Privacy Policy
RewriteBar
Last Updated: 2025-08-01
1. Introduction
This Privacy Policy describes how Mathias Michel ("we", "us", or "our") collects, uses, and protects information when you use our website https://rewritebar.com (the "Website") and the RewriteBarmacOS application (the "App"). By using our Website or App, you agree to the collection and use of information in accordance with this policy.
Data Controller:
Mathias Michel
Waldstr. 48
90763 Fürth, Germany
Email: support@rewritebar.com
2. Information We Collect
2.1 Personal Information (Website)
When you use our Website, we may collect:
- Account Information: Name, email address when you create an account
- Payment Information: Billing details processed securely through Stripe (we do not store payment card details)
- Communication Data: Messages you send us through contact forms or support channels
- License Information: License keys, purchase history, and subscription status
2.2 Technical Information (Website)
- Usage Data: IP address, browser type, device information, pages visited
- Cookies: Essential cookies for functionality, analytics cookies (with consent)
- Analytics: Website usage statistics through privacy-focused analytics tools
2.3 App Usage Data
The RewriteBar macOS application may collect:
- License Verification: License key and activation status
- Usage Statistics: Feature usage, error reports (anonymized)
- Crash Reports: Technical diagnostic information (no personal content)
- AI Service Usage: Number of requests, usage patterns (for subscription management)
2.4 Text Processing Data
Important: When you use AI features in the app:
- Cloud AI Service: Text is temporarily transmitted to third-party AI providers (OpenAI, Anthropic, Google, Mistral, etc.) for processing
- Your API Keys: Text is sent directly to your chosen AI provider - we do not see or store this data
- Local Processing: When using local models (e.g., Ollama), data remains on your device
3. How We Use Your Information
We use collected information for the following purposes:
- Service Provision: Account management, license verification, app functionality
- Payment Processing: Order fulfillment, billing, refunds
- Customer Support: Responding to inquiries, troubleshooting issues
- Product Improvement: Analytics to enhance user experience and app features
- Legal Compliance: Meeting regulatory requirements, preventing fraud
- Marketing: Sending product updates and announcements (with consent)
4. Legal Basis for Processing (GDPR)
We process your personal data based on:
- Contract Performance: Processing necessary to provide our services
- Legitimate Interest: Improving our services, fraud prevention, analytics
- Consent: Marketing communications, optional analytics cookies
- Legal Obligation: Tax requirements, regulatory compliance
5. Data Sharing and Third Parties
We may share your information with:
5.1 Service Providers
- Stripe: Payment processing (subject to Stripe's privacy policy)
- Supabase: Database hosting and authentication
- AI Providers: Text processing when using cloud AI features
- Email Service: Mailgun for transactional emails
5.2 AI Provider Data Sharing
When using cloud AI features, your text is processed by:
- OpenAI (GPT models)
- Anthropic (Claude models)
- Google (Gemini models)
- Mistral AI
- Other AI providers as added to the service
Each provider has their own privacy policies. We recommend reviewing them if you have concerns about data processing.
5.3 Legal Requirements
We may disclose information when required by law or to protect our rights.
6. Data Retention
- Account Data: Retained while your account is active, plus 3 years for legal compliance
- Payment Data: Retained for 7 years for tax and legal purposes
- Usage Analytics: Anonymized data retained for up to 2 years
- Text Processing: Not stored by us; retention governed by AI provider policies
- Support Communications: Retained for 3 years for quality assurance
7. Your Rights (GDPR)
As a data subject, you have the right to:
- Access: Request a copy of your personal data
- Rectification: Correct inaccurate or incomplete data
- Erasure: Request deletion of your data ("right to be forgotten")
- Portability: Receive your data in a machine-readable format
- Restriction: Limit how we process your data
- Objection: Object to processing based on legitimate interests
- Withdraw Consent: For processing based on consent
To exercise these rights, contact us at support@rewritebar.com. You also have the right to lodge a complaint with a data protection authority.
8. Data Security
We implement appropriate security measures to protect your data:
- Encryption in transit and at rest
- Regular security audits and updates
- Access controls and authentication
- Secure hosting with reputable providers
- Employee training on data protection
9. Cookies and Tracking
Our website uses cookies for:
- Essential Cookies: Required for basic website functionality
- Analytics Cookies: Understanding website usage (with consent)
- Authentication: Keeping you logged in securely
You can manage cookie preferences in your browser settings. Disabling essential cookies may affect website functionality.
10. Children's Privacy
Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us immediately.
11. International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States. We ensure appropriate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions by the European Commission.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through the app/website. Your continued use of our services after such modifications constitutes acceptance of the updated policy.
13. Contact Information
For any questions about this Privacy Policy or to exercise your rights, contact us at:
Email: support@rewritebar.com
Website: https://rewritebar.com
Address: Waldstr. 48, 90763 Fürth, Germany
Important: If you process sensitive or confidential information using RewriteBar, please be aware that AI processing involves transmitting your text to third-party services. Consider using local models or your own API keys for sensitive content.
Related Legal Documents: