AI Create Hub

Privacy Policy — Prompt Cove

Last updated: September 11, 2025

Prompt Cove (“we”, “our”, “us”) operates a marketplace where users can publish, buy, and trade AI prompts and related content. This policy explains what we collect, why we collect it, how we use and share it, and the choices you have.

Scope

This policy applies to our website, web app, Android app, and any services that link to it.

Data we collect

  • Account & identifiers: name, email, UID, auth tokens (Firebase Auth).
  • Profile: avatar, bio, links you add.
  • User content: prompts, titles, tags, preview images/videos, comments, ratings.
  • Transactional: coin purchases, subscription status, price, timestamps (e.g., Google Play Billing via server verification).
  • Usage: pages/screens, clicks, device info, IP (for security and fraud prevention).
  • Cookies & local storage: preferences, session, consent choices.
  • Sensitive data: we do not seek to collect sensitive categories. Do not upload sensitive personal data.

How we use data

  • Provide and secure authentication, accounts, and purchases.
  • Host, display, and moderate prompts and media.
  • Process payments/coins and creator earnings.
  • Communicate about updates, safety, and support.
  • Improve performance, detect abuse, and enforce our Terms.
  • Comply with legal obligations (e.g., tax, accounting).
  • Contract (provide the service you request).
  • Legitimate interests (security, anti-fraud, improvements).
  • Consent (non-essential cookies/analytics where required).
  • Legal obligation (tax, accounting, regulatory requests).

Sharing

We share data with service providers who help run Prompt Cove:

  • Firebase (Auth, Firestore, Storage, Functions) for core backend.
  • Google Play Billing for purchases/subscriptions on Android.
  • Email & support tooling (to respond to you).
  • Analytics & crash reporting if enabled (aggregated performance/quality).

We do not sell your personal information.

Security

  • Encryption in transit (HTTPS/TLS) and secure Firebase SDKs.
  • Role-based access and Firebase Security Rules for Firestore/Storage.
  • Least-privilege service accounts on backend functions.

No method is 100% secure, but we take reasonable measures to protect your data.

Retention

We keep personal data only as long as needed to provide the service and meet legal obligations. You can request deletion—see Your rights.

CategoryExampleTypical retention
AccountEmail, UIDWhile account is active; limited records may persist for fraud/abuse/legal.
TransactionsCoin purchases, payoutsAs required by tax/accounting laws (often 3–7 years, jurisdiction-dependent).
ContentPrompts, previewsUntil you delete them or your account is deleted (subject to moderation logs).
Analytics (if enabled)Aggregated usageCommonly 6–13 months (varies by provider/settings).

International transfers

We may process data in regions where our providers operate (e.g., EU/US). Where required, safeguards such as Standard Contractual Clauses may apply.

Children

Prompt Cove is for users 13+ (or higher age as required in your country).

Your choices

  • Manage cookies: open cookie settings.
  • Opt-out of certain analytics where available in app settings or cookie banner.
  • Update your profile and content at any time.

Your rights

Depending on where you live, you may have rights to access, correct, delete, port, or object/restrict certain processing.

EEA/UK (GDPR)
  • Access, rectification, erasure, restriction, portability, objection.
  • Right to lodge a complaint with a supervisory authority.
California (CCPA/CPRA)
  • Right to know, delete, correct, and opt-out of sale/sharing (we don’t sell).
  • Limit use/disclosure of sensitive personal information.
  • Use Cookie Settings for “Do Not Sell/Share”.

Make a data request (DSAR)

Draft preview
Hello Prompt Cove Team,

I'd like to make a Access request under EEA/UK data protection laws.

Account identifier (email/UID): (please fill)

Please provide a copy of the personal data you process about me and the purposes/sources/recipients.

I confirm I am the account holder. If you require additional verification, please let me know.

Thank you,

Our processors (categories)

  • Cloud platform & authentication: Firebase (Auth, Firestore, Storage, Functions).
  • Payments on Android: Google Play Billing (server-side verification).
  • Email/support: help desk/email provider for support communications.
  • Diagnostics/analytics (optional): crash/usage metrics in aggregate.

Changes

We’ll post updates here and change the “Last updated” date. Significant changes may be announced in-product.

Contact

Prompt Cove • support@promptcove.com