentication workflows;
  • logging and monitoring;
  • least-privilege access practices;
  • vendor controls;
  • backup and recovery procedures.

However, no method of internet transmission, electronic storage, or security control is completely secure. Accordingly, we cannot guarantee absolute security.

You are responsible for safeguarding your account credentials and for using secure devices and networks when accessing the Service.

International Data Transfers

ScriptorAI may process and store information in the United States and in other countries where we or our service providers operate. These jurisdictions may have data protection laws that differ from those in your jurisdiction.

By using the Service, and where permitted by law, you acknowledge that information may be transferred to, processed in, and stored in countries outside your jurisdiction.

If required by applicable law, we may use appropriate transfer mechanisms for international data transfers.

Your Rights and Choices

Depending on where you live and subject to applicable law, you may have certain rights regarding your personal information.

These may include the right to:

  • access personal information we hold about you;
  • request correction of inaccurate information;
  • request deletion of certain information;
  • object to or restrict certain processing;
  • withdraw consent where processing is based on consent;
  • request portability of certain information;
  • appeal certain privacy decisions where applicable;
  • opt out of certain advertising- or sharing-related activities where required by law.

You may also have choices to:

  • update account information through your account settings;
  • cancel your subscription;
  • request deletion of your account;
  • manage cookies through browser settings;
  • unsubscribe from non-essential marketing emails, if any are sent.

We may need to verify your identity before processing certain requests. We may also deny requests where permitted by law, including where requests are excessive, repetitive, technically infeasible, would impair others' rights, or conflict with legal obligations.

To exercise rights, contact us at contact@scriptorai.co.

U.S. State Privacy Rights

Depending on your U.S. state of residence, you may have specific privacy rights under applicable state privacy laws.

Subject to those laws and any applicable exemptions, you may have rights to:

  • know what categories of personal information we collect;
  • know the purposes for which personal information is used;
  • know what categories of third parties receive personal information;
  • access specific pieces of personal information;
  • request deletion or correction;
  • opt out of certain targeted advertising, profiling, or sales/sharing definitions as provided by law;
  • not be discriminated against for exercising privacy rights.

Because privacy laws vary and continue to evolve, this section should be reviewed periodically and updated as needed to reflect actual data practices and legal requirements.

Children's Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13 without legally valid authorization. If you believe a child has provided personal information to us in violation of applicable law, contact us and we will take appropriate steps.

If your Terms of Service prohibit use by anyone under 18, this Privacy Policy should remain consistent with those Terms.

The Service may contain links to third-party websites, plugins, payment pages, login providers, or other services. We are not responsible for the privacy, security, or data handling practices of third parties. Their practices are governed by their own notices and policies.

You should review third-party privacy policies before providing information to them.

Do Not Track and Similar Signals

Some web browsers may transmit "Do Not Track" or similar preference signals. Because there is not always a consistent industry standard for interpreting these signals, we may not respond to them except as required by law.

If applicable law requires us to honor a recognized opt-out preference signal, we may do so to the extent required.

Data Accuracy and User Responsibility

You are responsible for ensuring that the information you provide to us is accurate and up to date. We are not responsible for issues resulting from inaccurate, outdated, or incomplete information you submit.

Account Deletion

You may request deletion of your account by contacting us or using any account deletion functionality we make available.

Deleting your account may result in deletion or deactivation of:

  • your login access;
  • stored user content;
  • saved settings;
  • subscription-related access;
  • AI history or output history;
  • other account-associated data.

However, we may retain certain information after deletion where reasonably necessary for legal compliance, recordkeeping, fraud prevention, security, dispute resolution, tax obligations, backup integrity, or enforcement of our agreements.

Security Incidents and Breach Response

We take security seriously, but no system is immune from risk. In the event of a security incident, we may investigate, contain, remediate, and notify affected individuals, regulators, or authorities as required by law and as appropriate under the circumstances.

Nothing in this Privacy Policy constitutes a guarantee that unauthorized access, data loss, or other security incidents will never occur.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we may revise the "Last Updated" date above and, where required by law, provide additional notice.

Unless otherwise required by law, the updated Privacy Policy becomes effective when posted. Your continued use of the Service after the effective date of an updated Privacy Policy constitutes your acknowledgment of the updated policy.

Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our privacy practices, you may contact us at:
Email: contact@scriptorai.co
Website: scriptorai.co

Plain-English Summary (Non-Binding)

This summary is for convenience only and does not replace the full Privacy Policy above.

  • We collect account, billing, usage, technical, and content-submission information.
  • We use that information to run ScriptorAI, process payments, provide AI features, improve the service, and protect the platform.
  • We may share information with vendors like hosting, payments, analytics, support, security, and AI infrastructure providers.
  • We keep information for as long as reasonably necessary, not forever by default.
  • You may have rights to access, correct, delete, or request information depending on where you live.
  • We use reasonable security measures, but no system is perfectly secure.
  • You should review and customize the sections about AI training, vendors, retention, and state-law rights before publishing.

By using ScriptorAI, you acknowledge that you have read and understood this Privacy Policy.