Privacy Policy

Effective Date: 04/14/25
‍
At webmoz.ai, your privacy is important to us. This Privacy Policy explains what data we collect, how we use it, and your rights as a user.

1. What We Collect

When you use webmoz.ai, we collect:

Your name and email address
Authentication data via third-party providers (e.g., Google, Notion etc)
Usage data (e.g. tool interactions, credits used, feature behavior)
Uploaded content (files, images, Notion workspace data you authorize)

2. How We Use Your Data

We use your data to:

Provide personalized AI-powered tools
Save your AI sessions and content history
Process payments and manage credits/subscriptions
Improve platform performance and features

3. Where Your Data Lives

We don’t sell your data. We only share it with the services below to make webmoz.ai work smoothly.

Your data is stored securely using:

Firebase (Google Cloud) for authentication, user storage, and Firestore database
Stripe for payment processing
Tool API's when you choose to connect your workspace
Improve platform performance and features

4. AI & Third-party Access

The AI only sees or interacts with content you explicitly provide or approve (e.g. connected Notion data, uploaded files). No unauthorized access occurs.

5. Children's Privacy

webmoz.ai is available to all users, but if you are under 13, you must use it with the consent of a parent or guardian. If we become aware that we’ve collected data from a child under 13 without permission, we will delete it.

6. Protection of Sensitive & Google User Data

When you connect Google services (e.g., Gmail, Drive, Calendar) or otherwise provide sensitive data to webmoz.ai, we apply the following technical and organizational controls:

Limited Use (Google APIs): We access and use Google user data only to provide or improve the features you choose, and never for advertising, profiling unrelated to the feature, or selling to third parties. Transfers are restricted to service providers necessary to deliver those features and bound by confidentiality.
Data Minimization & Least Privilege: We request only the minimum OAuth scopes needed for the selected feature and store only what’s required to operate it. If access is no longer needed, we revoke or delete it.
Encryption In Transit & At Rest: All data moves over HTTPS/TLS. Data stored in Google Cloud (Firestore, Cloud Storage, Firebase Auth) is encrypted at rest by default.
Access Controls & Segregation: Access to production data is role-based, logged, and limited to authorized personnel for support, security, or compliance. User data is logically isolated per account/workspace.
Human Access Policy: We do not allow humans to read your content unless you ask us to (e.g., support), we’re fixing a specific issue you reported, or we must comply with law. Such access is time-bound and audited.
Retention & Deletion: We keep data only as long as needed to provide the feature(s) you enabled or as required by law. You can request deletion at any time, which removes your account data and revokes connected scopes.
Incident Response: If we discover a security incident affecting your data, we will notify affected users without undue delay (and within any legally required timeframes) and take steps to mitigate and remediate.
Third-Party Subprocessors: We use trusted providers to run webmoz.ai (e.g., Google Cloud/Firebase for hosting, auth, and databases; Stripe for payments). These providers implement strong security controls and encryption.
Privacy Policy Visibility: This policy is linked from our homepage and OAuth consent screen and explains how we access, use, store, and share Google user data for the features you choose.

7. Your Rights

You can:

Request deletion of your account and data at any time
Disconnect third-party services like Stripe
Tool API's when you choose to connect your workspace
Improve platform performance and features