Privacy Policy for AiEnhancer

3.1 Account Information

• Email address through Google Authentication
• Google OAuth authentication data
• Account creation and modification dates
• User preferences and settings

3.2 Service Usage Data

• ChatGPT conversation identifiers and titles (not the conversation content)
• User-created folder structures and organization preferences
• Folder metadata (colors, creation dates, organization structure)
• Extension usage data and interaction metrics
• Browser-specific technical information necessary for service functionality

3.3 Local Storage Data

Our extension utilizes browser's IndexedDB to store:

• Chat titles and identifiers
• Folder organization preferences
• Local extension settings

This data remains in your browser and is not transmitted to our servers unless necessary for service functionality.

3.4 Payment Information

For users who purchase premium features:

• Transaction records and billing history
• Payment processing data through Stripe
• Subscription status and premium feature usage data
• Payment records and billing addresses where applicable

4.1 Primary Purposes

• Providing and maintaining the Service
• Processing your payments and managing subscriptions
• Authenticating your identity and maintaining security
• Organizing and managing your ChatGPT conversations
• Responding to your requests and support needs

4.2 Secondary Purposes

• Improving and optimizing the Service
• Analyzing usage patterns and trends
• Preventing fraud and maintaining security
• Complying with legal obligations

6.1 Required Permissions

• Access to ChatGPT website for chat organization
• Storage permissions for local data management
• Identity permissions for Google OAuth authentication

6.2 Technical Security Measures

• HTTPS encryption for all data transfers
• OAuth 2.0 authentication protocols
• Rate limiting and request validation
• API endpoint security with appropriate authentication

7.1 Storage Infrastructure

• User data stored securely through Supabase infrastructure
• Payment information processed through Stripe's infrastructure
• Local data stored in browser's IndexedDB

7.2 Security Measures

• Industry-standard encryption protocols
• Regular security monitoring and updates
• Strict access controls and authentication procedures

8.1 Core Services

• Supabase: Database management and user authentication
• Stripe: Payment processing and subscription management
• Google Authentication: User identity verification
• Chrome Web Store: Extension distribution

8.2 Integration Details

Each third-party service operates under its own privacy policy:

• Google Authentication: For secure user login
• ChatGPT: Interface interaction without content storage
• Stripe: Secure payment processing
• Chrome Web Store: Extension distribution and updates

9.1 GDPR Rights

For users in the European Economic Area (EEA):

• Right to Access: Obtain confirmation of personal data processing
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of personal data
• Right to Data Portification: Receive data in a structured format
• Right to Object: Object to certain processing activities
• Right to Restrict Processing: Limit how we use your data
• Right to Withdraw Consent: Revoke previous consent
• Right to Lodge a Complaint: Contact supervisory authorities

9.2 Account Control

• Modify account information and preferences
• Control extension permissions
• Manage subscription settings
• Request data export or deletion