RewritePal

RewritePal Privacy Policy

Last Updated: April 29, 2025

Introduction

RewritePal, Inc. ("RewritePal," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use the RewritePal website and related services worldwide, in compliance with applicable data protection laws (including the EU General Data Protection Regulation GDPR and the California Consumer Privacy Act CCPA).

RewritePal is a writing enhancement tool available globally, and we prioritize privacy by design – for example, our service does not require you to create an account or sign-up to use it, and we do not store the text content you submit on our servers. We only collect a minimal amount of data, as described below, primarily to improve the service.

Please read this Policy carefully to understand our practices. By using RewritePal, you acknowledge that you have read and agree to this Privacy Policy. If you do not agree with these practices, please discontinue use of our service. If you have any questions or concerns about our privacy practices, you can contact us using the information provided in the Contact Us section at the end of this Policy.

Information We Collect

We aim to collect the bare minimum of information necessary to operate and improve our tool. In particular, we do not collect any personally identifying information to use the core RewritePal service. Below are the categories of information we handle:

  • No Account Needed (No Required Personal Data): You do not need to provide your name, email, or any contact information to use RewritePal. Utilizing our site does not require any registration or login. We do not ask for personal details, and you can use the tool anonymously.
  • User Text Input: When you paste or enter text into RewritePal to be paraphrased or enhanced, that content is processed temporarily by our algorithms to generate the output. We do not store or save your submitted text after the processing is complete. In other words, once you receive the rewritten text, your original input is discarded and not retained on our servers, ensuring your writing remains confidential.
  • Analytics and Usage Data: We collect anonymized usage data to understand how our service is used and to help us improve it. This data may include non-personal information such as:
    • Usage Metrics and Interactions: which features or pages are used, frequency of tool usage, and other interaction data (e.g. button clicks).
    • Device and Technical Information: basic details like your browser type, operating system, device type, and screen size, as well as general location information (such as country or region, inferred from your IP address). This information is aggregated and does not identify you personally.
    • We use an analytics platform called PostHog to collect this usage data on our behalf. PostHog assigns a random anonymous user ID to your browser to distinguish unique visits, which is stored locally via a cookie or similar technology. These analytics cookies or local storage identifiers are only used to track usage statistics and do not contain personal information. We do not use any third-party advertising or tracking cookies.
    • All analytics data we collect is anonymized or pseudonymized. We do not link it to your identity (since we don't collect personal identifiers in the first place), and we configure our analytics only to gather data that helps us improve the service while respecting your privacy.
  • Voluntary Communications: If you choose to contact us (for example, by sending us an email at our support address), we will receive the information you provide. This may include your email address, name, or other contact details, and the contents of your message. We will use this information solely for the purpose of responding to you or addressing your requests. Providing this information is completely voluntary – if you never contact us, we will not have any of your personal contact information.

In summary, we do not collect any personal data by default when you use RewritePal. The only information we automatically collect is anonymized usage data for analytics. Any personal information (like an email address) is only obtained if you proactively reach out to us, and even then it's used only to assist you. We do not collect or monitor the content you are rewriting beyond the immediate processing needed to serve you.

How We Use Information

We use the limited information we collect for the following purposes:

