PromptCard Privacy Policy

Effective date: May 2, 2026

PromptCard - Image to Prompt AI ("PromptCard", "we", "our", or "us") is a Chrome extension that lets users turn selected images and screenshots into prompt analysis for image generation workflows. This Privacy Policy explains what information we collect, how we use it, how we share it, and how users can contact us.

Information we collect

• Account information: email address and user identifier when a user signs in with email OTP or Google sign-in.
• Google sign-in data: Google user ID, email address, and basic profile information provided by Google for authentication.
• User-selected content: images or screenshots that the user explicitly chooses to analyze, together with generated prompt results and history entries.
• Service usage and billing data: credit balance, purchase status, refund status, and basic operational records needed to provide paid credits and prevent abuse.
• Local custom API settings: endpoint URL, model name, and API key that the user chooses to store in the extension. These custom API settings are stored locally in the user's browser.

How we use information

• To authenticate users and keep their PromptCard account available across sessions.
• To generate image-to-prompt analysis for images or screenshots selected by the user.
• To provide prompt history, credit balance, purchases, refunds, and account status features.
• To detect errors, prevent abuse, protect the service, and provide user support.

Google user data and Limited Use

PromptCard uses Google user data only for user-facing authentication features: sign-in, account identification, and account continuity. PromptCard does not sell Google user data, use Google user data for advertising, use Google user data to determine creditworthiness, or use Google user data to train AI models.

PromptCard's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy , including the Limited Use requirements.

How information is shared

• We do not sell personal information or Google user data.
• We may share limited information with service providers that help us operate PromptCard, such as authentication, database, hosting, model inference, payment processing, analytics, and error monitoring providers.
• Payment card details are processed by payment providers and are not stored by PromptCard.
• We may disclose information when required by law or to protect users, PromptCard, or the public.

Data retention

Account, credit, payment, refund, and prompt history records may be retained as long as needed to provide the service, comply with legal obligations, prevent abuse, resolve disputes, and maintain billing records. Local custom API settings remain in the user's browser until the user changes or deletes them.

Security

We use reasonable technical and organizational safeguards, including HTTPS, access controls, and authentication for cloud services. No method of transmission or storage is completely secure, but we work to protect user data against unauthorized access, misuse, and disclosure.

User choices and deletion requests

Users may stop using PromptCard, clear local extension data from their browser, or contact us to request deletion of account-related data where legally and technically possible. Some transaction records may be kept where required for billing, tax, fraud prevention, dispute handling, or legal compliance.

Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date above and make the revised policy available on this page.

Contact

For privacy questions or data deletion requests, contact ranbluo@gmail.com.