Privacy Policy

We only collect what we need to run All AI Tools. We don’t sell your data. We never will. This page explains, in plain English, exactly what we collect and why.

• Account info — when you sign up, we store your name, email, and (optionally) avatar via our authentication provider, Clerk.
• Usage data — pages you view, tools you vote on or bookmark, and affiliate clicks. This helps us surface better recommendations and measure what works.
• Device & network data — your IP address (hashed for affiliate-click tracking), browser, OS, device type, and a rough country / region derived from your IP. We don’t store your precise location.
• Purchase data — for marketplace purchases we store the order, product, and a receipt URL. Card details are handled exclusively by Stripe.
• Contact messages — when you use the contact form, we email the content directly to us and do not store it in our database.
• Cookies — a session cookie to keep you signed in, and an anonymous attribution cookie (“allaitools_sid”) used for affiliate click tracking.

• to operate and improve the Service;
• to authenticate you and keep your account secure;
• to process marketplace purchases and deliver downloads;
• to send transactional emails (purchases, submission status, replies);
• to send our newsletter if you opt in (you can unsubscribe in one click);
• to attribute affiliate clicks and pay our partners accurately;
• to detect fraud and abuse.

We use a small number of reputable processors, listed here so you know exactly where your data goes:

• Supabase — database and file storage.
• Clerk — authentication.
• Stripe — payment processing.
• Resend — transactional email.
• Vercel — hosting and CDN.

We don’t sell or rent your data to advertisers. We may disclose information to comply with a legal obligation or to protect rights, property, or safety.

We retain account data for as long as your account is active. Affiliate-click logs are kept for up to 24 months for reporting. Purchase records are retained for up to 7 years where required by tax law. You can request earlier deletion at any time (see “Your rights” below).

Depending on where you live (GDPR, CCPA, and similar frameworks), you have the right to:

• access a copy of your data;
• correct inaccuracies;
• delete your data (“right to be forgotten”);
• export your data in a portable format;
• opt out of marketing emails at any time.

You can delete your account directly from account settings. For anything else, email cyriac@nidrosoft.com.

All data is transmitted over HTTPS and stored encrypted at rest in Supabase. Admin access is gated by unique credentials and rate- limited lockout. No system is perfectly secure, but we treat your data like we treat our own.

The Service is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has submitted data to us, please contact us and we’ll delete it promptly.

Our processors may store data in the United States, European Union, or other jurisdictions. By using the Service you consent to the transfer of your information to these locations.

If we materially change how we handle data, we’ll update this page and notify you by email where it’s practical to do so.

Questions about this policy? Reach us at cyriac@nidrosoft.com or via the contact page.