Privacy policy
Last updated: July 11, 2026
This privacy policy explains how prettysmart. ("we", "us") collects, uses and protects your personal information when you use the prettysmart mobile application and the pretty-smart.app website (together, the "Service").
Information we collect
- Account details: email address and authentication identifiers when you sign in with Apple, Google or create an account.
- Your content: the decks and flashcards you create, so we can store and sync them across your devices.
- AI inputs: documents, images, audio and text you submit to the AI flashcard generator, processed only to generate your cards.
- Usage and device data: app interactions, crash reports, device model, operating system version and IP address.
- Purchase data: subscription status and transaction identifiers from the App Store. We never see your full payment details.
How we use your information
- To provide the Service: storing, syncing and scheduling your flashcards.
- To manage subscriptions and unlock premium features.
- To understand usage trends and improve the app.
- To communicate important updates about the Service.
- To comply with legal obligations.
Sharing and processors
We do not sell or rent your personal information. We share data only with the processors that run the Service: PostHog (analytics), Supabase (database and authentication), Sentry (crash reporting), PowerSync (sync), Superwall (subscription management), Upstash (infrastructure), Apple and Google (sign-in and app distribution). Our infrastructure is hosted in the European Union wherever possible.
AI features
Content you submit to the AI flashcard generator is processed by Google Gemini to create your cards. We do not keep or store your AI inputs after your flashcards are generated. Google acts as a separate data controller for this processing.
Data retention and deletion
We keep your data for as long as your account exists. When you delete your account from the app settings, your personal information is removed, except data we must keep for legal reasons and aggregated analytics, which you can ask us to delete as well.
Security
Your data is encrypted in transit and at rest. Access to production systems is restricted and audited.
Your rights
Depending on where you live, you may have the right to access, correct, delete, restrict or object to the processing of your personal data, and to receive a portable copy of it. EU and UK residents can exercise these rights under the GDPR; California residents have equivalent rights under the CCPA, including the right to opt out of data sales (we do not sell data). To exercise any right, email us at [email protected].
Children
The Service is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13.
Changes to this policy
We may update this policy from time to time. We will post the new version here and update the date above. Material changes will be announced in the app.
Contact
Questions about privacy? Email [email protected].