Privacy Policy

1. Introduction

Welcome to XEngageAI ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience when using our Chrome extension and related services.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the XEngageAI Chrome extension (the "Extension"), our website at xengageai.com (the "Website"), and our API services (collectively, the "Services").

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, display name, and password when you create an account
• Profile Customization: Your bio, niche topics, content goals, and writing style preferences that you configure to personalize AI suggestions
• Payment Information: Payment details processed securely through Stripe (we do not store your full credit card information)

2.2 Information Collected Automatically

• Usage Statistics: Number of AI suggestions generated, features used, and interaction patterns to improve our service
• Safeguard Metrics: Local activity tracking (posts, replies, likes) stored only on your device to help you maintain healthy engagement patterns
• Technical Data: Browser type, extension version, and error logs for troubleshooting

2.3 Content We Process

• Post Content: When you request AI suggestions, we temporarily process the post content you're viewing to generate relevant replies
• Generated Content: AI suggestions we create for you (stored temporarily for the session)

3. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve the XEngageAI services
• To generate personalized AI writing suggestions based on your preferences
• To calculate post engagement scores and provide insights
• To process your subscription payments through Stripe
• To track your usage against your plan limits
• To send important service updates and notifications
• To respond to your support requests and communicate with you
• To detect and prevent fraud, abuse, or violations of our terms
• To analyze usage patterns and improve our AI models and features

4. Data Storage and Security

4.1 Where We Store Data

• Local Storage: Safeguard activity metrics and session tokens are stored locally in your browser using Chrome's storage API
• Cloud Storage: Account information, customization settings, and usage statistics are stored securely on our servers
• Third-Party Services: We use Supabase for authentication and database services, and Stripe for payment processing

4.2 Security Measures

• All data transmission is encrypted using HTTPS/TLS
• Authentication tokens are securely stored and transmitted
• We implement industry-standard security practices to protect your data
• We do not store your X (Twitter) password or access your X account directly

5. Chrome Extension Permissions

Our extension requests the following permissions, each for a specific purpose:

6. What We Do NOT Do

We want to be completely transparent about what we don't do with your data:

• No Automated Posting: We only generate suggestions. You must manually copy and post any content.
• No X Account Access: We never request or store your X (Twitter) login credentials.
• No Data Selling: We do not sell, rent, or trade your personal information to third parties.
• No Browsing Tracking: We only operate on x.com and do not track your activity on other websites.
• No Remote Code: All extension code is bundled locally. We do not execute remotely-loaded scripts.
• No Persistent Content Storage: Post content sent for AI processing is not permanently stored.

7. Data Sharing and Third Parties

We may share your information only in the following circumstances:

• Service Providers: With trusted third-party services (OpenAI for AI generation, Supabase for authentication, Stripe for payments) that help us operate our services
• Legal Requirements: If required by law, regulation, or legal process
• Protection: To protect the rights, property, or safety of XEngageAI, our users, or others
• Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)

8. Your Rights and Choices

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data we hold
• Correction: Update or correct inaccurate personal data
• Deletion: Request deletion of your account and associated data
• Export: Download your data in a portable format
• Opt-out: Unsubscribe from marketing communications at any time

To exercise any of these rights, please contact us at [email protected].

9. Data Retention

• Account Data: Retained while your account is active and for 30 days after deletion request
• Usage Statistics: Aggregated and anonymized data may be retained indefinitely for analytics
• Safeguard Data: Automatically cleaned up after 24 hours (stored locally only)
• Payment Records: Retained as required by law for tax and accounting purposes

10. Children's Privacy

XEngageAI is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our Services, you consent to such transfers. We ensure appropriate safeguards are in place to protect your information in compliance with applicable laws.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: