Privacy Policy
Effective: June 19, 2026 | Last updated: June 19, 2026
This Policy explains how SnapGPT ("SnapGPT," "we," "us," or "our") collects and uses personal information through snapgpt.me, our browser extension, and related services (together, the "Service"). SnapGPT is the controller of personal information described here. This Policy is a notice, not a request for consent and not part of our contract with you.
Important: Content you submit may contain personal, confidential, educational, or other sensitive information. Do not submit information you are not authorized to share. SnapGPT is independent and is not affiliated with or endorsed by any AI model provider, browser maker, school, or testing organization.
1. Information We Collect
Information you provide
- Account information: email address, display name, account identifier, password-related authentication data, verification status, sign-in method, and account creation and sign-in times. If you use a third-party sign-in option, we receive the account details that provider makes available.
- User content: prompts, selected text, screenshots, images, files, chat messages, AI responses, feedback, study-set prompts and cards, quizzes, answers, scores, and related metadata. A screenshot can include anything visible in the captured area, including information from another website. The extension captures or sends page content only when you invoke a capture, selection, or analysis feature.
- Support and communications: messages you send us and information needed to respond.
- Subscription information: plan, billing cycle, transaction and checkout identifiers, subscription and payment status, customer identifier, and billing email. Our payment processor collects payment-card and billing details directly; we do not receive full card numbers.
Information collected automatically
- Usage and device data: pages viewed, features used, clicks, dates and times, referring page, browser and device type, operating system, language, approximate location derived from IP address, IP address, error and performance data, model selected, response time, token usage, quota use, and subscription-management activity.
- Website session recordings: on website pages where the recorder is active, we record how the page is displayed and used, including navigation, clicks, scrolling, typed input, console and technical events, and page or network performance. Email fields are configured to be obscured, but a recording may still contain account identifiers or other personal information displayed or entered on a page. We associate recordings with signed-in users using email, account ID, display name, verification status, account dates, plan status, and quota information.
- Browser storage: the website and extension store authentication tokens, email, the most recent captured image, selected model, interface preferences, feature settings, and migration flags on your device. Website storage also remembers chat and interface preferences. This data remains until it expires, is overwritten, or you clear browser/extension data.
2. How We Use Information
- provide AI analysis, chat, image generation, web search, code execution, study sets, quizzes, and other features you request;
- create and secure accounts, authenticate users, remember settings, save content, and enforce quotas;
- process subscriptions, provide the billing portal, prevent fraud, and keep financial records;
- operate, troubleshoot, secure, measure, and improve the Service and AI response quality;
- review selected interaction logs and submitted content through staff-accessible operational tools for debugging, abuse prevention, and quality assurance;
- measure website use, sign-ups, purchases, and advertising performance; and
- comply with law, enforce our Terms, and protect users, SnapGPT, and others.
3. When We Disclose Information
We disclose information only as described below. The providers involved can change as our infrastructure or available models change.
- AI and feature providers: prompts, conversation context, screenshots, images, files, and technical instructions go to third-party model, image-generation, web-search, documentation-search, and secure code-execution providers when needed to perform a request. A selected provider may use its own subprocessors.
- Cloud and account providers: account, content, usage, authentication, database, storage, hosting, content-delivery, and security data go to companies that operate our infrastructure.
- Operational logging and session replay: submitted content, AI output, email, browser, usage metrics, website interactions, and technical data go to providers that host our staff-accessible logs and website replay system.
- Payments: account, contact, plan, checkout, and transaction information goes to our payment processor, banks, and payment networks.
- Analytics and advertising measurement: device and online identifiers, website activity, referring information, account events, purchase value, plan, transaction ID, and—in some conversion events—email and account ID go to analytics, tag-management, and advertising measurement providers. They may combine this information with data from other services under their own policies.
- Legal and safety: we may disclose information when reasonably necessary to comply with law or legal process, protect rights and safety, investigate abuse or fraud, or enforce agreements.
- Business transfers: information may be reviewed or transferred during financing, due diligence, reorganization, bankruptcy, or a sale of some or all of our business, subject to appropriate safeguards.
We do not sell personal information for money. Our use of analytics and advertising measurement may be treated as a "sale," "sharing," or targeted advertising under some U.S. state privacy laws even though no money is exchanged. See Section 10.
4. AI Processing and Human Access
AI output is generated from content you submit and conversation context. Providers may temporarily process that content and related technical data to return the output, prevent abuse, and maintain their services. SnapGPT staff may access logged interactions and content when needed to investigate a problem, address abuse or security, respond to your request, or perform quality assurance. Do not rely on the Service for decisions that produce legal or similarly significant effects. We do not use solely automated processing to make such decisions about you.
