Back to Home

Privacy Policy

Last updated: February 4, 2026

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Password (encrypted)
  • Display name (optional)

1.2 Usage Data

We collect information about how you use SophIA:

  • Prompts and queries submitted to the AI
  • Generated content and responses
  • Files uploaded for context
  • Project creation and completion data
  • Credit usage and billing information

1.3 Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Cookies and similar technologies

2. How We Use Your Information

We use collected information to:

  • Provide and improve AI services
  • Process your requests and generate content
  • Manage your account and billing
  • Send service updates and notifications
  • Improve our AI models and algorithms
  • Prevent fraud and ensure security
  • Comply with legal obligations

3. Data Storage and Retention

Encryption: All data is encrypted at rest and in transit using industry-standard protocols.

Retention Period:

  • Account data: Retained until account deletion
  • Chat history: 30 days (can be deleted earlier by user)
  • Generated content: 90 days
  • Billing records: 7 years (legal requirement)

4. Third-Party Services

We use the following third-party services:

  • Google OAuth: For authentication (if enabled)
  • Stripe: For payment processing
  • Gemini API: For AI model inference
  • SendGrid: For transactional emails
  • Hosting Provider: For infrastructure

Each service has its own privacy policy and data processing agreements.

5. Your Rights

Under GDPR and similar regulations, you have the right to:

  • Access: Request a copy of your data
  • Rectification: Correct inaccurate data
  • Erasure: Delete your account and data
  • Portability: Export your data
  • Objection: Opt-out of certain processing
  • Restriction: Limit how we use your data

To exercise these rights, contact us at privacy@sophia.ai

6. Cookies

We use cookies and similar technologies for:

  • Authentication (essential)
  • User preferences (essential)
  • Analytics (optional, with consent)

You can manage cookie preferences in your browser settings.

7. Data Security

We implement industry-standard security measures:

  • SSL/TLS encryption for all connections
  • Encrypted database storage
  • Regular security audits
  • Access controls and authentication
  • Automated backup systems

8. Children's Privacy

SophIA is not intended for users under 13 years of age. We do not knowingly collect information from children. If you believe a child has provided us with personal data, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the service. Continued use after changes constitutes acceptance.

10. Contact Us

For questions about this Privacy Policy or our data practices:

  • Email: privacy@sophia.ai
  • Address: [Your Company Address]