Privacy Policy

Last updated: June 27, 2024

Responsible for Data Protection (DPO):

Toni Engelhardt (c/o toni@promptmetheus.com)


This Policy has been designed to comply with the General Data Protection Regulation (GDPR).

The following outlines which general and personal data we collect from you and how it will be stored, processed, and shared with third parties.

Please read it carefully!

Personal data we collect about you

When you use and interact with Promptmetheus we may collect and process the following personal data about you:

  • Information that you provide by filling out forms on our site (for instance when you sign up) will be stored in our database and/or CRM.
  • When you sign up on our platform we automatically create a user account for you and store your email address and a hash (according to NIST recommendation) of the password, in case you provide one, in our database. All information that you add in your profile (e.g. name) is also stored together with your account and can be updated in the profile settings to keep it accurate.
  • If you contact us via phone, chat, or email, we may keep a record of the correspondence.
  • Information about the device which you use to access Promptmetheus, i.a. operating system, browser type, and mobile network information.

General data we collect from you

All data that you add anywhere in the app that is not personal data (e.g. prompts, datasets, embeddings, etc.) will be stored in our databases and can be accessed by Promptmetheus staff to maintain and improve the service, analyze usage, and provide support. Note that any personal data that you add via text- or file inputs, which are not specifically intended for personal data, will be regarded as general data (e.g. data you add via text- and data blocks). We do not share general data with third parties, except with the AI platform providers and as specified in the "Third Party Services" section.

Where we store your data

As of now we store logs and data you submit to Promptmetheus on Digital Ocean and Vercel cloud servers (please consult their Privacy Policies as well for more information), but might decide in the future to store or process it somewhere else for strategic or economic reasons (of course given an appropriate level of protection). By submitting data to our website, you agree to this potential transfer without further notice. We will take all steps reasonably necessary to ensure at all times that your data is treated securely and in accordance with this privacy policy. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal and general data, we cannot guarantee its security and strongly suggest you do not submit data that could harm you or others if exposed. Any data submission is at your own risk.

To avoid data loss we might periodically create backups of user data and logs and store those next to the cloud servers also on local devices controlled by Promptmetheus and its staff.

How we use your data

We will use your email address to communicate with you. If not specifically stated otherwise and given your explicit consent we do not share your email address with anyone, except if required by law. Communication with third party services outside of our page always goes through us.

When using Promptmetheus while you are logged in we might compile and store data about how you use the service, e.g. how many prompts you have created, how often you have executed them, aso. We process this data to generate general statistics to improve our service and to provide you with a better user experience.

We also process and analyze general data internally to analyze and improve the user experience.

Disclosure of information

We won't disclose any of your personal information without your prior confirmation (unless required by law). Please note however, that integrated third party services might very well do so. Please have a look at the "Third Party Services" section below for more information.

Server log files

In order to monitor usage and problems of this site we, Digital Ocean, and Vercel store so-called server log files, which your browser transmits automatically while using Promptmetheus. The collected information is generally not associated with personal data or other data sources. However, there might be exceptions in the case of suspected misuse or illegal actions.

The collected information might include:

  • Browser type / version
  • Operating system
  • Referrer URL
  • Hostname of the system that executes requests
  • Timestamps of requests

Cookies

Promptmetheus uses cookies to improve the user experience. A cookie is a small file that is stored on your device to save and retrieve information. Cookies are used mainly for user authentication, but might also be used to enhance user experience.

In order to delete cookies from your device, please refer to the documentation of your web browser.

Local storage

In addition to cookies, Promptmetheus uses your browser's localstorage to store UI state, device information, and certain settings on your device to improve your experience.

Third party services

Promptmetheus uses third party services from various providers (see below). Those services may also store cookies on your device and collect, store, process, and transmit general and personal data about you. Please refer to their websites for more information about their respective policies.

Gandi

Gandi is our domain- and email service provider. Email communication with us via the "promptmetheus.com" domain will be stored in Gandi mailboxes.

Please consult their Privacy Policy for more information.

Digital Ocean

We currently use Digital Ocean as our cloud service provider for backend services. This is where most of your personal and general data is stored if you choose to sign up. This only affects you if you register for an account or interact with one of our APIs.

Please consult their Privacy Policy for more information.

Vercel

We currently use Vercel as DNS- and cloud service provider to host all our frontends. Vercel therefore gets access to request logs and error logs of your visits and stores them in their databases. Some part of the authentication process might also be handled on Vercel servers, but besides that we do not store any personal or user-specific data on their infrastructure.

