Privacy Policy

Last updated: May 2026

🔒

Your writing is never used to train AI models. Ever.

Your manuscripts, outlines, and generated content are yours alone. We do not share, sell, or feed your creative work to any AI training pipeline — our own or any third party's.

1. Who We Are

Moneditor is an AI-assisted book writing and KDP publishing tool. References to "Moneditor", "we", "us", or "our" in this policy refer to the Moneditor service and its operators. Questions? Email privacy@moneditor.com.

2. Data We Collect

  • Account data — name and email address you provide at signup.
  • Content data — book projects, chapters, outlines, and notes you create inside the app. This data is stored securely and is never used for AI training.
  • Usage data — writing session lengths, word counts, and feature interactions used to calculate your analytics dashboard. Not sold or shared.
  • Payment data — billing is handled by Stripe. We store only a Stripe customer ID; we never see or store raw card numbers.
  • Technical data — IP address, browser type, and cookie identifiers for authentication and security.

3. How We Use Your Data

  • To create and manage your account.
  • To deliver the AI writing and KDP preparation features you request.
  • To process subscription payments via Stripe.
  • To show you your personal writing analytics (streaks, word counts, goal progress).
  • To send transactional emails (e.g. password reset, billing receipts). We do not send marketing emails without your explicit opt-in.
  • To diagnose errors and improve the service through aggregate, anonymised analytics.

4. AI and Your Content

When you use AI features, your text is sent to third-party AI providers (OpenAI, Anthropic, or OpenRouter) solely to generate the response you requested. We have Data Processing Agreements in place with these providers where available. When you supply your own API key (BYOK mode), the key is encrypted in storage and decrypted on the server only to send the AI request you initiated.

5. Data Sharing

We do not sell your personal data. We share data only with:

  • Supabase — database and authentication hosting.
  • Stripe — payment processing.
  • AI providers — strictly for in-session generation as described above.
  • Law enforcement — only when legally required.

6. Data Retention & Deletion

Your data is retained for as long as your account is active. You can delete your account and all associated content at any time from Settings. Upon deletion, your content is purged from our database within 30 days. Anonymised, aggregate analytics may be retained indefinitely.

7. Your Rights

Depending on your jurisdiction you may have the right to access, correct, export, or delete your personal data; to restrict or object to processing; and to withdraw consent. To exercise any right, email privacy@moneditor.com. We will respond within 30 days.

8. Security

All data is encrypted in transit (TLS) and at rest. API keys you store are individually encrypted with AES-256-GCM before being written to the database. We follow security best practices and conduct periodic reviews.

9. Changes to This Policy

We may update this policy occasionally. Material changes will be communicated via email and an in-app notice at least 14 days before taking effect.

10. Contact

privacy@moneditor.com