Privacy Policy

How WriterzRoom collects, uses, stores, and protects your data.

Last updated: March 12, 2026

At a glance

We collect only what is required to operate the service

Your content is never sold or used for advertising

Strong encryption and access controls protect your data

Your content is never used to train AI models

Data we collect

Account dataEmail, name, profile information, and Google OAuth identity when signing in with Google.

Billing dataSubscription plan and status. Payment details are handled directly by Stripe and never stored on our servers.

Content dataPrompts, inputs, generated outputs, templates, style profiles, and brand voice configurations you create.

Usage dataGeneration counts, feature usage, and platform activity within your account.

Technical dataIP address, browser type, and session data for security and performance. Session cookies are used strictly for authentication. No tracking, advertising, or analytics cookies.

How we use data

We use data to

Deliver AI content generation via our agent pipeline

Process payments and manage subscriptions through Stripe

Track generation usage against your plan limits

Improve reliability and platform performance

We never

Sell personal or content data to third parties

Use your content for advertising or marketing

Train AI models on your private content

Store your payment card details on our servers

Third-party services

StripePayment processing and subscription management. Your card data goes directly to Stripe under their PCI-DSS compliance.

Google OAuthOptional sign-in. We receive only your name and email from Google, nothing else.

AI ProvidersPrompts and inputs are sent to AI providers to fulfill generation requests, subject to their respective data handling policies.

TavilyReal-time web research. Search queries derived from your generation inputs are sent to Tavily to fulfill research requests.

ResendTransactional email delivery for account verification, billing notifications, and support communications.

Google CloudInfrastructure hosting in the United States (us-central1).

Security

TLS encryption in transit

Encrypted database at rest via Google Cloud SQL

Secrets managed via Google Cloud Secret Manager

Authentication via NextAuth with session management

Continuous monitoring and incident response

Data retention

Account and content data is retained for the duration of your subscription.

Upon account deletion, your content and personal data are removed within 30 days.

Billing records may be retained longer as required by financial regulations.

Your rights

AccessRequest a copy of the personal data we hold about you.

CorrectionRequest correction of inaccurate or incomplete data.

DeletionRequest erasure of your personal data. Account deletion requests are processed within 30 days.

PortabilityRequest an export of your content and account data in a machine-readable format.

RestrictionRequest that we limit processing of your data in certain circumstances.

GDPR (EEA/UK): You have the right to lodge a complaint with your local supervisory authority if you believe your data has been processed unlawfully.

CCPA (California): We do not sell personal information. You have the right to know what personal information is collected, to request deletion, and to non-discrimination for exercising your rights.

Contact

Privacy and data requestssupport@writerzroom.com

You may request access, correction, deletion, or export of your personal data at any time through your account settings or by emailing us directly.

Contact support →