Please consult their Privacy Policy for more information.

Notion

We use notion as CRM to keep track of different types of user interactions, e.g. sales pipeline, support requests, customer feedback, etc. When you contact us via email or create an account your contact information might be stored in a Notion workspace. This data is stored on Notion infrastructure.

Please consult the Notion Privacy Policy for more information.

Stripe

We currently use Stripe as our payment provider. When you subscribe to one of our plans via the Stripe Checkout or Stripe Billing portals we create a Stripe customer profile for you. Stripe stores and processes the data that you provide in those portals. Personal and sensitive payment information like billing address, credit card details, etc. are stored exclusively on secure Stripe infrastructure, we only store Stripe customer-, subscription-, and product IDs in our databases and link them to your user account.

Please consult the Stripe Privacy Policy for more information.

Sentry

We use Sentry to monitor performance and to investigate problems. Sentry collects meta data about your device and tracebacks of warnings and errors that occur when you use Promptmetheus.

Additionally, we use Sentry to capture session replays when errors occur in the app to better understand the context of the error. Sensitive user data is redacted in those recordings.

Please consult their Privacy Policy for more information.

Plausible

We use privacy-friendly analytics provided by Plausible to improve our services. Plausible is GDPR compliant out of the box and doesn't use cookies to trace you around the web.

Please consult their Privacy Policy for more information.

PostHog

We use PostHog to improve the user experience. PostHog collects various in-app usage data, including user interactions, device information, and IP addresses. The collected data is stored and processed on their cloud infrastructure.

PostHog is only installed in Promptmetheus apps. The tracking script is not loaded outside of the login boundary.

Please consult their Privacy Policy for more information.

Clarity

We use Microsoft Clarity to capture how users interact with Promptmetheus through behavioral metrics, heatmaps, and session replay. Most of the personal and general data you add to Promptmetheus is redacted in these sessions (prompt fragments, test data, outputs, etc.), but some might be visible (e.g. prompt and block names).

You can completely opt-out of Clarity by following the instructions here.

Some Promptmetheus usage data is captured via first and third-party cookies and other tracking technologies to determine service popularity, online activity, and to optimize the user experience. This data is shared with Microsoft and stored on their servers.

Clarity is only installed in Promptmetheus apps. The tracking script is not loaded outside of the login boundary.

Please consult the Microsoft Privacy Statement for more information.

Rewardful

We use Rewardful to track affiliate links from our Affiliate Program. When you follow an affiliate link from our partners, Rewardful will store a cookie on your system to attribute potential purchases.

Please consult the Rewardful Privacy Policy for more information.

LLM providers

When you execute prompts, we send the prompt and related data to the selected provider. The provider might store and process this data and meta information about the requests.

Please consult the related policies of the respective providers for more information:

Access to information

You have the right to access any personal information we have stored about you. To request the data please send a short email to contact@promptmetheus.com so that we can compile it for you.

Deletion of information

You can easily delete your user account inside the app and therewith all personal information we store about you. Alteratively, you can also send a request to contact@promptmetheus.com if you want us to do it for you. Exempt from the deletion are our database backups that are stored on our servers and backup devices. Those updates are not shared with anyone (except if required by law).

Changes to this policy

Any changes that we make to this policy in the future will be posted and logged here and, if you have a user account and the changes directly affect you, sent to you by email. Some changes might only affect you when you use certain features. You will be asked to consent to those changes at the time you start using those features.

  • June 15, 2023:
    Original version.
  • June 17, 2023:
    Add redaction and opt-out notice to Microsoft Clarity section.
  • August 31, 2023:
    Addition of Gandi and clarifications.
  • September 18, 2023:
    Addition of Anthropic and Cohere to third parties.
  • September 19, 2023:
    Addition of NLP Cloud, AI21 Labs, and Aleph Alpha to third parties.
  • September 30, 2023:
    Addition of Stripe as payment provider.
  • October 18, 2023:
    Addition of Deep Infra to third parties.
  • December 9, 2023:
    Addition of Google AI and Perplexity to third parties.
  • March 15, 2024:
    Addition of Notion, Mistral, and Groq to third parties.
  • May 5, 2024:
    Add note about Sentry session reply.
  • June 27, 2024:
    Addition of PostHog to third parties.
  • July 18, 2024:
    Addition of Rewardful to third parties.

Questions?

If you have any questions about the above policy, please contact us at

contact@promptmetheus.com

Promptmetheus © 2023-2024.
All rights reserved.