PlutoPro
Log inGet Started
PlutoPro
What is itHow It WorksPricingFAQPrivacyTerms

© 2026 PlutoPro. All rights reserved.

Legal

Privacy Policy

PlutoPro (“we,” “us,” or “our”) operates the PlutoPro platform at plutopro.ai (the “Service”). This Privacy Policy explains how we collect, use, share, and protect your information when you use our Service.

By using PlutoPro, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect your name, email address, and authentication credentials managed through our auth provider (Supabase Auth). If you sign up via a third-party provider (e.g., Google), we receive the profile information you authorize.

1.2 Store and Product Data

When you connect an ecommerce store (Shopify, Etsy, or Amazon), PlutoPro imports product data including titles, descriptions, prices, images, and metadata. This data is used solely to generate content on your behalf. Store connection credentials (OAuth tokens) are encrypted at rest using AES-256-GCM and stored in our database.

1.3 Google Drive Data

If you connect Google Drive, we access only the specific folders you authorize. We import image metadata (filenames, dimensions) and image content for the purpose of mapping assets to your products. We do not access other files in your Google Drive.

1.4 Content Interaction Data

We collect your interactions with generated content — approvals, rejections, edits, and regeneration instructions — to improve content quality over time through our learning system. These signals are stored per-brand and are never shared across accounts.

1.5 Payment Information

Payment processing is handled entirely by Stripe. We do not store credit card numbers, bank account details, or other sensitive financial information on our servers. We receive only a confirmation of your subscription status and billing metadata from Stripe.

1.6 Usage and Log Data

We automatically collect standard log data including IP addresses, browser type, pages visited, and timestamps. We use analytics tools (PostHog) to understand how the Service is used and to improve the product. We use Sentry for error monitoring and crash reporting.

2. How We Use Your Information

We use the information we collect to:

  • Provide the Service — import your products, generate social media content, and deliver drafts for your review
  • Improve content quality — use your feedback signals (approvals, edits, rejections) to learn your brand preferences and generate better content over time
  • Process payments and manage your subscription through Stripe
  • Send transactional emails (account confirmations, billing receipts, sync notifications)
  • Monitor and improve the reliability, security, and performance of the Service
  • Respond to your support requests and communicate with you about the Service

We do not use your product data, store data, or generated content to train AI models. Your data is processed solely to deliver the Service to you.

3. Third-Party Services

PlutoPro integrates with the following third-party services to deliver the platform. Each has its own privacy policy:

  • Supabase — database hosting and authentication
  • Anthropic (Claude API) — AI text generation for content drafts, product knowledge, and brand intelligence
  • fal.ai — AI image generation for content visuals
  • Stripe — payment processing and subscription management
  • Vercel — application hosting and deployment
  • PostHog — product analytics
  • Sentry — error monitoring and performance tracking
  • Trigger.dev — background job processing

We share only the minimum data necessary for each service to function. For example, Anthropic receives product descriptions and brand context to generate content, but does not receive your payment information or account credentials.

4. Data Security

We take the security of your data seriously and implement industry-standard measures:

  • Store connection credentials (OAuth tokens) are encrypted at rest using AES-256-GCM encryption
  • All data in transit is encrypted via TLS/HTTPS
  • Database access is controlled through Row-Level Security (RLS) policies ensuring account-level data isolation — your data is never accessible to other users
  • We maintain audit logs of significant actions for security monitoring (retained for 90 days)
  • Application infrastructure is hosted on Vercel and Supabase with enterprise-grade security controls

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Specifically:

  • Account data — retained while your account is active
  • Product and content data — retained while your account is active; deleted upon account deletion
  • Audit logs — automatically deleted after 90 days
  • Analytics data — retained per PostHog and Sentry default retention policies

When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required by law to retain certain records.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you
  • Correction — request correction of inaccurate personal data
  • Deletion — request deletion of your personal data
  • Export — request a portable copy of your data
  • Objection — object to certain types of processing

To exercise any of these rights, contact us at support@plutopro.ai. We will respond within 30 days.

7. Cookies

PlutoPro uses essential cookies required for authentication and session management. We also use analytics cookies (PostHog) to understand how the Service is used. You can control cookie preferences through your browser settings.

We do not use advertising cookies or sell data to advertisers.

8. Children's Privacy

PlutoPro is not directed to children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

9. International Data Transfers

Your data may be processed and stored in the United States and other countries where our service providers operate. By using PlutoPro, you consent to the transfer of your data to these locations. We ensure appropriate safeguards are in place for international transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. For significant changes, we will notify you via email.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

support@plutopro.ai