Privacy Policy

Last updated: 8/15/2025

This Privacy Policy explains how IntutivAI (owned and operated by Maciej Mendyk as an unregistered sole proprietorship under Polish law ("nierejestrowana działalność gospodarcza")) collects, uses, shares, and protects your information when you use our website and app (the "Service").

What data we collect

Personal data you provide

  • Name and email (account creation, login, support)
  • Billing info when you buy or subscribe (processed by Stripe)

Usage data we generate

  • Log data (IP address, timestamps, browser/device info)
  • App usage (actions, pages viewed, request metadata)
  • AI usage counts (tokens for input/output to calculate costs)

Cookies and similar tech

  • Auth/session cookies to keep you signed in
  • Basic preferences (e.g., UI state)

How we use your data

  • To create and manage your account
  • To provide AI features and keep your canvases in sync
  • To process payments and subscriptions via Stripe
  • To monitor usage and costs (token counts, wallet balance)
  • To improve reliability, security, and product quality
  • To contact you about important changes or support

Sharing your data

We do not sell your personal data. We share only what is needed with trusted providers that help us run the Service:

  • Payments: Stripe (payments, billing, customer portal)
  • Authentication: NextAuth (account and session management)
  • Database: MongoDB (data storage via Mongoose)
  • AI APIs: Google GenAI (processing prompts and returning results)
  • Hosting/infra: standard cloud providers for app hosting and logs

Your rights

  • Access: request a copy of your personal data we store
  • Correction: ask us to fix inaccurate personal data
  • Deletion: request deletion of your account and personal data
  • Portability: request export where technically feasible
  • Opt‑out: unsubscribe from non-essential emails at any time

Security

We use industry‑standard practices to protect your data (TLS in transit, access controls, least‑privilege, and monitoring). No method is 100% secure, but we work hard to safeguard it.

Children’s privacy

The Service is not directed to children under 13. We do not knowingly collect data from children. If you believe a child provided personal data, contact us and we will delete it.

Changes to this policy

We may update this Privacy Policy. We will change the date above and, when appropriate, provide additional notice. Your continued use means you accept the updated policy.

Contact

Questions about privacy? Email us at maciej.mendyk@gmail.com.