  • To Provide and Operate the Service: First and foremost, we use the text you submit to produce the results you requested (rewritten or improved text). This is an automated process performed by our software. We handle your text input in memory during processing and do not retain it afterward. Additionally, any features you use (for example, selecting a tone or language) are executed locally in the application. No account is needed, so all core functionality is provided without needing personal details.
  • To Improve and Analyze the Service: We utilize anonymized usage data to understand how users interact with RewritePal and how well the tool is performing. For example, usage statistics and event data help us identify popular features, detect bugs or performance issues, and make informed decisions on new features or improvements. By analyzing this data, we can optimize the user experience (for instance, refining our rewriting algorithms or user interface based on what works best for our users). All such analysis is done on aggregate data, not on any identifiable personal information.
  • To Communicate with You: If you contact us with a question, feedback, or support request, we will use your contact information to respond and help you. For example, if you email us, we will reply to your email address and address the content of your message. We do not use your email for any marketing or unsolicited communication – we will only send you responses or information you specifically request. (Notably, since we do not require registration, we don't send newsletters or promotional emails at all.)
  • To Ensure Security and Prevent Misuse: We may use information (like IP address or activity logs) to maintain the security of our service, troubleshoot issues, and prevent abuse. For instance, we might monitor for unusual usage patterns that could indicate a bot or malicious actor attempting to overload the service. Any use of data for security is limited to protecting our service and our users, and we do not use it to identify individuals except as necessary to block abusive behavior (and in such cases, we typically identify a device or IP, not a person). This helps us keep RewritePal stable and secure for everyone.
  • To Comply with Legal Obligations: In the unlikely event that we are required by law to process or disclose certain data, we will use the information as needed to comply with valid legal processes, applicable laws, or governmental requests. For example, if we receive a court order or subpoena, or need to investigate fraud, we may be obligated to retain or provide certain information to authorities. In all cases, we will only disclose the minimum data necessary and only if required by law.

We do not use your data for any purposes other than those described above. In particular, we do not use it for advertising, profiling, or selling products to you. Our use of data is strictly limited to improving our service, communicating when you ask us to, ensuring the service works properly, and fulfilling legal requirements. Because we collect very little personal information, some of the above purposes may never actually apply to you (for example, if you never contact us and never misuse the service, we will simply never use any data in those contexts). But we include them here for completeness and transparency.

Data Sharing and Disclosure

RewritePal respects your privacy and limits the sharing of data with third parties. We do not disclose your information to others except in the few circumstances detailed below:

  • Service Providers (Analytics Processor): The primary third party we use is PostHog, our analytics service provider. PostHog processes anonymized usage data on our behalf to help us analyze how RewritePal is used. We have configured PostHog such that it does not receive any personally identifiable information from us – it only handles the usage statistics and device data mentioned earlier. PostHog is a privacy-conscious analytics platform that complies with GDPR and other privacy regulations. We have a data processing agreement in place with PostHog to ensure that they only use the data for our analytics purposes and protect it according to strict confidentiality and security standards. Aside from analytics, we might use basic web hosting or infrastructure services to run our website; those providers might technically process data (e.g., transiently handling IP addresses in server logs) but only as needed to operate the site. All such service providers are bound to protect your data and are not permitted to use it for their own purposes.
  • No Sale of Personal Data: We do not sell, rent, or trade any personal information to third parties. This includes not selling data for advertising or marketing purposes. In fact, as noted, we collect little to no personal data to begin with. This commitment applies to all users, including those in California: we do not and will not "sell" your personal information as defined under the CCPA. You will not see third-party advertisements on our site nor have your information shared with advertisers.
  • Legal Compliance and Protection: We may disclose information if we determine in good faith that such disclosure is necessary to comply with the law or legal process. For example, if required by a court order, subpoena, or other legal mandate, we might have to provide logs or other data we have. We may also disclose information if necessary to enforce our Terms of Service or to protect the rights, property, or safety of RewritePal, our users, or others. This could include sharing information with law enforcement or other authorities in the case of investigating fraud, security issues, or violations of law. We will only do this when legally obligated or when we believe it's absolutely necessary to prevent harm or illegal activity.
  • Business Transfers: If RewritePal (or substantially all of its assets) is involved in a merger, acquisition, bankruptcy, or sale of assets, user information may be transferred to the successor or acquiring entity as part of that transaction. This is a common practice in business transitions. If this were to happen, we would ensure that your information remains subject to confidentiality obligations and the promises made in this Privacy Policy (unless you're notified otherwise and consent to any new policy). We will notify users (for example, via a notice on our website) of any such change in ownership or control of personal information, if it occurs.
  • Aggregated or De-Identified Data: We may share information that has been aggregated or de-identified, so it no longer can be linked to any individual user. For instance, we might disclose overall usage statistics or trends (e.g., total number of texts rewritten, general usage growth over time) to illustrate the popularity or performance of our service. Another example would be showing a counter on our website for how many phrases have been improved using RewritePal (this number would be an aggregate that does not identify anyone). Such information contains no personal data and may be shared publicly or with partners. There are essentially no restrictions on aggregated data that cannot identify a person, since privacy laws generally do not apply to data that is not personally identifiable.

