idea genesis

idea genesis

Privacy Policy

Your privacy and data security are our top priorities

Last updated: June 1, 2026

Information We Collect

  • Account Information: When you create an account or sign in with Google or Microsoft, we store your unique account identifier, authentication method, email address (when available), account status, and login timestamps.
  • Age Check: When you create an account on your own, we ask you to pick an age range once so we can confirm you are 13 or older. We don't save your answer.
  • Document Processing: We temporarily store document metadata and content for processing for 30 minutes after upload. URL-extracted text is stored for 60 minutes after extraction.
  • Audio and Video Files: When you upload audio or video files for transcription, we temporarily process these files to extract and transcribe the audio content. Raw audio and video files are deleted after processing is complete. Transcript text is saved in your activity history so you can view and reuse it unless you delete it or request account deletion.
  • Activity History: We store a record of your interactions including prompts, AI-generated responses, timestamps, IP address, and the type of service used (vocabulary generation, structured data extraction, document Q&A, schema generation, text extraction, or audio transcription). Activity history is retained for all users, including guests, for up to one year. After that, records are automatically deleted.
  • Operational Logs: To run the platform reliably, we record limited service logs — things like which API route was hit, internal record IDs, the action you triggered, error categories, service health, and the outcome of sign-in or payment steps. Unlike your Activity History (described above), these operational logs are not meant to hold the content of your work — they are designed to exclude document text, prompts, AI responses, tokens, raw URLs, email addresses, and IP addresses, and we run an automated filter as an added safeguard that catches common sensitive patterns. Logs may include opaque identifiers such as payment processor object IDs and content or file hashes, which let us trace a request through our systems without identifying you. Our hosting provider also keeps separate access logs (your IP, the URL you requested, your browser, and the response status) for security and uptime monitoring.
  • Shared Results: When you share extraction results, we generate a unique sharing token and store the shared data so recipients can access it.
  • User Preferences: We store minimal preference data including theme settings, language preferences, notification settings, and ad-cookie choices saved in your browser.
  • Billing Information: For paid subscriptions, our payment processor (Stripe) securely handles your payment information. We only store your customer reference, subscription details, and plan information.

How We Use Your Information

  • Service Provision: To authenticate users, process documents, provide AI-powered vocabulary extraction, structured data extraction, document Q&A, schema generation, and audio/video transcription.
  • Activity History: Your prompts and responses are stored to provide access to your previous results, enforce rate limits (which vary by subscription tier), and prevent abuse.
  • Sharing: When you share extraction results, we provide access to the shared data via unique tokens. Recipients can view but not modify your results.
  • No AI Training by Us: We do not use your documents, prompts, or responses to train models operated by idea genesis. Your intellectual property remains yours.
  • No Sale of Account or Content Data: We do not sell your account data, document content, prompts, or responses. If you see ads, ad partners may process browser or device information as described in Cookies and Tracking.
  • Account Management: To maintain user accounts, process subscription payments, and provide customer support.
  • Service Improvement: We analyze aggregated, anonymized usage patterns to improve our platform.

Data Storage and Security

  • Document Retention: Documents are stored temporarily in secure cloud storage for 30 minutes after upload. URL-extracted text is stored temporarily for 60 minutes after extraction.
  • Audio and Video Processing: Uploaded audio and video files are processed in secure cloud infrastructure and deleted after transcription is complete. Transcript text is retained as part of your activity history.
  • Activity History Retention: Activity history is retained for up to one year so you can revisit past results, see your transcripts, and so we can enforce rate limits and detect abuse. Records older than one year are deleted automatically. When you delete your account, your account-linked activity history is removed immediately. We may keep limited pseudonymous security records for a short time after account deletion to prevent abuse.
  • Operational Log Retention: We keep production logs for up to 30 days — some service logs use shorter windows. Development and staging logs are kept for shorter periods. After that, our cloud provider deletes them automatically under its retention policy.
  • Shared Results: Shared extraction results are stored as long as the sharing token remains active.
  • Security Safeguards: We use reasonable technical and organizational safeguards designed to protect your information, including encryption, access controls, and secure authentication where appropriate for the type of data and system.
  • Breach Notification: If we confirm a personal data breach affecting your information, we will notify affected users as required by applicable law. For U.S. residents, our baseline is notice within 30 days of confirmation. Where GDPR applies, we will notify the relevant supervisory authority within 72 hours of becoming aware of a reportable breach and notify affected users without undue delay when GDPR Art. 34 requires it. To report a suspected vulnerability, email support@ideagenesis.ai with the subject prefix [SECURITY].
  • Payment Security: All payment processing is handled by our PCI DSS compliant payment processor, Stripe. We never store your credit card information directly.