5. Browser Extension Permissions
- All websites and active tab: display the extension interface, detect user-selected page content, and capture the active tab when you request analysis. The permission allows broad access, but the extension is not designed to transmit general browsing history or continuously capture pages.
- Storage: keep authentication state, the last capture, model choice, and preferences on your device.
- Context menus: offer right-click analysis actions.
- Identity: support third-party sign-in.
- Offscreen documents and alarms: maintain authentication and perform background tasks needed for requested features.
SnapGPT's use of information received from Google APIs adheres to the Chrome Web Store User Data Policy, including its Limited Use requirements. Extension data is used or transferred only to provide or improve the extension's user-facing purpose, for security, to comply with law, or as otherwise permitted by that policy; it is not used for personalized advertising or credit decisions.
6. Cookies and Similar Technologies
We use browser storage, tags, and similar technologies for authentication, security, preferences, analytics, session replay, and advertising measurement. Essential technologies are required to provide the Service. On pages where nonessential analytics, replay, or advertising technologies are enabled, they may load when the page loads. You can limit them through browser controls; blocking them may affect functionality.
7. Legal Bases for Europe and the United Kingdom
If European or UK data-protection law applies, our legal bases are:
- Contract: account administration and the features, content processing, subscriptions, and support you request.
- Legitimate interests: securing, debugging, and improving the Service; preventing abuse; basic service measurement; and protecting legal rights, balanced against your rights.
- Consent: nonessential cookies or similar technologies and other processing where we ask for consent. You may withdraw consent at any time without affecting prior processing.
- Legal obligation: tax, accounting, compliance, and valid legal requests.
8. Retention
We keep information only as long as reasonably necessary for the purpose collected. Account profiles, saved chats, study materials, quizzes, and related content generally remain while your account is active or until you delete them or request account deletion. Local extension data remains until it expires, is overwritten, or is cleared. Payment and transaction records may be kept for the period required by tax, accounting, chargeback, and financial laws. Operational logs, submitted-content logs, session recordings, and backups are kept according to security, debugging, quality, and backup needs and then deleted or de-identified. We may retain information longer when required by law, needed to resolve disputes, or necessary for security or abuse prevention.
9. International Transfers and Security
SnapGPT and many providers process information in the United States and other countries, which may have different data-protection laws. Where required, we rely on adequacy decisions, approved contractual clauses, or another lawful transfer mechanism. We use administrative and technical safeguards designed to protect information, including encrypted transport and access controls. No system is completely secure.
10. Your Privacy Choices and Rights
Depending on where you live, you may have rights to access, obtain a portable copy of, correct, delete, or restrict processing of personal information; object to processing; withdraw consent; and appeal a denied request. European and UK users may complain to their local data-protection authority. You may delete individual chats in the Service, manage your subscription from the dashboard, clear local data through your browser, and uninstall or disable the extension.
To exercise a privacy right, email [email protected] with the subject "Privacy Request." State your request and the account email involved. We may verify your identity and may deny or limit a request where permitted by law. Authorized agents may submit requests where applicable; we may request proof of authority. We will not discriminate against you for exercising a privacy right.
California and other U.S. state disclosures
In the preceding 12 months, we collected the categories described in Section 1: identifiers; customer records and subscription information; commercial information; internet or electronic-network activity; approximate location; audio, electronic, or visual information; education-related user content; account credentials; inferences reflected in AI output; and other information you submit. We collected them from you, your device, sign-in providers, payment providers, and service providers, and used and disclosed them for the purposes and to the recipient categories in Sections 2 and 3.
During that period, we did not sell personal information for money. We disclosed all of those categories for business purposes to the service-provider categories in Section 3 as relevant to their work. Analytics and advertising measurement may constitute sharing or targeted advertising involving identifiers, commercial information, and internet or electronic-network activity under some state laws.
We do not knowingly sell or share the personal information of anyone under 16. We do not use sensitive personal information to infer characteristics about you. If applicable law treats our analytics or advertising measurement disclosures as a sale, sharing, or targeted advertising, you may opt out by emailing [email protected] with the subject "Opt Out of Sale/Sharing." You may appeal a denied request by replying to our decision.
11. Children
The Service is not directed to children under 13, and we do not knowingly collect their personal information. You must be at least 13 to use the Service. If you are under the age of legal majority where you live, a parent or legal guardian must authorize your use and any purchase. Schools or organizations using the Service must obtain required permissions and may contact us about appropriate data terms. If you believe a child under 13 provided information, contact us so we can delete it.
12. Changes and Contact
We may update this Policy as practices or laws change. We will post the revised version and update the date; when required, we will provide additional notice or obtain consent. Questions and privacy requests may be sent to [email protected].