Aside from the scenarios above, we do not share your information with any other third parties. In particular, we do not disclose any user-provided text content to anyone (we don't even keep it ourselves after processing). We also do not share any email or contact info you provide, except with your consent or as necessary to service your request (for example, if we ever used an email service provider to send a response, which typically we handle internally). Rest assured that your information is never used for third-party marketing or profiling through our service. If in the future we ever need to share information in a way not covered here, we will update this Privacy Policy and, if required by law, obtain your consent.

Data Retention

We retain data only for as long as necessary to fulfill the purposes described in this Policy, and we follow principles of data minimization and storage limitation:

  • User-Submitted Text: **We do not retain** any text or content that you submit to RewritePal for processing. As noted earlier, when you input text to be rewritten, that text is used temporarily to generate the output and then it is immediately discarded from our active systems. It is not stored in our database or logs. This means that after your session, we have **no record of the exact text** you entered or the output generated, ensuring your writing stays private.
  • Analytics Data: Anonymized usage data collected for analytics may be retained for a period of time to allow us to analyze trends and improve our services. We generally keep usage analytics only as long as needed to compile reports and observe long-term patterns. Since this data does not identify individuals, retaining it poses minimal risk. However, we do not keep raw analytics data indefinitely. We periodically review and delete or anonymize older data that is no longer necessary for our analysis. In cases where analytics data is stored by our service provider (PostHog), we rely on their retention settings which we configure to align with our data minimization goals. PostHog is also GDPR-compliant in terms of allowing data deletion and setting limited retention.
  • Server Logs: When you visit our website, our web servers may automatically log certain information like your IP address, browser type, and the time of access. These server logs are generally used for debugging and security monitoring. We retain such logs for only a short duration (for example, a few weeks or months) unless we need to investigate a specific security incident. Typically, logs are automatically purged on a rolling basis. The IP addresses in these logs might be considered personal data under some laws, so we treat them carefully and ensure they are deleted when no longer needed. We do not use server logs to track users over time – they are only reviewed if necessary to troubleshoot technical issues or security events.
  • Communications: If you correspond with us (e.g., via email), we may retain that correspondence (including your email address and messages) for our records. This helps us manage ongoing inquiries or any follow-ups. We will keep these communications for as long as necessary to address your issue or request, and for a reasonable period thereafter in case you have additional questions. In general, once your inquiry is fully resolved, we may archive or delete the correspondence. Any personal information in it (like your email) will not be used for other purposes. If you prefer, you can request that we delete a support email thread, and we will do so unless we are required to keep it for legal reasons.
  • Legal Compliance: We may need to retain certain information for longer periods if required by law. For example, if any data is needed to comply with tax, audit, or other regulatory requirements, we will hold that data as long as the law prescribes. Additionally, if we are preserving data in connection with a legal case or investigation, we will retain it until it is no longer needed for that purpose. We base all such retention on legal obligations and will not keep personal data longer than mandated. In summary, we strive to keep data no longer than necessary. Anonymous usage data is kept only as long as it remains useful for legitimate analysis, and personal data (if any) is kept only to serve you or comply with law. Once data is no longer needed, we securely delete or anonymize it. Our systems and policies ensure that unnecessary data is routinely purged. If you have specific questions about our data retention practices for different types of data, you can contact us for more detail.

Data Security

We take the security of your data very seriously and implement appropriate measures to protect it. Even though we collect very little personal information, we apply robust security practices to all data in our custody:

  • Encryption: Our website is secured with HTTPS, which means any data you transmit to us (including your text input and any analytics data) is encrypted in transit. This helps prevent eavesdropping by unauthorized parties when data is moving between your device and our servers. We also ensure that any data stored on our systems or with our service providers is protected using industry-standard encryption where applicable. For example, communication with PostHog's servers is done securely over encrypted channels.
  • Access Controls: We restrict access to whatever limited data we have. Only authorized personnel or contractors who need to handle the data (for instance, to maintain the service or assist you) are allowed to access it, and even then, we ensure they are bound by confidentiality. Because we do not store user text or personal accounts, there is very little sensitive data at rest – but for systems like analytics, access is protected by authentication and limited to our small team.
  • Secure Hosting and Practices: RewritePal's infrastructure follows best practices for security. Our servers and databases (if any) are kept in secure environments with up-to-date security patches. We utilize firewalls and monitoring to protect against intrusions and attacks. We also rely on reputable service providers (like our cloud host and PostHog) that have their own strong security measures and compliance certifications. PostHog, for example, is designed with privacy and security in mind, and they act as a secure third-party processor for our analytics data.
  • Data Anonymization: A key aspect of our security strategy is that we avoid storing personal data whenever possible. By keeping most data anonymized (or not collecting it at all), we inherently reduce the risk of sensitive data exposure. In the event of a security breach, the attackers would find little to no personal information in our systems due to our minimal data collection approach.
  • Monitoring and Testing: We periodically review our security measures and monitor our systems for any vulnerabilities or unusual activities. If needed, we update our practices to address new security threats. We also stay informed about security best practices and compliance requirements to ensure we meet or exceed them.
  • Incident Response: Although we work hard to prevent any security incidents, no system can be guaranteed 100% secure. In the unlikely event of a data breach or security issue, we have procedures in place to respond promptly. This includes identifying and fixing the issue, and where required by law, notifying any affected users or authorities. Because we hold very limited personal data, the impact of any potential breach would hopefully be minimal. Nonetheless, we would treat any security incident with the utmost seriousness and transparency. In plain terms, we use **industry-standard safeguards** to protect your information. This includes technical measures (like encryption and secure servers) and organizational measures (like limiting who can access data). While no online service can ever be completely immune from risks, we are committed to keeping your data safe and continuously improving our security. We also encourage you to use common sense security practices on your end (for example, when contacting us, don't send more personal information than necessary). If you ever have concerns about the security of RewritePal, please contact us.

International Data Transfers

RewritePal is available to users around the world. As a result, the information we collect **may be transferred to or processed in countries other than your own**. We primarily operate in [we may say the United States] (and/or other jurisdictions), and our servers or service providers might be located in multiple countries. This means that if you are using RewritePal from outside the country where our servers are hosted, your data (to the limited extent we have any) could cross international borders.

  • Our Global Operations: Currently, our website's infrastructure may be hosted in **data centers located in the United States** (or another jurisdiction), and our analytics provider (PostHog) may process data on servers located in the United States or other countries. This implies that usage data (and any information you submit) may be transmitted to or stored in a country different from your country of residence. We want to assure you that no matter where your data is processed, we will protect it in accordance with this Privacy Policy.
  • Data Protection Standards: When we transfer personal data internationally, we take steps to ensure that appropriate safeguards are in place. For users in the **European Economic Area (EEA)** or other regions with data transfer restrictions, this means that if any personal data is sent outside the EEA, we will ensure it is protected by measures such as:
    • Standard Contractual Clauses: We can rely on the European Commission's approved contract clauses which legally bind the recipient to protect the data according to EU standards.
    • Transfer to Privacy-Compliant Jurisdictions: We may host data in countries that the EU has determined have adequate data protection laws (if applicable).
    • Data Processing Agreements: Our service providers (like PostHog) are contractually obligated to handle personal data in compliance with GDPR requirements and provide a level of protection equivalent to EU standards.
    • Other Mechanisms: If future legal frameworks (such as the EU-U.S. Data Privacy Framework or others) are in place, we may rely on those as appropriate.
  • PostHog Compliance: As mentioned, PostHog adheres to privacy regulations like GDPR. According to PostHog's policies, they employ measures to ensure any data transfers are lawful and secure. This means that the analytics data processed by PostHog will receive a high level of protection regardless of where their servers are physically located.
  • Your Consent to Transfer: By using RewritePal, you understand that your information may be transferred to our facilities and those third parties with whom we share it as described in this policy, which may be located in different countries. We will always handle that information securely, but if you do not want your information transferred or processed outside of your jurisdiction, you should not use the service (bearing in mind that we collect very little information anyway). We want to emphasize that, given the minimal personal data we handle, international transfer implications are limited. Most of what we process is anonymized usage data. Nonetheless, we treat any data transfer with care. **No matter where we process data, we will maintain the same protections as described in this Privacy Policy**. If international data transfers occur, we ensure they are done in accordance with relevant privacy laws to protect your rights and interests. If you have questions about where your data is stored or transferred, or the safeguards in place, please feel free to contact us. We can provide more specific information depending on our current infrastructure and service providers.

Your Rights and Choices

You have certain rights regarding your personal data and choices in how we handle it. Because RewritePal collects almost no personal information by default, some of these rights may not be fully applicable (simply because we might not have any data that relates to you personally). However, we are committed to honoring all applicable rights for all users, and we provide the following information so you know what you can expect and request from us:

  • Right to Access Your Information: You have the right to know if we are processing any personal information about you, and to request access to that information. In practice, since we don't require accounts and don't store your content, the personal data we could have is very limited (perhaps an email correspondence, or an IP address in a log). Still, you can contact us to ask if we have any personal data about you and to receive a copy of that data in a common format. We will provide you with the information we have, if any, within the timeframe required by law. (For most users, we expect to simply confirm that we have no identifiable personal data on file.)
  • Right to Correction (Rectification): If you believe that any personal information we have about you is incorrect or incomplete, you have the right to request that we correct or update it. Again, since we rarely hold personal data, this would typically apply only to information like your contact details if you've communicated with us. Nonetheless, if you find any inaccuracies, let us know and we will fix them where possible.
  • Right to Deletion: You have the right to request that we delete the personal information we have collected from you (also known as the "right to be forgotten"). We respect this right and will comply with deletion requests unless an exception applies. For example, if you emailed us and want that correspondence deleted, we will erase it from our records (though we may retain a note that a request was made, to have a record of compliance). If by some chance we had other data about you, we would delete it upon a verified request, as long as we are not legally required to keep it. Because we minimize data collection, deletion is straightforward for us in most cases.
  • Right to Object or Restrict Processing: You have the right to object to certain types of data processing, or ask us to limit processing. For instance, you can object to our collection of analytics data about your visits. If you prefer not to be included in analytics, you can use our **opt-out choices** (described below) or contact us to discuss possible solutions. You can also object to any processing of your data that we might do for direct marketing – however, note that we currently do not do any marketing or profiling with your data. If you feel any aspect of our data use impacts your rights unfairly, you may raise an objection and we will consider if we can cease that processing (in context, we process so little personal data that this situation is unlikely to arise).
  • Right to Data Portability: For users in jurisdictions like the EU, you have a right to data portability. This means you can request to receive any personal data we have about you in a structured, commonly used, machine-readable format, and you can ask that we transfer it to another service provider if technically feasible. Given that we do not have user accounts or stored content, there is typically not much (if any) data that would be subject to portability. However, if you did ask for, say, a copy of an email you sent us or a log entry, we can provide that in a text format. We will fulfill any portability requests to the extent they apply.
  • Right to Withdraw Consent: In situations where we rely on your consent to process data (if any), you have the right to withdraw that consent at any time. For example, if we at some point ask for your consent to collect additional information, you can later withdraw that consent and we will stop the processing in question. Currently, our processing of data is based on our legitimate interests in running the service (for analytics) or on fulfilling your requests. We do not generally process data based on consent (since we don't really ask for any personal data), but if we ever do, you will be able to revoke it.
  • California Privacy Rights (CCPA): If you are a resident of California, you are entitled to specific rights under the CCPA (and the California Privacy Rights Act, CPRA). These include:
    • Right to Know: You can request information about the categories of personal information we have collected about you, the sources of that information, the business purpose for collecting it, and the categories of third parties with whom we share it. In this policy, we have already described those details: in summary, we collect identifiers like IP address (temporarily), internet usage information (analytics data), and only from your interactions (no external sources), for the purpose of improving our service, and we share it only with our analytics provider and not with any advertisers. We can confirm these details for you upon request.
