PalettAI

Privacy Policy

Last updated: March 2026

1. Information We Collect

When you use PalettAI, we may collect the following information:

  • Email address and name (when you create an account via Supabase Auth)
  • Prompts you submit for palette generation
  • Saved palettes (Pro users only)
  • Your IP address for rate limiting (free tier)
  • Usage analytics (page views, feature usage) via Vercel Analytics

2. How We Use Your Information

We use the information we collect to:

  • Provide and improve the PalettAI service
  • Enforce free-tier rate limits
  • Process subscription payments via Stripe
  • Send transactional emails (receipts, password resets)
  • Detect and prevent abuse

3. Third-Party Services

PalettAI uses the following third-party services, each governed by their own privacy policies:

  • Supabase — authentication and database storage
  • Stripe — payment processing (we never store card details)
  • Google Gemini — AI palette generation (prompts are sent to Google's Gemini API)
  • Vercel — hosting and analytics
  • Google AdSense — advertising on the free tier

4. Data Retention

Account data is retained until you delete your account. Saved palettes are deleted when your account is deleted. IP-based rate limit data resets daily and is not persisted to disk.

5. Your Rights

You may request deletion of your account and associated data at any time by contacting us. EU/UK residents have additional rights under GDPR/UK GDPR including access, rectification, and portability of your data.

6. Cookies

We use cookies to maintain your login session (via Supabase Auth) and to serve relevant ads on the free tier (via Google AdSense). No tracking cookies are set beyond what is required for these functions.

7. Governing Law

This Privacy Policy is governed by the laws of New South Wales, Australia.

8. Contact

For privacy-related questions, contact us at privacy@palettai.com.