Your privacy matters

Privacy Policy

This Privacy Policy describes how TooEasyApps ("we," "us," or "our") handles information when you use our website and application.

Last updated: May 23, 2026

1. Scope

This policy applies to information collected through TooEasyApps (the Service), including pages at our domain and the signed-in application. By using the Service, you agree to this Privacy Policy.

2. Information we collect

2.1 Account and authentication

If you sign in with Google, we receive information that Google shares with us according to your Google account settings, typically your name, email address, and profile image. We use this to create and maintain your account and to communicate with you about the Service.

2.2 Content you submit

When you use writing tools (Humanizer, Tone Changer, De-Escalator, AI Detector, paraphraser, grammar checker, discussion and reply assistants, email assistant, sources assistant, and similar features), the text you submit is sent to our servers and to AI or detection providers to generate results. We do not use your submissions to build a permanent library of your documents by default, but we may keep limited usage metadata (such as word counts, tool name, and timestamps) for billing, fair use, and abuse prevention. If you use features that save content in your account (such as feature suggestions or workspace documents, when available), that content is stored in our database until you delete it or close your account.

2.3 Usage and technical data

We may collect log and device data, such as IP address (sometimes hashed for rate limiting), browser type, general location derived from IP or edge headers, timestamps, pages or features accessed, credit and word-count metering, and operational metrics needed to enforce fair use and prevent abuse.

2.4 Cookies and similar technologies

We use cookies, local storage, and similar technologies for authentication (including session tokens), security, preferences (such as cookie consent), and analytics. See our Cookie Policy for details. You can control many cookies in your browser settings.

2.5 Payments

Subscription and one-time purchases are processed by Stripe. We do not store full payment card numbers on our servers. We receive Stripe customer and subscription identifiers, subscription status, billing period dates, price identifiers, and transaction metadata needed to deliver entitlements and support billing.

2.6 Support and communications

If you contact us through in-product chat (such as Chatway), email via Resend, or our contact form, we retain the content of those messages and related metadata to respond to you and improve support.

2.7 AI processing

AI-assisted features send your submitted text to inference and detection providers to generate outputs. We do not sell your content. For tool-specific details, see our AI & Data Usage page. Providers may process data under their own terms; we configure services to protect customer data where available.

AI & Data Usage

Additional policy details

3. How we use information

We use information to provide, operate, and maintain the Service; authenticate users; prevent fraud, spam, and abuse; enforce usage limits, subscriptions, and credit balances; communicate about service, billing, security, or policy changes; improve reliability; and comply with legal obligations.

4. Legal bases

Where required in the EEA, UK, and similar regions, we rely on appropriate legal bases such as performance of a contract, legitimate interests, consent where requested, and legal obligation.

5. Sharing of information

We do not sell your personal information. We use trusted providers to run TooEasyApps, including Vercel (hosting and performance analytics), Supabase (database and auth adapter storage), Google (OAuth sign-in), Stripe (payments and subscriptions), Resend (transactional email and contact routing), OpenAI and Ryne (AI inference and detection), Sentry (error monitoring), Datafast and Contentsquare (product analytics when you accept cookies), and Chatway (live chat support). These providers process data on our instructions and under contractual safeguards. We may also share information with professional advisers, authorities where legally required, or as part of a merger, acquisition, or asset sale.

6. International transfers

We may process and store information in the United States and other countries. Where required, we use appropriate safeguards for cross-border transfers.

7. Retention

Account and billing records: while your account is active and as needed for tax, fraud, and legal compliance. Usage metering (word counts, credits): retained for billing and abuse investigation. Security audit logs: automatically deleted after 90 days. Stripe webhook idempotency records: 90 days. Support messages: until resolved and a reasonable period afterward. You may request deletion of personal data subject to legal retention requirements—contact us via the options in section 13.

8. Security

We implement technical and organizational measures designed to protect personal information against unauthorized access, loss, or alteration. No internet transmission is completely secure, so we cannot guarantee absolute security.

9. Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, or export certain personal data; object to or restrict certain processing; withdraw consent; or lodge a complaint with a supervisory authority. We may need to verify your identity before fulfilling certain requests. California residents: you may have rights to know, access, delete, and correct personal information, and to opt out of sale or sharing—we do not sell personal information or share it for cross-context behavioral advertising. EEA/UK residents: you may have GDPR rights including access, rectification, erasure, restriction, portability, and objection. Submit requests through our contact page; we respond within timeframes required by applicable law (typically 30–45 days).

Submit a privacy request

9.1 California and US state privacy

California residents may have rights to know, delete, correct, and opt out of sale or sharing of personal information. We do not sell personal information and do not share it for cross-context behavioral advertising. We will not discriminate against you for exercising privacy rights. Other US state laws may provide similar rights; contact us to make a request.

Privacy requests

9.2 Moderation and security

We may process account and usage data to enforce our Terms and Acceptable Use Policy, investigate abuse, moderate user-submitted suggestions, suspend accounts, maintain security audit logs (including IP address and user agent where logged), and protect the Service.

10. Children's privacy

The Service is not directed to children under 13 or the minimum age required in your jurisdiction. We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us so we can delete it.

11. Third-party links

The Service may contain links to third-party sites or integrations. Their privacy practices are governed by their own policies; we are not responsible for their content or practices.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised version on this page and update the Last updated date. For material changes, we may provide additional notice where appropriate.

13. Contact

For privacy-related questions or requests, please contact us through the support or contact options provided in the Service.

We protect your data

You're in control

Transparent by design

Questions? Contact us

We are committed to protecting your privacy and being transparent about our practices.