Privacy Policy

Last updated: March 2026

1. Information We Collect

We collect information you give us directly, plus some information automatically when you use the Service.

Information You Provide

  • Account information: name, email address, password, and optional profile details
  • Payment information: billing address and payment method details (handled securely by our payment processor)
  • User content: data, text, files, and other materials you submit through the Service
  • Communications: anything you share when contacting support or responding to surveys

Information Collected Automatically

  • Usage data: features you access, actions you take, timestamps, and session length
  • Device information: browser type, operating system, device identifiers, and screen resolution
  • Log data: IP address, referring URLs, pages visited, and error logs
  • Cookies and similar technologies: described in our Cookie Policy

2. How We Use Your Information

We use the information we collect to:

  • Run, maintain, and improve the Service
  • Process transactions and manage your account
  • Send transactional messages like account confirmations and security alerts
  • Provide customer support and answer your questions
  • Understand how people use the product so we can make it better
  • Detect, prevent, and deal with fraud, abuse, and security problems
  • Meet legal obligations and enforce our Terms of Service

3. AI Training Data Policy

We do not use your data to train AI models. This is a core commitment at Polymorf.

More specifically:

  • Your content, prompts, inputs, and outputs are never used to train, fine-tune, or improve any AI or machine learning models
  • Your data is only processed to deliver the Service you asked for
  • We don't share your content with third-party AI providers for training
  • We may use anonymized, aggregated usage statistics (not your content) to improve platform performance and reliability

4. Data Storage and Security

We use industry-standard security measures to protect your personal information:

  • Encryption in transit (TLS 1.3) and at rest (AES-256)
  • Regular security audits and vulnerability assessments
  • Access controls and authentication on all internal systems
  • Secure data centers with physical security protections

No system is perfectly secure. We can't guarantee absolute security, but we will act quickly on any security incident we discover.

5. Third-Party Services

We share limited information with trusted service providers who help us run the Service:

  • Cloud infrastructure: hosting and data storage
  • Payment processors: billing and transactions
  • Analytics providers: understanding usage patterns (anonymized data only)
  • Communication services: sending emails and notifications

These providers are contractually required to protect your information and can only use it for the specific tasks we hire them for.

6. Cookies

We use cookies and similar technologies to improve your experience. For the full details on what cookies we use and how to manage them, see our Cookie Policy.

7. Your Rights

Under GDPR (European Economic Area)

If you're in the EEA, you have the right to:

  • Access: request a copy of your personal data
  • Rectification: ask us to fix inaccurate data
  • Erasure: ask us to delete your personal data
  • Restriction: ask us to limit how we process your data
  • Portability: get your data in a structured, machine-readable format
  • Objection: object to processing based on legitimate interests

Under CCPA (California)

If you're a California resident, you have the right to:

  • Know what personal information we collect and how we use it
  • Request deletion of your personal information
  • Opt out of the sale of personal information (we don't sell it)
  • Not be discriminated against for exercising your privacy rights

To exercise any of these rights, email us at hello@polymorf.me. We'll respond within the timeframe required by law.

8. Data Retention

We keep your personal information as long as your account is active or as needed to provide the Service. After you delete your account, we may hold onto certain data for a limited time if required by law or for legitimate business reasons, such as:

  • Legal, tax, or accounting obligations
  • Resolving disputes and enforcing agreements
  • Preventing fraud and abuse

Anonymized, aggregated data that can't identify you may be kept indefinitely for analytics.

9. Children's Privacy

The Service is not for anyone under 16. We don't knowingly collect personal information from children under 16. If we find out we have, we'll delete it promptly. If you think a child under 16 has given us their information, please let us know at hello@polymorf.me.

10. International Transfers

Your information may be transferred to and processed in countries outside your own, including the United States, where our servers and offices are located. These countries may have different data protection laws than yours.

Where required, we put appropriate safeguards in place, including Standard Contractual Clauses approved by the European Commission, to protect your data during international transfers.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or the law. When we do, we'll post the updated version here and change the "Last updated" date. For significant changes, we may also notify you by email.

We recommend checking this page from time to time.

12. Contact

Questions about this Privacy Policy or how we handle your data? Reach out:

Polymorf Labs, Inc.

444 Castro Street, Suite 200
Mountain View, CA 94041

Email: hello@polymorf.me