Privacy Policy

This policy explains how WriterzRoom collects, uses, stores, and protects your data.

Last updated: March 12, 2026

Privacy at a glance

We collect only what is required to operate the service
Your content is never sold or used for advertising
Strong encryption and access controls protect your data
Your content is never used to train AI models

Data we collect

Account data: email, name, profile information, and Google OAuth identity when signing in with Google
Billing data: subscription plan and status, payment details are handled directly by Stripe and never stored on our servers
Content data: prompts, inputs, generated outputs, templates, style profiles, and brand voice configurations you create
Usage data: generation counts, feature usage, and platform activity within your account
Technical data: IP address, browser type, and session data for security and performance purposes. We use session cookies strictly for authentication. We do not use tracking, advertising, or analytics cookies.

How we use data

We use data to

Deliver AI content generation via our agent pipeline
Process payments and manage subscriptions through Stripe
Track generation usage against your plan limits
Improve reliability and platform performance

We never

Sell personal or content data to third parties
Use your content for advertising or marketing
Train AI models on your private content
Store your payment card details on our servers

Third-party services

Stripe — payment processing and subscription management. Your card data goes directly to Stripe under their PCI-DSS compliance.
Google OAuth — optional sign-in. We receive only your name and email from Google, nothing else.
AI Providers — AI generation. Prompts and inputs are sent to these providers to fulfill generation requests. They are subject to their respective data handling policies.
Tavily — real-time web research. Search queries derived from your generation inputs are sent to Tavily to fulfill research requests.
Resend — transactional email delivery for account verification, billing notifications, and support communications.
Google Cloud — infrastructure hosting in the United States (us-central1).

Security

TLS encryption in transit
Encrypted database at rest via Google Cloud SQL
Secrets managed via Google Cloud Secret Manager
Authentication via NextAuth with session management
Continuous monitoring and incident response

Data retention

Account and content data is retained for the duration of your subscription.
Upon account deletion, your content and personal data are removed within 30 days.
Billing records may be retained longer as required by financial regulations.

Your rights

You may request access, correction, deletion, or export of your personal data at any time through your account settings or by contacting support@writerzroom.com.

Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request erasure of your personal data. Account deletion requests are processed within 30 days.
Portability: Request an export of your content and account data in a machine-readable format.
Restriction: Request that we limit processing of your data in certain circumstances.

GDPR (EEA/UK users): You have the right to lodge a complaint with your local supervisory authority if you believe your data has been processed unlawfully.

CCPA (California residents): We do not sell personal information. You have the right to know what personal information is collected, to request deletion, and to non-discrimination for exercising your rights.

Contact

support@writerzroom.com

Contact Support

Data we collect

Account data: email, name, profile information, and Google OAuth identity when signing in with Google

Billing data: subscription plan and status, payment details are handled directly by Stripe and never stored on our servers

Content data: prompts, inputs, generated outputs, templates, style profiles, and brand voice configurations you create

Usage data: generation counts, feature usage, and platform activity within your account

Technical data: IP address, browser type, and session data for security and performance purposes. We use session cookies strictly for authentication. We do not use tracking, advertising, or analytics cookies.

How we use data

We use data to

Deliver AI content generation via our agent pipeline
Process payments and manage subscriptions through Stripe
Track generation usage against your plan limits
Improve reliability and platform performance

We never

Sell personal or content data to third parties
Use your content for advertising or marketing
Train AI models on your private content
Store your payment card details on our servers

Third-party services

Stripe — payment processing and subscription management. Your card data goes directly to Stripe under their PCI-DSS compliance.

Google OAuth — optional sign-in. We receive only your name and email from Google, nothing else.

AI Providers — AI generation. Prompts and inputs are sent to these providers to fulfill generation requests. They are subject to their respective data handling policies.

Tavily — real-time web research. Search queries derived from your generation inputs are sent to Tavily to fulfill research requests.

Resend — transactional email delivery for account verification, billing notifications, and support communications.

Google Cloud — infrastructure hosting in the United States (us-central1).

Your rights

You may request access, correction, deletion, or export of your personal data at any time through your account settings or by contacting support@writerzroom.com.

Access: Request a copy of the personal data we hold about you.

Correction: Request correction of inaccurate or incomplete data.

Deletion: Request erasure of your personal data. Account deletion requests are processed within 30 days.

Portability: Request an export of your content and account data in a machine-readable format.

Restriction: Request that we limit processing of your data in certain circumstances.

GDPR (EEA/UK users): You have the right to lodge a complaint with your local supervisory authority if you believe your data has been processed unlawfully.