Effective Date: March 29, 2026
Last Updated: March 29, 2026
Introduction
Dr. Jonesy's AI Lab ("we," "us," "our," or "Company") operates the RACEprompt application and services. This Privacy Policy explains our information practices, how we collect, use, disclose, and safeguard your information when you use our application and services, including any mobile application versions.
We are committed to protecting your privacy and ensuring transparency about how your data is handled. This policy applies to all users of RACEprompt, regardless of subscription tier.
1. Information We Collect
Account Information
When you create an account, we collect:
- Name and email address
- Password (encrypted securely)
- Subscription tier and payment information
- Profile preferences and settings
Usage Information
We automatically collect information about your interactions with RACEprompt:
- Prompts you create and refine (stored in your Prompt Journal)
- Features you use and how frequently
- Device information (OS version, app version, device type)
- IP address and approximate location
- Analytics data via third-party services (Google Analytics, RevenueCat)
AI Interaction Data
When you use the Execute with AI feature:
- Your prompts and AI model responses are processed
- If using your own API key (BYOK), data is sent directly to the AI provider
- We log basic metadata about the interaction (timestamp, model used, success/failure)
- Response content is NOT stored on our servers when using BYOK
Analytics
We collect anonymized analytics data to improve the service:
- Feature usage patterns
- Performance metrics
- Error tracking
- Crash reports
2. How We Use Your Information
We use the information we collect for the following purposes:
- To provide, maintain, and improve RACEprompt services
- To authenticate your account and prevent fraud
- To process your subscription payments
- To send service-related announcements and updates
- To respond to your inquiries and support requests
- To personalize your experience and recommend features
- To analyze usage patterns and optimize performance
- To comply with legal obligations
3. Third-Party Services
RACEprompt integrates with third-party AI services and providers. Your data may be shared with:
- Anthropic (Claude): Prompts and API usage when you select Claude as your model
- OpenAI (ChatGPT): Prompts and API usage when you select GPT as your model
- Google AI (Gemini): Prompts and API usage when you select Gemini as your model
- RevenueCat: Subscription and payment processing
- Google Analytics: Anonymized usage analytics
- Cloudflare: Server infrastructure and DDoS protection
Important: When using BYOK (Bring Your Own Key), your API keys are stored securely and never transmitted to our servers. Only your prompts are sent to your selected AI provider.
4. Data Security
We implement comprehensive security measures to protect your data:
- Encryption: All data encrypted with AES-256 at rest
- TLS/SSL: All data in transit encrypted with TLS 1.3
- Secure Authentication: Multi-factor authentication available
- API Key Storage: Keys stored in device Keychain (iOS) or Keystore (Android)
- Regular Audits: SOC 2 Type II compliance with annual audits
- Access Controls: Role-based access for team members
However, no system is completely secure. We encourage you to use strong passwords and enable two-factor authentication.
5. Your Data Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Right to access the personal data we hold about you
- Correction: Right to correct inaccurate or incomplete data
- Deletion: Right to request deletion of your data ("Right to be Forgotten")
- Portability: Right to request a copy of your data in a portable format
- Opt-out: Right to opt-out of marketing communications
To exercise any of these rights, contact us at me@drjonesy.com.
6. Children's Privacy
RACEprompt is not intended for users under 18 years old. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will delete such information immediately and terminate the child's account.
7. BYOK (Bring Your Own Key) Data Handling
When you use your own API keys:
- Your API keys are encrypted and stored securely on your device
- Keys are never transmitted to our servers
- Prompts are sent directly to your chosen AI provider
- Response content is not stored on our servers
- You maintain full control and ownership of your data
8. Team & Enterprise Data
For Team and Enterprise accounts:
- Team administrators can manage member access and data
- Shared prompts are stored on our servers with proper encryption
- Team data is segregated and access-controlled
- For Enterprise plans, on-premises deployment is available
9. Data Retention
We retain your data for as long as your account is active. Upon account deletion:
- Account information is deleted within 30 days
- Prompt journal is permanently deleted
- Billing records are retained for 7 years for tax compliance
- Analytics data is retained in anonymized form indefinitely
10. International Data Transfers
RACEprompt is hosted on Cloudflare servers in multiple geographic locations. By using RACEprompt, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.
11. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via email or through the app. Your continued use of RACEprompt after changes constitute acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy or our privacy practices, please contact us at: