the short version

we collect minimal data to provide you with analysis results and let you access them later. your uploaded PDF is deleted immediately after analysis—we do not store it. your analysis results are stored encrypted in our database so we cannot read them. this storage allows you to view your past analyses anytime. we also track: token count (to understand costs), file size, errors (for bug fixing), and usage count. your content is never used for training AI models. we have agreements with all our AI model providers that guarantee this.

what we actually store

we're serious about minimal data collection. here's exactly what we store:

• account information: email address and encrypted password (if you sign up)
• encrypted analysis results: your AI-generated feedback and analysis, stored encrypted so we cannot read it. this lets you access your past analyses anytime.
• token count: how many tokens each analysis used (helps us understand if we're losing money)
• file size: size of uploaded PDFs in bytes
• error logs: any errors that occur during processing (for debugging and fixing bugs)
• usage count: number of times you've used the service
• payment records: processed through Stripe (we never see your card details)
• presentation hash: a unique identifier generated from your presentation thatallows you to always run the same presentation through our system

what we do NOT store

this is important:

• presentation PDFs: we do not store your uploaded PDFs. once the analysis is complete, the PDF is deleted from our systems. only the encrypted analysis results are retained.
• unencrypted analysis content: your analysis results are stored encrypted in our database. we cannot read them—the encryption ensures your content remains private to you only.
• your card details: payment processing is handled entirely by Stripe. we never see or store your credit card information.
• marketing data: we don't track your browsing behavior, build user profiles for advertising, or share your information with ad networks.

how we use your data

the minimal data we collect is used to:

• process your presentation through AI models to generate feedback
• authenticate your account and process payments
• monitor token usage and costs (so we don't go broke)
• fix bugs using error logs
• send critical account updates only (no marketing spam)

we do not: sell your data, use your presentations to train AI models, share your content with anyone, send marketing emails, or store your presentation content.

data retention

encrypted analysis results: stored encrypted in our database indefinitely so you can access your past analyses anytime. we cannot read this encrypted data. delete your account and we delete everything within 30 days.

metadata (token count, file size, usage count): retained indefinitely for cost analysis and service improvement.

error logs: retained for up to 90 days for debugging, then deleted.

account data: retained while your account is active. delete your account and we delete everything within 30 days.

AI model providers & training guarantees

we use multiple AI models from major providers (Google, OpenAI, Anthropic, and others) to analyze your presentations. we have contractual agreements with all these providers that explicitly prohibit using your data for model training.

your PDF is tokenized (converted to AI-readable format) and sent directly to these models for analysis. the models process it in real-time and return feedback. your content never enters their training pipelines. once the analysis is done, the tokenized data is discarded by both us and the AI providers.

other third-party services

we use these services to operate perfectit.ai:

• Supabase: authentication and minimal metadata storage. SOC 2 Type II certified.
• Stripe: payment processing. we never see or store your card details.
• Vercel: application hosting with enterprise-grade security.

security

we use industry-standard security measures including encryption in transit (TLS/SSL), encryption at rest for sensitive data, secure authentication (bcrypt for passwords), regular security audits, and role-based access controls.

no system is 100% secure, but we take security seriously and follow best practices.

your rights

you have the right to:

• access all data we have about you
• request corrections to your data
• delete your account and all associated data
• export your analysis results
• opt out of non-essential emails

to exercise these rights, email us at privacy@perfectit.ai

cookies

we use essential cookies for authentication and session management. we don't use tracking cookies or third-party advertising cookies. you can disable cookies in your browser, but some features may not work.

children's privacy

perfectit.ai is not intended for users under 18. we don't knowingly collect data from children. if you're a parent and believe your child has used our service, contact us and we'll delete their data.

changes to this policy

we may update this privacy policy occasionally. if we make significant changes, we'll notify you via email or a notice on our site. continued use after changes means you accept the updated policy.

GDPR & international users

if you're in the EU, you have additional rights under GDPR including data portability, right to be forgotten, and right to restrict processing. we comply with GDPR requirements for EU users.