Legal
Privacy Policy
This Privacy Policy explains how Superintelligence, Inc. (“Superintelligence,” “we,” “us”) collects, uses, shares, and protects personal information when you use our websites, apps, and AI assistant (the “Service”), and the choices and rights you have. By using the Service, you agree to this Policy. If you do not agree, please do not use the Service.
1. Introduction & Scope
Superintelligence, Inc. is the controller (or, under some U.S. laws, the “business”) responsible for personal information processed through the Service. Our contact details are in Section 17. This Policy applies to the Service and not to third-party websites or services we do not control.
2. AI Transparency Notice
The Service is an artificial-intelligence system. When you interact with it, you are interacting with automated software, not a human. Output is generated by machine-learning models and may be inaccurate; see our Terms of Service for important disclaimers. Where we provide AI-generated audio, image, or video content, we aim to identify it as artificially generated where required by applicable law (including the EU AI Act).
3. Information We Collect
We collect the following categories of personal information (mapped to U.S. state-law categories where relevant):
| Category | Examples | Source |
|---|---|---|
| Identifiers & account data | Name, email, account/authentication identifiers (including Firebase UID, OAuth provider, and auth tokens), and password credentials managed by our auth provider. | You; authentication provider |
| User content (prompts & conversations) | The prompts, messages, files, and other inputs you submit, and the AI outputs and conversation history generated for you. These may contain personal or sensitive information you choose to include. | You |
| Commercial & subscription information | Subscription status, purchase history, and transaction identifiers. Payment card data is handled by the app store or payment processor, not stored by us. | You; app store / processor |
| Internet & device activity | Device type, operating system, app version, IP address, identifiers, log data, feature usage, and diagnostics. | Automatically |
| Approximate location | Coarse location inferred from IP address (we do not collect precise GPS location). | Automatically |
| Inferences | Preferences and settings derived from your use to operate and personalize the Service. | Derived |
| Communications | Support requests, feedback, and correspondence with us. | You |
4. Your Prompts, Conversations & AI Training
Your prompts and conversations are processed to generate responses and to provide, secure, and support the Service. Because you control what you type, prompts may contain personal or sensitive information — please avoid sharing information you do not want processed.
Model training & your choices
We are committed to a privacy-protective default for consumer content. Where we offer a setting to control whether your content is used to train or improve our models, we honor your choice, and where we say we do not train on your content by default, we mean it. We will not use the content of your conversations to train models except as disclosed here and subject to any opt-out we provide.
Human review
A limited number of authorized personnel or service providers may review conversations only where necessary to investigate abuse or safety issues, debug problems, comply with law, or with your permission. Access is restricted and logged.
Third-party model providers
We may use third-party model-serving or inference providers to generate Output. We share only what is necessary to process your request, under contracts that restrict their use of the data to providing services to us.
5. How We Use Information
We use personal information for the following purposes, with the GDPR legal bases noted:
- Provide the Service — operate the assistant, authenticate you, and maintain your account and conversation history (performance of a contract).
- Process subscriptions — manage purchases, renewals, and billing through the app store (contract).
- Safety, security & abuse prevention — detect, prevent, and respond to fraud, abuse, and security incidents (legitimate interests; legal obligation).
- Support & communications — respond to you and send service messages (contract; legitimate interests).
- Improve the Service — analyze usage and, subject to your choices, improve features and models (legitimate interests; consent where required).
- Legal compliance — comply with law and enforce our terms (legal obligation; legitimate interests).
8. Your Privacy Rights
Depending on where you live, you may have some or all of the following rights. We do not discriminate against you for exercising them.
All users may request to:
- access and obtain a copy of your personal information (portability);
- correct inaccurate information;
- delete your account and personal information;
- opt out of having your content used to improve our models (where offered).
U.S. state residents (e.g., California, Virginia, Colorado, Connecticut, Texas, and others)
You may also opt out of the “sale” or “sharing” of personal information and of targeted advertising and certain profiling, and limit the use of sensitive personal information. Because we do not sell or share personal information or use it for targeted advertising, there is nothing to opt out of for those purposes; however, you may still submit a request, and we honor the Global Privacy Control (GPC) browser signal as an opt-out. California residents may also request information about our data practices, and may designate an authorized agent. We will verify your request and respond within the timeframes required by law (generally 45 days, extendable).
EEA / UK residents
Under the GDPR and UK GDPR you have the rights of access, rectification, erasure, restriction, portability, and objection; the right to withdraw consent at any time; rights regarding automated decision-making (Article 22); and the right to lodge a complaint with your supervisory authority or the UK Information Commissioner’s Office (ICO).
9. Automated Decision-Making
The Service generates AI output automatically, but we do not use automated processing to make decisions that produce legal or similarly significant effects about you (such as eligibility for credit, employment, housing, or insurance) without meaningful human involvement. Where any automated decision-making technology (ADMT) that could have such effects is used, you have the right to be informed about the logic involved, to opt out, and to request human review and appeal of significant decisions, consistent with applicable law (including California’s ADMT regulations and GDPR Article 22).
10. Data Retention
We retain personal information for as long as needed to provide the Service and for legitimate business and legal purposes. Account information is retained while your account is active and deleted (or de-identified) within a reasonable period after you close your account, unless we must retain it to comply with law, resolve disputes, or enforce our agreements. Conversation history is retained according to your settings and our default retention windows. Abuse and security logs may be retained longer where necessary. Deletion of your user-facing records is separate from removal of any de-identified or aggregated data that no longer identifies you.
11. Security
We use technical and organizational safeguards designed to protect personal information, including encryption in transit and at rest, access controls, and monitoring. No method of transmission or storage is completely secure, so we cannot guarantee absolute security. If we become aware of a breach affecting your personal information, we will notify you and regulators as required by law.
12. International Data Transfers
We are based in the United States and may process personal information there and in other countries. Where we transfer personal information out of the EEA, UK, or Switzerland, we rely on appropriate safeguards, such as the European Commission’s Standard Contractual Clauses, the UK International Data Transfer Addendum, and/or the EU-U.S. Data Privacy Framework (where applicable), together with supplementary measures. You may contact us for more information about these safeguards.
13. Children’s Privacy
The Service is not directed to children, and you must be at least 18 years old to use it. We do not knowingly collect personal information from children under 13 (or under the applicable minimum age in your jurisdiction). If you believe a child has provided us personal information, contact us at hey@superintel.app and we will delete it. We comply with the Children’s Online Privacy Protection Act (COPPA), as amended, where applicable.
14. Sensitive Information
We do not intentionally collect sensitive personal information (such as precise geolocation, health, biometric, or government-ID data), although you may choose to include such information in your prompts. We process any sensitive information only as necessary to provide the Service and as permitted by law, we do not sell it, and — for residents of states such as Maryland — we limit our collection and processing of sensitive information to what is strictly necessary to provide the Service you request.
15. Region-Specific Disclosures
California
In the preceding 12 months we collected the categories of personal information described in Section 3 for the purposes in Section 5 and disclosed them to the categories of recipients in Section 6. We did not sell or share personal information. California residents have the rights described in Section 8 and may appeal a denied request as described in Section 17.
Other U.S. states
Residents of states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Florida, Iowa, Delaware, New Hampshire, New Jersey, Nebraska, Minnesota, Maryland, Tennessee, Indiana, Kentucky, and Rhode Island) have the rights described above to the extent provided by their state’s law, including the right to appeal.
EEA, UK & Switzerland
The legal bases for our processing are described in Section 5. If we designate an EU Article 27 or UK representative, their contact details will be provided here.
16. Changes to This Policy
We may update this Policy from time to time. We will post the updated Policy with a new “Last updated” date and, for material changes, provide additional notice (for example, by email or in-product). Your continued use of the Service after the changes take effect constitutes acceptance.
17. Contact, Requests & Appeals
To exercise your rights or ask a question, contact us at hey@superintel.app, or write to Superintelligence, Inc., [Company mailing address — to be completed]. We will verify your identity before responding and may ask for additional information. You may use an authorized agent where the law permits.
Appeals. If we decline your request, you may appeal by replying to our decision or emailing hey@superintel.app with the subject “Privacy Appeal.” If your appeal is denied, you may contact your state attorney general or, in the EEA/UK, your supervisory authority or the ICO.