Privacy Policy

Last updated: March 2026

1. Who We Are

DropScribe ("we", "our", "us") is an AI-powered product description generator for Shopify and WooCommerce store owners. This Privacy Policy explains what data we collect, how we use it, and your rights over it.

For questions, contact us at: privacy@dropscribe.app

2. Data We Collect

Account Data

When you create an account we collect your email address and a hashed password. If you sign up with Google, we receive your name and email from Google.

Usage Data

We store the product descriptions you generate (your inputs and the AI outputs) so you can access your history. We also record how many generations you have used each month to enforce plan limits.

Billing Data

Payments are processed by Dodo Payments. We never store your card number, CVV, or full payment details. We only store your Dodo Payments customer ID and subscription status.

Technical Data

We collect standard server logs including IP address, browser type, and pages visited. These are used for security monitoring and debugging only.

3. How We Use Your Data

  • To provide the DropScribe service — generating and storing your product descriptions.
  • To enforce plan limits and manage your subscription.
  • To send transactional emails (welcome, billing receipts, payment failures).
  • To respond to support requests.
  • To monitor for abuse and maintain security.
  • To improve the product using aggregated, anonymised usage patterns.

We do not sell your data. We do not use your product descriptions to train AI models. We do not share your data with advertisers.

4. Third-Party Services

We use the following third-party services to operate DropScribe:

SupabasePrivacy Policy →

Database and user authentication

AnthropicPrivacy Policy →

AI generation (Claude API). Your product inputs are sent to Anthropic for processing. Anthropic does not use API inputs to train models.

Dodo PaymentsPrivacy Policy →

Payment processing and subscription management

VercelPrivacy Policy →

Frontend hosting

ResendPrivacy Policy →

Transactional email delivery

5. Data Retention

Free plan: Generation history is retained for 30 days.

Starter plan: Generation history is retained for 30 days.

Pro plan: Generation history is retained indefinitely while your account is active.

If you delete your account, all your data — profile, history, and preferences — is permanently deleted within 30 days.

6. Your Rights

Depending on your location, you may have the following rights:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate data.
  • Deletion — request that we delete your account and all associated data.
  • Portability — request your data in a machine-readable format.
  • Objection — object to certain types of processing.

To exercise any of these rights, email privacy@dropscribe.app. We will respond within 30 days.

7. Cookies

We use a single authentication cookie set by Supabase to keep you logged in. We do not use advertising cookies or third-party tracking cookies. You can clear cookies at any time through your browser settings, which will log you out.

8. Security

All data is transmitted over HTTPS. Passwords are hashed and never stored in plain text. We use Row Level Security in our database so users can only access their own data. API keys are stored as environment variables and never exposed to the frontend.

9. Changes to This Policy

We may update this policy from time to time. We will notify you by email and update the "Last updated" date at the top of this page. Continued use of DropScribe after changes constitutes acceptance of the new policy.

← Back to homeTerms of Service →