    • Right to Delete: As mentioned above, you may request deletion of your personal data, and we will comply to the extent we have any and no exceptions apply.
    • Right to Opt-Out of Sale: CCPA gives you the right to direct a business that sells personal info to stop selling it. **However, RewritePal does not sell personal information** (as described in this Privacy Policy), so this right is not applicable in our case. We don't exchange your data for money or any other value. Therefore, you are effectively already "opted-out" of any sale by default.
    • Right to Non-Discrimination: We will **not discriminate** against you for exercising any of your CCPA rights. This means we won't deny you our service, charge you differently, or provide a lesser experience if you make a privacy request. RewritePal is free and does not have tiers of service based on data sharing; everyone gets the same features regardless of any privacy choices. If you are a California resident and would like to exercise your CCPA rights, you can contact us as described in the **Contact Us** section. We may need to verify your identity (for example, by confirming an email address if you contacted us through email) before fulfilling certain requests. You may also designate an authorized agent to make requests on your behalf as allowed by CCPA. We will respond to your request within the timeframe required by law and let you know what actions we've taken.
    • GDPR and International Rights: For individuals in the European Union, United Kingdom, or other regions with similar laws, you generally have rights equivalent to those listed above (access, rectification, erasure, restriction, objection, portability, and the right to lodge a complaint with a supervisory authority). We've covered access, correction, deletion, etc., which all apply. One additional note: you have the right to lodge a complaint with your country's **data protection authority** if you believe we have infringed your privacy rights. We encourage you to contact us first so we can address any issue, but you have the right to seek help from regulators as well. For EU users, our legal basis for processing the very limited personal data we might handle (such as analytics data via cookies) is typically our **legitimate interest** in understanding and improving our service, as this data is non-identifiable and low-impact on your privacy. If you disagree with that, you can object as noted above. If we ever were to process any data based on consent, we would obtain your consent clearly and you could withdraw it at any time.
  • Opt-Out of Analytics (Cookies): Since our only form of data tracking is analytics (which is anonymous), we do not have a formal cookie consent pop-up at this time. However, we respect users who want to opt-out of analytics. You can do so by adjusting your browser settings to block or delete cookies (since our analytics relies on a first-party cookie/localStorage ID). If you delete or block the PostHog cookie, our ability to track your usage will be limited. You can also use browser extensions or privacy modes that send a "Do Not Track" signal or that block analytics scripts; our site will still function normally for you. Additionally, if you contact us and request that we not include your visits in our analytics, we can explore manually excluding your data (for example, by filtering out your IP in our analytics, if feasible). We want you to feel comfortable, so the choice is yours. Keep in mind, the data we collect is quite harmless (we don't see your content or identity), but we support your right to privacy.
  • Email and Communication Choices: Since we do not send marketing emails or newsletters, you will not need to unsubscribe from any mailing list. The only emails you might receive from us would be direct replies to you if you contacted us. We will not send you any promotional content. If in the future we consider sending updates, we will only do so with your explicit opt-in consent. For now, you will not receive any communication from us unless you initiate it. In summary, we respect your rights over your personal data. If you contact us with any request regarding your data, we will do our best to accommodate it in line with applicable laws. Given our minimal data collection, many users will find that there's simply not much data _to_ request or control – which is by design for your privacy. Nevertheless, you are empowered to inquire and direct us regarding your information.

