Privacy Policy

Last updated: November 30, 2025

1. Introduction

Welcome to My Prompt Gallery. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our service.

2. Information We Collect

2.1 Personal Information

When you create an account, we collect:

  • Email address (for authentication and communication)
  • Name (display name for your profile)

2.2 Authentication Methods

We offer multiple authentication methods:

  • Email Authentication: We send a magic link to your email address for passwordless login
  • Google OAuth: You can sign in using your Google account. When you choose this method, Google shares your email address and name with us to create your account. We do not receive your Google password or access to other Google services. Google's use of your information is governed by their Privacy Policy.

You can choose either authentication method. Both methods require you to accept our Terms of Service and Privacy Policy.

2.3 User-Generated Content

When you use our service, we store:

  • Prompts you create (text, images, and instructions)
  • Votes and likes you submit
  • Reports you file
  • Rate limiting data (to prevent abuse)

2.4 Technical Information

We automatically collect certain technical information, including:

  • IP addresses (for security and rate limiting)
  • Browser type and version
  • Device information
  • Usage patterns and timestamps

3. How We Use Your Information

We use your information to:

  • Provide and maintain our service
  • Authenticate your account and manage access
  • Display your prompts and content to other users
  • Prevent abuse and enforce rate limits
  • Respond to reports and maintain platform safety
  • Comply with legal obligations

4. Legal Basis for Processing

We process your personal data based on:

  • Consent: When you create an account and agree to our Terms of Service
  • Contract Performance: To provide the services you request
  • Legitimate Interests: To prevent fraud, ensure security, and maintain service quality
  • Legal Obligations: To comply with applicable laws and regulations

5. Data Sharing and Third Parties

We use the following third-party services to operate our platform:

  • Supabase: For authentication, database storage, and backend services
  • Vercel Blob: For storing and serving user-uploaded images
  • Google: For OAuth authentication. When you sign in with Google, Google processes your authentication request according to their Privacy Policy. We only receive your email address and name that you authorize Google to share with us.

We do not sell your personal data. We may share your information only:

  • With your explicit consent
  • To comply with legal obligations
  • To protect our rights and prevent fraud
  • With service providers who assist in operating our platform (under strict confidentiality agreements)

6. Data Retention

We retain your personal data for as long as:

  • Your account is active
  • Necessary to provide our services
  • Required by law or to resolve disputes

When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal purposes.

7. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights:

  • Right to Access: Request a copy of all personal data we hold about you
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing of your data for certain purposes
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

You can exercise these rights by:

  • Using the account deletion feature in your account settings
  • Using the data export feature to download your data
  • Contacting us directly (see Contact Information below)

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption, access controls, and regular security assessments. However, no method of transmission over the internet is 100% secure.

9. Children's Privacy

Our service is not intended for users under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of our service after such changes constitutes acceptance of the updated policy.

11. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: privacy@mypromptgallery.com
(Please replace with your actual contact email)