Privacy Policy

Effective Date: 28 April 2026

Hey Prompt is a Chrome extension that helps you rewrite prompts for ChatGPT, Claude, and Gemini. It is developed and operated by an independent developer. This Privacy Policy explains how we collect, use, and protect your data when you use Hey Prompt.

1. Data We Collect

When you use Hey Prompt, we collect the following information:

• Prompts you submit for optimization. On the Free plan, the prompt text is sent to our backend, which forwards it to OpenRouter for AI processing. We do not store the prompt or the model's response in any database. On the "My API key" (BYO) plan, the prompt is sent directly from your browser to OpenRouter and never reaches our backend.
• An anonymous random user ID generated on first use (a UUID with no personal information). It is stored locally in your browser and sent with each Free-plan request so we can enforce the daily free-tier limit. The ID and the daily counter are stored in our database (Supabase) keyed only to the random ID.
• Email address — only if you choose to upgrade to a paid plan or join the waitlist. In that case the email is stored alongside your anonymous user ID so we can deliver the upgrade and contact you about your subscription.
• Standard request metadata (IP address, user-agent, timestamp) is processed by our hosting provider (Railway) for transport, abuse prevention, and short-term operational logging.

No other personal data is collected. We do not collect your name, browsing history, or any data outside of what is described above. We do not embed analytics SDKs or advertising trackers in the extension.

2. How We Use Your Data

The data we collect is used solely to:

• Generate optimized prompts based on your input.
• Enforce the daily free-tier limit (10 optimizations per day per anonymous user).
• Deliver and support paid subscriptions, when applicable.
• Detect and prevent abuse of the service.

We do not use your prompts, responses, or any other user data for AI model training, advertising, marketing analytics, or any other secondary purpose. We do not sell, rent, or share your data with third parties for their own purposes.

3. Third-Party Services

Hey Prompt relies on the following third-party services. Each has its own privacy policy that governs how it processes any data passed through it:

• Railway — hosts our backend server. Privacy policy.
• Supabase — provides the database for anonymous user IDs, daily counters, and (for paid users) email addresses. Privacy policy.
• OpenRouter — relays your prompt to the underlying AI provider. Privacy policy.
• The AI model provider selected to process the request (e.g. OpenAI for the default Free-plan model). The model provider sees the contents of your prompt at the moment of processing.
• Stripe / Dodo Payments — only if you upgrade. They process the payment and we never see your full card details.

4. Data Retention

• Prompts and AI responses are not stored by us. They exist only for the duration of the request and are forwarded to the AI provider.
• Anonymous user IDs and their daily-usage counters are kept indefinitely in the database, but they are not linked to any personal information unless you upgrade.
• Paid-user records (email, plan, anonymous ID) are kept for as long as you are a customer and for a reasonable period afterwards for tax and accounting purposes.
• Hosting-level logs (IP, user-agent) are retained by Railway according to their policies, typically for a short operational window.

5. Data Security

We take reasonable measures to protect your input text and account data while in transit (HTTPS) and at rest (managed Supabase). However, as with any online service, no method of transmission or storage is completely secure.

6. Your Rights

Because Free-plan usage is tied only to a random anonymous ID stored in your browser, you can erase all locally-stored data at any time by removing the extension or clearing your browser's extension storage.

If you have upgraded to a paid plan and want your account email and associated records deleted, contact us at the address below.

7. Children

Hey Prompt is not directed at children under 13, and we do not knowingly collect data from them.

8. Changes

We may update this policy from time to time. The "Effective Date" at the top will reflect the most recent change.

9. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact:

Hey Prompt
kprathapr24@gmail.com

10. GDPR & Regional Rights

Hey Prompt does not run advertising trackers, marketing cookies, or third-party identity-resolution services. We do not associate your activity with any external profile.

If you are a resident of the European Economic Area, the United Kingdom, or California, you have the right to access, correct, or delete personal data we hold about you, and to object to or restrict its processing. Because the Free plan is tied only to an anonymous random ID, there is typically no personal data on our side to act on. If you have used a paid plan and would like to exercise these rights regarding your email and subscription record, email kprathapr24@gmail.com and we will respond within 30 days.