Privacy Policy

1. Personal Information We Collect

While using our Services, we may ask you to provide certain personally identifiable information. For example, we collect information when you create an account, submit an AI tool listing, make a purchase, request customer support, or otherwise communicate with us. The types of information we may collect include:

• Basic user information such as your name, email address, and profile photograph
• Account credentials (username and encrypted password)
• Business or company information where applicable
• Communication records when you contact our support team
• Usage data including pages visited, features used, and interaction logs
• Technical data such as IP address, browser type, device identifiers, and operating system
• Any other information you choose to provide voluntarily

We do not collect sensitive financial information from you directly (such as your payment card number, expiration date, or security code). All payments to us are handled via our third-party payment processor, Razorpay. Razorpay collects and processes payment information in accordance with their own privacy policy. We refer you to their Privacy Statement at razorpay.com/privacy.

2. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve our Services
• To process transactions and send related information, including purchase confirmations and invoices
• To send technical notices, updates, security alerts, and support messages
• To respond to your comments, questions, and requests
• To communicate with you about products, services, offers, and promotions
• To monitor and analyse usage trends and activities in connection with our Services
• To detect, investigate, and prevent fraudulent transactions and other illegal activities
• To personalise and improve your experience on our platform
• To comply with legal obligations

3. Data Security

We take reasonable and appropriate technical and organisational measures to help protect information about you from loss, theft, misuse, unauthorised access, disclosure, alteration, and destruction. These measures include encrypted data transmission (HTTPS/TLS), access controls, and regular security reviews.

However, no internet or email transmission is ever fully secure or error free. In particular, email sent to or from the Services may not be fully secure. Therefore, you should take special care in deciding what information you send to us via email or other unencrypted channels.

4. Cookies & Tracking Technologies

We use cookies and similar tracking technologies (such as web beacons and pixels) to track activity on our Services and hold certain information. Cookies are small data files stored on your device. We use the following categories of cookies:

• Strictly Necessary Cookies: Required for the operation of our website, including authentication and security.
• Performance & Analytics Cookies: Help us understand how visitors interact with our website (e.g., Google Analytics) so we can improve our Services.
• Functional Cookies: Allow us to remember your preferences and personalise your experience.
• Targeting & Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services. For more information about managing cookies, please visit allaboutcookies.org.

5. Data Retention

We retain your personal information for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine retention periods include:

• The duration of your active account and ongoing use of our Services
• Our legal obligations to retain data under applicable law (including Indian IT Act 2000 and rules thereunder)
• Whether retention is advisable in light of our legal position (e.g., statutes of limitation, litigation, or regulatory investigations)

When your personal information is no longer required, we will securely delete or anonymise it. Account data is typically retained for up to 3 years after account closure, and transaction records are retained for up to 7 years for accounting and legal compliance purposes.

6. Third-Party Services

We may share your information with third-party vendors and service providers that perform services on our behalf, such as payment processing, data analytics, email delivery, hosting services, and customer service. The key third-party services we use include:

• Razorpay — Payment processing. Your payment data is governed by Razorpay's Privacy Policy at razorpay.com/privacy.
• Google Analytics — Website usage analytics. Data is anonymised where possible and governed by Google's Privacy Policy.
• Supabase / Cloud Hosting Providers — Secure cloud infrastructure for data storage and application hosting.

We do not sell, trade, or rent your personal information to third parties for their own marketing purposes. We may share aggregated, non-personally identifiable information publicly and with our partners.

We may also disclose your information if we believe disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements.

7. Your Rights & Choices

Depending on your location, you may have the following rights with respect to your personal information:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request that we correct inaccurate or incomplete personal information.
• Deletion: Request that we delete your personal information, subject to certain exceptions.
• Portability: Request that we transfer your personal information to another service provider in a structured, machine-readable format.
• Opt-Out: Unsubscribe from our marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us directly.
• Withdraw Consent: Where we process your data based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing prior to withdrawal.

To exercise any of these rights, please contact us at support@ailiststack.com. We will respond to your request within 30 days.

8. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information promptly. If you believe we might have any information from or about a child under 18, please contact us at support@ailiststack.com.

9. International Data Transfers

Your information may be transferred to, and maintained on, computers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ from those of your jurisdiction. If you are located outside India and choose to provide information to us, please note that we transfer the data to India and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at: