What We Collect
For Anonymous Users:
- Session tokens (stored in your browser only)
- Usage counts to prevent abuse (no personal data)
- Technical logs for debugging (automatically deleted after 30 days)
For Registered Users:
- Email address and name (for your account)
- Hashed password (we can't see your actual password)
- Plant photos you upload (stored securely via Cloudinary)
- Your plant identification history
- Payment info via Stripe (we don't store card numbers)
- Usage statistics (for service optimization)
How We Use It
- To identify your plants using AI
- To save your plant history (registered users only)
- To process payments for premium features
- To send you emails only if you have an account
We DON'T:
- Use cookies (we use localStorage instead)
- Track you across websites
- Sell your data to anyone
- Send marketing emails
- Use Google Analytics or advertising trackers
- Store personal data in debug logs
Who We Share With
- OpenAI: Your plant photos for AI identification
- Cloudinary: Stores your plant photos securely
- Stripe: Processes payments (they're super secure)
That's it. Nobody else gets your data.
Your Rights
You can:
- Download all your data anytime
- Delete your account and all associated data
- Update your information
- Cancel your subscription
Just email us or use the account settings page.
Security & Data Retention
- Everything is encrypted with HTTPS
- Passwords are hashed with bcrypt
- Authentication tokens stored in browser localStorage (not cookies)
- Debug logs automatically deleted after 30 days
- Technical logs deleted after 90 days
- Plant photos stored securely via Cloudinary
- We regularly update our security measures
Last Updated: July 28, 2025