Age Requirements and Children's Privacy

  • You must be at least 13 to create an idea genesis account on your own.
  • We don't knowingly collect personal information from children under 13 through accounts they create on their own. If we learn an account belongs to a child under 13, we delete the account and any data tied to it.
  • We're working on parent-managed and school-managed access for younger learners. It isn't available yet.
  • Parents or guardians who believe a child under 13 has shared personal information with us can contact support@ideagenesis.ai.

Data Sharing

  • No Sale of Account or Content Data: We do not sell your account data, document content, prompts, or responses. Free-tier ads may involve ad partners processing browser or device information as described in Cookies and Tracking.
  • Essential Service Providers: We share the minimum data needed with service providers that host the app, send account emails, process payments, extract URL content, and provide AI features. See our service provider list for provider details.
  • AI Processing: We use third-party AI providers for vocabulary definitions, structured data extraction, schema generation, Q&A responses, embeddings, and audio transcription. We send only the content needed to provide the feature you request. Current AI providers are listed on our sub-processor page.
  • Legal Requirements: We may disclose user data if required by U.S. law enforcement or legal process.

Your Rights and Choices

  • Data Access and Export: You can download a copy of your account data — including your account details, activity history, prompts and responses, uploaded documents, chats, and extraction results — as a downloadable archive from your profile page. The download link is available for a limited time after the archive is generated.
  • Data Deletion: You can permanently delete your account from your profile page. This removes your account data, activity history, prompts, responses, documents, chats, and schedules.
  • Guest Usage: You can use our service without creating an account, though activity logs are still collected as described above.
  • Subscription Management: You can cancel your subscription at any time through our billing portal. Your subscription remains active until the end of your billing cycle.

Cookies and Tracking

  • Authentication Storage: We store authentication tokens in your browser so you can stay signed in across tabs and browser restarts. These tokens are used only to maintain your session and are removed when you sign out, when the app detects an expired or invalid session, or when you clear site data.
  • Theme Preference Storage: We save your theme choice in your browser. If you choose light or dark mode, we also set a small first-party cookie for up to one year so pages load with the right colors before JavaScript runs. This does not identify you and can be cleared from your browser settings.
  • Age Check Cookie: If you use idea genesis without an account and confirm you are 13 or older, we save a small browser cookie so we don't ask again every time you do something. The cookie does not contain your age.
  • Sign-In Provider Cookies (AWS Cognito): When you sign in or create an account, we redirect you to AWS Cognito's hosted sign-in pages. AWS may set cookies on its own domain to complete the sign-in flow. These cookies are strictly necessary for authentication, are not accessible to idea genesis, and are governed by AWS's privacy notice.
  • Payment Processor Cookies (Stripe): When you start a paid subscription or manage billing, we redirect you to Stripe Checkout or the Stripe customer portal. Stripe may set cookies on its own domain to process payments, prevent fraud, and remember your billing session. These cookies are strictly necessary for payment, are not accessible to idea genesis, and are governed by Stripe's privacy notice.
  • No Product Analytics Tracking: We do not use Google Analytics or Facebook Pixel for product analytics.
  • Limited Advertising: Free-tier users and guests may see ads to support the service. We only load Adsterra ad scripts if you allow ad cookies. Adsterra may use cookies or similar browser identifiers for ad delivery, measurement, and fraud prevention. If you decline ad cookies, we show basic first-party ads instead. Paid subscribers enjoy an ad-free experience. We do not share account data or document content with advertising networks.

Updates to This Policy

  • Policy Changes: We may update this privacy policy from time to time to reflect changes in our practices or applicable laws.
  • Notification: We will notify users of significant changes through email or prominent notices on our platform.
  • Continued Use: Your continued use of our service after policy updates constitutes acceptance of the revised terms.

Questions About This Policy?

If you have any questions about this privacy policy, our data practices, or your privacy rights, please don't hesitate to contact us.

Contact Support