Privacy Policy
Last updated: December 28, 2025
TL;DR — The Quick Version
- We don't store your screen content. Selected regions are processed and discarded.
- We only collect what's necessary: email, usage counts, and payment info (via Stripe).
- We never sell your data. Period.
- You can delete your account and all associated data at any time.
1 Information We Collect
Account Information
When you create an account, we collect your email address and a securely hashed password. We use this to authenticate you and manage your subscription.
Usage Data
We track the number of Vision responses you've used to enforce plan limits. We do not track what content you analyze or store your queries.
Payment Information
Payments are processed by Stripe. We do not store your full credit card number. Stripe handles all payment data according to PCI-DSS standards.
Screen Content
When you select a region of your screen, that image is sent to our AI processing servers. The image is processed in real-time and is not stored. We do not retain, log, or have access to your screen content after processing.
2 How We Use Your Information
- To provide, maintain, and improve our service
- To authenticate your account and manage subscriptions
- To process payments through Stripe
- To send you important service updates (you can opt out of marketing)
- To enforce usage limits based on your plan
3 Data Sharing
We do not sell, rent, or trade your personal information. We only share data with:
- AI Providers: Screen content is sent to OpenAI for processing. OpenAI's API does not use customer data for training. See their API Data Usage Policy.
- Stripe: For payment processing. See Stripe's Privacy Policy.
- Resend: For transactional emails (verification, receipts). See Resend's Privacy Policy.
4 Data Security
We implement industry-standard security measures to protect your data:
- All data transmitted over HTTPS/TLS encryption
- Passwords hashed with bcrypt (never stored in plain text)
- JWT tokens for secure authentication
- Rate limiting to prevent abuse
5 Your Rights
You have the right to:
- Access: Request a copy of your personal data
- Rectification: Update or correct your information
- Deletion: Request deletion of your account and data
- Portability: Export your data in a standard format
To exercise these rights, contact us at support@lowlighter.app.
6 Data Retention
We retain your account information as long as your account is active. Usage data is retained for billing and analytics purposes. When you delete your account, we remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention).
7 Age Requirement
LowLighter is intended for users 18 years of age or older. By using the App, you represent that you are at least 18 years old. We do not knowingly collect personal information from anyone under 18. If you believe someone under 18 has provided us with personal information, please contact us immediately and we will delete such information.
8 Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through the App. Your continued use of the App after such modifications constitutes your acknowledgment of the modified policy.
9 Contact Us
If you have any questions about this Privacy Policy, please contact us:
LowLighter Privacy
support@lowlighter.app