**Exercising Your Rights:** To make any request (access, deletion, etc.), please reach out to us via the contact information at the end of this policy. We will respond as soon as possible, and in any event within the timeframes set by law (e.g., within 30 days for GDPR requests, 45 days for CCPA requests, with possible extension if needed). There is usually no charge for making a request, though excessive or unfounded requests may incur a fee or be declined as allowed by law. We may ask for some verification information to ensure that we are fulfilling requests for the correct individual (for example, if you email us from a certain address, we may respond to that same address to verify you control it). Your privacy is important to us, and that includes giving you control and transparency. Please do not hesitate to contact us if you wish to exercise any of your rights or have questions about your choices.

Children's Privacy

**RewritePal is not intended for use by children under the age of 13.** We do not knowingly collect personal information from children under 13 years old. Our website and services are designed for use by a general audience and by adults or with adult supervision. If you are under 13, please do not provide any personal information to us (in fact, you can use our service without giving any personal data, so simply use it without signing up or contacting us). In the event that we discover we have inadvertently collected personal information from a child under 13, we will take prompt steps to delete such information from our records. For example, if a child were to email us and reveal their age and personal info, and we realize they are under 13, we would not keep that information. If you are a parent or guardian and you believe that your child under 13 may have provided personal information to us, please contact us immediately. We will work with you to investigate and, if applicable, delete the information in accordance with applicable laws. For residents of certain jurisdictions, the age threshold may be higher (for example, 16 in some EU countries for consent). We do not target our services to children in any jurisdiction. If you are under the age of consent in your region, please use RewritePal only with the involvement of a parent or guardian, and do not submit personal information to us. Since we do not require accounts or collect personal data for normal use, a child can use the basic functionality of RewritePal without disclosing personal info. However, we still advise that minors have adult supervision when using online tools. We encourage families to discuss online safety and privacy. In summary, **we do not knowingly collect data from children**, and our service is not directed at children under 13. We are committed to complying with the **Children's Online Privacy Protection Act (COPPA)** in the U.S. and applicable international laws concerning children's privacy. If we become aware of any issue in this regard, we will address it swiftly.

Changes to This Policy

We may update or modify this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other reasons. When we make changes, we will post the updated policy on this page and update the "Last Updated" date at the top. Any changes will become effective when posted unless otherwise indicated. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. If we make significant or material changes to this Policy, we will provide a more prominent notice. For example, we might display a notice on our website's homepage or send out a communication (if we had your contact info, though in most cases we do not) to inform you of the updated Policy. However, minor adjustments that do not substantially affect your rights will likely just be updated on the website. Your continued use of RewritePal after any changes to this Privacy Policy constitutes your acceptance of the revised terms, to the extent permitted by law. If you do not agree with the changes, you should discontinue use of the site and services. We will always indicate the effective date of the latest version of the Policy so you know whether it has been updated since your last visit. In summary, this Privacy Policy may evolve, but we will not reduce your rights under this Policy without your consent. Any updates will maintain our core commitments to your privacy. We remain committed to transparency and will keep you informed of any important changes. Please check this page whenever you have questions about our Privacy Policy to see if anything has changed, and feel free to contact us if you have any concerns about any modifications.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please feel free to contact us:

Email: hello@rewritepal.com

You can reach out to us by email for any reason – whether it's to ask about how we protect your data, to request access or deletion of information, or to provide feedback about privacy. We will do our best to respond promptly and address your inquiry.

Alternatively, if you prefer to contact us by mail or other means, please indicate that in an email and we will provide an appropriate mailing address or accommodate your request as needed. (Since we operate primarily as an online service, email is the fastest and most effective way to get in touch.)

Data Controller: RewritePal, Inc. is the entity responsible for the processing of your personal data. Although we do not collect much personal data, RewritePal, Inc. is based in the United States and can be contacted through the email above.

We value your privacy and are here to help. If you have any questions about this Policy or your personal information, don't hesitate to contact us. Thank you for using RewritePal and trusting us with your writing – we take that trust seriously and are always happy to discuss our privacy practices with our users.