Privacy Policy

Last updated: April 11, 2026

PromptDuel ("we", "our", "us") is committed to protecting your privacy. This policy explains what data we collect, why we collect it, and how we handle it.

1. What We Collect

• Account information: Your name and email address from Google OAuth sign-in.
• Prompts and responses: The prompts you submit for optimization or duels, and the AI model responses generated from those prompts.
• Usage data: Counts of optimizations and duels performed, duel votes, and feature usage for enforcing plan limits.
• Technical data: Browser type, extension version, and error logs for debugging. We do not collect browsing history or page content beyond the AI chat platforms where the extension operates.

2. What We Do NOT Collect

• We do not read, store, or access any content on pages other than ChatGPT, Claude, and Gemini.
• We do not collect browsing history, cookies from other sites, or personal files.
• We do not sell, rent, or share your personal data with third parties for marketing purposes.

3. How We Use Your Data

• To provide the service: Your prompts are sent to AI model APIs (OpenAI, Anthropic, Google) to generate responses. We store prompts and responses so you can access your history.
• To enforce usage limits: We track weekly/monthly usage counts to apply free and pro plan limits.
• To improve the product: Aggregate, anonymized statistics (e.g., which model wins most duels) may be used to improve features. Individual prompts are never shared publicly.
• To provide analytics: Your duel history powers personal features like win-rate stats and model recommendations.

4. Third-Party Services

We use the following third-party services to operate PromptDuel:

• OpenAI, Anthropic, Google: Your prompts are sent to these AI providers to generate responses. Each provider has their own privacy policy.
• Supabase: Database hosting and authentication. Data is stored with row-level security.
• Cloudflare: API hosting and edge delivery.
• Lemon Squeezy: Payment processing for Pro subscriptions. We do not store your credit card information.

5. Data Storage and Security

• All data is stored in Supabase (PostgreSQL) with row-level security — you can only access your own data.
• Authentication tokens are stored in Chrome's session storage (encrypted, scoped to the extension).
• API communication uses HTTPS encryption in transit.
• We do not store your Google password. Authentication is handled entirely by Google OAuth.

6. Data Retention and Deletion

• Your prompts and duel history are retained as long as your account is active.
• You can delete individual prompts from your history at any time.
• To delete your account and all associated data, contact us at the email below. We will process deletion requests within 30 days.

7. Chrome Extension Permissions

• activeTab: To detect your prompt input on the current AI chat page and inject optimization buttons.
• sidePanel: To display side-by-side AI model comparison results without navigating away from the chat.
• storage: To persist user preferences, auth tokens, and cached usage counts across browser sessions.
• identity: For Google sign-in authentication flow.

8. Content Filtering

We apply automated content filtering to block prompts that contain abuse patterns. Prompts that trigger these filters are rejected and not sent to AI providers.

9. Children's Privacy

PromptDuel is not intended for children under 13. We do not knowingly collect data from children under 13.

10. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date.

11. Contact

For questions about this privacy policy or to request data deletion, contact us at:
Email: hello@prompt-duel.com