Privacy Policy

Your privacy matters. Here's how we protect your data.

Last updated: February 20, 2026 · Version 1.0

TL;DR - Privacy at a Glance

Private by default - your content is never shared unless you choose
No AI training - we never use your manuscripts to train models
You own it all - full copyright remains with you always
Delete anytime - instant and permanent removal on request

Our Commitment to Your Privacy

ChapterWise ("we," "our," or "us") is committed to protecting your privacy and the confidentiality of your creative work. This Privacy Policy explains how we collect, use, protect, and share information when you use our manuscript analysis service.

Privacy by Default

All your content is private by default

Unless you explicitly choose to share or make content public, everything you upload or connect to ChapterWise remains completely private. We never make your content public, share it with others, or use it for any purpose beyond providing you service.

Information We Collect

Account Information

Email address, display name, and authentication credentials for account management and service provision.

Manuscript Content

Your uploaded manuscripts and documents are processed solely for analysis purposes. We do not read, share, or use your creative content for any other purpose.

Storage: We maintain secure encrypted backups to prevent data loss.

GitHub Repository Content

When you connect a GitHub repository:

  • We store a local copy of files you explicitly authorize
  • We receive webhook notifications when you push changes
  • You can revoke access at any time, triggering permanent deletion

Usage & Technical Data

Analysis requests, feature usage, IP address, browser type, and device information for service optimization and security.

How We Use Your Information

Service Provision

Analyze your manuscripts and provide insights, character analysis, and writing feedback.

Account Management

Maintain your account, process payments, and provide customer support.

Security & Safety

Protect against fraud, abuse, and unauthorized access to our systems.

Service Improvement

Improve our analysis and user experience through anonymized usage patterns (never your content).

Your Creative Rights

You retain full ownership and copyright of all your creative work

We never claim rights to your manuscripts or content

Your work is never used to train AI models or shared with third parties

You can delete your content at any time

Data Sharing and Disclosure

We do NOT share your manuscripts or creative content with anyone, ever.

We may share limited, non-creative information only in these specific circumstances:

  • Service Providers: Trusted partners under strict confidentiality agreements and Data Processing Agreements (DPAs) where required by law
  • AI Providers: Your content is sent to AI providers solely for analysis — they do not retain or train on it
  • Legal Requirements: When required by law, court order, or legal process
  • Safety Protection: To protect rights, property, or safety of ChapterWise, our users, or the public

Sub-Processors

The following third-party services process your data on our behalf. Each operates under a Data Processing Agreement (DPA) or equivalent contractual protections:

Provider Purpose Data Processed Location
Anthropic (Claude) AI manuscript analysis Manuscript content (not retained) United States
DigitalOcean Cloud hosting & database All application data United States
Stripe Payment processing Payment info, email, transaction records United States
GitHub Repository integration OAuth tokens, repo metadata United States
Brevo Transactional email Email address, name EU / United States

We will update this list and notify you at least 30 days before adding new sub-processors. Last updated: February 20, 2026.

Data Security

Encryption

TLS in transit, AES-256 at rest

Access Control

Strict role-based permissions

Monitoring

24/7 threat detection

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we commit to:

  • Within 72 hours: Notify affected users via email (as required by GDPR)
  • Within 72 hours: Report to relevant supervisory authorities where legally required
  • Immediately: Take steps to contain the breach and prevent further unauthorized access
  • Ongoing: Provide updates on our investigation and any remediation measures

Our notification will include: the nature of the breach, the data affected, steps we are taking, and what you can do to protect yourself.

Cookies and Tracking

Essential Cookies

Required for authentication, security, and basic functionality. Cannot be disabled.

Preference Cookies

Remember your settings like dark mode preference and language.

Analytics (Optional)

We use privacy-focused analytics to understand how our service is used. This data is anonymized and never includes your content.

Do Not Track: We honor Do Not Track browser signals. When enabled, we disable optional analytics tracking.

Cookie Consent: When you first visit ChapterWise, we only set essential cookies required for the service to function. Optional analytics cookies are only enabled with your explicit consent. You can change your cookie preferences at any time from your account settings.

Your Privacy Rights

Data Control

  • Access your personal information
  • Correct inaccurate data
  • Delete your account and data
  • Export your data (portability)

Communication

  • Opt out of marketing emails
  • Control notification preferences
  • Request information about your data
  • File privacy complaints

For European Union Users (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation:

Right to Object

You can object to processing based on legitimate interests at any time.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Restrict Processing

Request that we limit how we process your data while a dispute is resolved.

Supervisory Authority

You have the right to lodge a complaint with your local data protection authority.

Lawful Basis for Processing

Data Category Lawful Basis Purpose
Account info (email, name) Contract performance Creating and managing your account
Manuscript content Contract performance Providing analysis you requested
Payment data Contract performance + Legal obligation Processing purchases; tax compliance
Usage & technical logs Legitimate interest Security, fraud prevention, service improvement
Analytics cookies Consent Understanding service usage (opt-in only)

Data Controller: Studio Phong is the data controller for your personal information. Contact: [email protected]

For California Residents (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act:

Right to Know: Request disclosure of personal information collected, used, and disclosed.
Right to Delete: Request deletion of your personal information.
Right to Opt-Out: We do NOT sell your personal information. Ever.
Non-Discrimination: We will not discriminate against you for exercising your rights.

To exercise these rights, contact us at [email protected]. We will respond within 45 days.

Data Retention and Deletion

Immediate Deletion Policy

Your manuscripts are deleted immediately upon request. When you delete content, we remove it from our active systems instantly. Backups are purged within 24 hours.

Data Type Retention Period Notes
Manuscripts & creative content Until you delete them Instant deletion; backups purged within 24 hours
Analysis results Until you delete them Deleted when associated content is deleted
Account information While account is active + 30 days 30-day grace period after account deletion request
Transaction records 7 years Required by tax and financial regulations
Server logs 90 days For security and debugging; automatically purged
Analytics data 24 months Anonymized; never includes manuscript content

Your Right to Revoke GitHub Access

You have complete control over GitHub repository access:

How to Revoke Access

  • GitHub: Settings > Applications > Revoke
  • ChapterWise: Dashboard > Project > Delete

What Happens

  • Webhooks stop immediately
  • All local copies permanently deleted
  • Backups purged within 24 hours

Children's Privacy

ChapterWise is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe a child under 16 has provided us with personal information, please contact us immediately at [email protected] and we will delete it.

International Data Transfers

ChapterWise is based in the United States. If you access our service from outside the US, your information may be transferred to, stored, and processed in the US.

For EU users, we rely on Standard Contractual Clauses and other lawful transfer mechanisms to ensure your data receives adequate protection. By using our service, you consent to the transfer of your information to the United States.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through our service. Your continued use after modifications constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Subject Line: Privacy Policy Inquiry

Response Time: Within 48 hours