Privacy Policy

Last Updated: January 16, 2025

AI Pass ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

Quick Summary: We collect minimal data necessary to provide our AI wallet service. Your payment information is processed securely by Stripe. We never sell your data. You have full control over your information.

1. Information We Collect

1.1 Information You Provide

Account Information: Email address, name, and password (encrypted)
Payment Information: Billing details processed securely by Stripe (we do not store credit card numbers)
Profile Information: Optional profile details you choose to provide
Communications: Messages you send to our support team

1.2 Information Collected Automatically

Usage Data: API calls, features used, timestamps, and usage patterns
Device Information: IP address, browser type, operating system, device identifiers
Cookies and Tracking: Session cookies, authentication tokens, and analytics data
Transaction Data: Payment history, credits purchased, and credits consumed

2. How We Use Your Information

We use the collected information for the following purposes:

Service Delivery: To provide, maintain, and improve AI Pass services
Account Management: To create and manage your account, authenticate users
Billing and Payments: To process payments, send invoices, and manage credits
Customer Support: To respond to inquiries, troubleshoot issues, and provide assistance
Security: To detect fraud, prevent abuse, and secure our platform
Analytics: To understand usage patterns and improve our services
Legal Compliance: To comply with legal obligations and enforce our terms
Communications: To send service updates, security alerts, and account notifications (not marketing unless you opt in)

3. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information with:

3.1 Service Providers

Stripe: Payment processing (subject to Stripe's Privacy Policy)
Firebase (Google): Authentication services (subject to Firebase Privacy Policy)
Cloud Hosting: Infrastructure providers for service delivery
AI Model Providers: Third-party AI services you choose to access through AI Pass

3.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if necessary to:

Comply with legal obligations
Protect our rights, property, or safety
Prevent fraud or security threats
Enforce our Terms of Service

3.3 Business Transfers

If AI Pass is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website.

4. Data Security

We implement industry-standard security measures to protect your information:

Encryption: All data transmitted between you and our servers is encrypted using TLS/SSL
Secure Storage: Passwords are hashed using bcrypt; sensitive data is encrypted at rest
Access Controls: Strict internal access controls and authentication requirements
Regular Audits: Periodic security assessments and vulnerability testing
PCI Compliance: Payment data handled by PCI-DSS compliant providers (Stripe)

Note: While we strive to protect your information, no method of transmission over the internet is 100% secure. Use strong passwords and enable two-factor authentication when available.

5. Your Privacy Rights

Depending on your location, you may have the following rights:

5.1 Access and Portability

Request a copy of your personal data
Export your data in a machine-readable format

5.2 Correction and Deletion

Update or correct inaccurate information
Request deletion of your account and associated data

5.3 Opt-Out Rights

Unsubscribe from marketing communications
Disable non-essential cookies
Opt out of data sharing (where applicable)

5.4 Objection and Restriction

Object to processing of your data
Request restriction of processing

To exercise your rights, contact us at: support@aipass.one

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

Account Data: Retained while your account is active
Transaction Records: Retained for 7 years for tax and accounting purposes
Usage Logs: Retained for 90 days for security and analytics
Deleted Accounts: Personal data deleted within 30 days of account deletion (except where legal retention is required)

7. International Data Transfers

AI Pass is based in the United States. If you are accessing our services from outside the U.S., your information will be transferred to and processed in the United States. By using our services, you consent to the transfer of your information to the U.S.

We ensure appropriate safeguards are in place for international transfers, including:

Standard contractual clauses approved by the European Commission
Compliance with GDPR and other applicable data protection laws

8. Children's Privacy

AI Pass is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at support@aipass.one.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to:

Essential Cookies: Required for authentication and security (cannot be disabled)
Analytics Cookies: Help us understand how you use our service
Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling cookies may affect service functionality.

10. Third-Party Links

Our service may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. Please review their privacy policies before providing any information.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

Right to know what personal information is collected
Right to know whether personal information is sold or disclosed
Right to opt out of the sale of personal information (we do not sell your data)
Right to delete personal information
Right to non-discrimination for exercising your rights

12. GDPR Compliance (European Users)

If you are in the European Economic Area (EEA), we process your data under the following legal bases:

Contractual Necessity: To provide services you've requested
Legitimate Interests: To improve our services and prevent fraud
Consent: For marketing communications and optional features
Legal Obligation: To comply with applicable laws

You have the right to lodge a complaint with your local data protection authority.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

Posting the new policy on this page with an updated "Last Updated" date
Sending an email notification to your registered email address
Displaying a prominent notice on our website

Your continued use of AI Pass after changes become effective constitutes acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

AI Pass
San Francisco, CA, United States
Email: support@aipass.one
Website: aipass.one

Data Protection Officer: For GDPR-related inquiries, contact support@aipass.one