Privacy Policy

How CardifyAI collects, uses, and protects your information.

Last updated: April 7, 2026

By using CardifyAI (the web app and browser extensions), you agree to this Privacy Policy. If you do not agree, please do not use the service.

1. Overview

CardifyAI (“we”, “us”, or “our”) is a web application and browser extension that helps you turn your notes, lectures, and PDFs into flashcards.

This Privacy Policy explains what information we collect, how we use it, and the choices you have.

We are committed to:

  • Collecting only what we need to provide and improve CardifyAI
  • Not selling your personal information to third parties
  • Using industry-standard safeguards to protect your data

CardifyAI operates from the United States.

2. Information We Collect
2.1 Account & authentication information

When you sign in with Google, we receive:

  • Your Google account email address
  • Your Google account ID (a unique identifier)

We use this information to create and identify your CardifyAI account, track your plan and usage, and secure access to your data. We do not receive your Google password.

2.2 Subscription & billing information

If you upgrade to a paid plan, payments are processed by third-party providers (such as Stripe). We may store:

  • Stripe customer ID
  • Subscription IDs and related plan or price IDs
  • Subscription status (active, canceled, etc.)

We do not store your full credit card number on our servers. Payment data is handled securely by PCI-compliant providers.

2.3 Content you provide

When you use CardifyAI, you may provide:

  • Text you paste or input
  • PDF files you upload
  • Flashcards generated for your account
  • Reviews or feedback you submit

This content may be processed by AI systems to generate flashcards. We store your generated flashcards and limited usage data as needed to operate the service. We do not sell your study materials.

2.4 AI processing

To generate flashcards, we may use third-party AI providers (such as OpenAI or similar services). Your submitted content may be temporarily processed by these systems solely for the purpose of generating results.

2.5 Browser extension data

When using the CardifyAI browser extension:

  • It reads only text you explicitly highlight and send
  • It communicates with cardifylabs.com to generate flashcards
  • It may store small preferences such as your last used card count

The extension does not collect browsing history, keystrokes, or full-page content without your action.

2.6 Usage, analytics & log data

We may collect:

  • IP address
  • Browser and device information
  • Pages visited
  • Usage metrics such as cards generated

This helps us improve performance, prevent abuse, and understand product usage. We do not use analytics to track you across the internet.

3. How We Use Your Information

We use your data to:

  • Provide and maintain the service
  • Generate flashcards
  • Enforce usage limits
  • Process payments
  • Improve performance
  • Respond to support requests

We do not:

  • Sell your personal data
  • Use your data for targeted advertising
  • Use your data for credit or lending decisions
4. Advertising

We may use third-party advertising services such as Google AdSense.

These services may use cookies or similar technologies to:

  • Display ads
  • Measure ad performance
  • Personalize content

Google may use the DoubleClick cookie to serve ads based on your visits to this and other websites.

You can manage ad personalization here: https://www.google.com/settings/ads

5. Legal Bases (for applicable regions)

If you are in the EEA, UK, or similar regions, we rely on:

  • Contract – to provide the service
  • Legitimate interests – to improve and secure the platform
  • Consent – where required
6. When We Share Information

We only share data when necessary:

  • Service providers such as hosting, payments, and AI providers
  • Legal requirements such as valid legal process
  • Business transfers such as a merger or acquisition

We do not sell your data to advertisers or data brokers.

7. Cookies & Similar Technologies

We use cookies to:

  • Keep you logged in
  • Store preferences
  • Maintain secure sessions

Disabling cookies may affect functionality.

8. Data Retention

We retain data only as long as necessary:

  • Accounts and flashcards while your account is active
  • Usage logs for limited periods for security and performance
  • Billing records where legally required
9. Account Deletion

You may request deletion of your account at any time.

When your account is deleted:

  • Your flashcards and associated data are permanently removed
  • Some records may be retained for legal or billing purposes
10. Security

We use safeguards including:

  • HTTPS encryption
  • Restricted system access
  • Secure third-party providers

No system is completely secure, and you are responsible for your own account security.

11. Children’s Privacy

CardifyAI is not intended for children under 13. We do not knowingly collect data from children. If we become aware of such data, we will delete it.

12. Your Rights

Depending on your location, you may:

  • Access your data
  • Request corrections
  • Request deletion
  • Restrict or object to processing
  • Export your flashcards

To exercise these rights, contact us below.

13. Browser Extension Disclosure

The CardifyAI extension:

  • Only reads text you explicitly select
  • Does not track browsing activity
  • Only communicates with cardifylabs.com

It complies with browser extension platform policies.

14. Changes to This Policy

We may update this policy from time to time. When we do, the “Last updated” date will change, and significant changes may be communicated in-app. Continued use means acceptance of updates.

15. Contact

For questions or requests:

Please include enough detail for us to respond effectively.