Our Commitment to Your Privacy
At AI Secrets, we believe privacy is a fundamental right, not a commodity to be traded. This privacy policy explains what information we collect, why we collect it, how we use it, who we share it with, and what control you have over your personal data. We have written this policy to be comprehensive yet understandable, covering both our practices and your rights under international privacy regulations.
This policy reflects our commitment to operating transparently and respecting your privacy across all jurisdictions where our readers are located. We comply with applicable data protection laws including the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), the UK Data Protection Act, Brazil’s Lei Geral de Proteção de Dados (LGPD), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and other international privacy frameworks.
Effective Date: January 24, 2026
Last Updated: January 24, 2026
Who We Are and How to Contact Us
AI Secrets operates as an independent digital publication focused on artificial intelligence education, analysis, and commentary. For purposes of data protection law, AI Secrets is the data controller responsible for your personal information.
Contact Information:
Primary Contact: privacy@ai-secrets.online
Postal Address: [Your complete registered business address]
Data Protection Officer: dpo@ai-secrets.online
EU Representative (if applicable): [EU representative contact information]
UK Representative (if applicable): [UK representative contact information]
If you have questions about this privacy policy, concerns about how we handle your data, requests to exercise your privacy rights, or complaints about our privacy practices, please contact us using the information above. We commit to responding to all legitimate privacy inquiries within thirty days, or sooner where required by applicable law.
Information We Collect
We collect several categories of information to provide, improve, and protect our services. Understanding what we collect and why helps you make informed decisions about using AI Secrets.
Information You Provide Directly
When you interact with AI Secrets, you may choose to provide information directly to us. This includes information you provide when creating an account, subscribing to our newsletter, posting comments, contacting our support team, participating in surveys, or engaging with interactive features.
Account information includes your email address, username, password (stored in encrypted form), and any optional profile information you choose to provide such as your name, professional title, organization, location, or areas of interest. We use this information to create and maintain your account, personalize your experience, communicate with you about our services, and provide features like saved articles or personalized content recommendations.
Newsletter subscriptions require your email address and may include preferences about content topics or frequency. We use this information solely to send you newsletters you have requested and to analyze aggregate engagement with our email communications. You can unsubscribe at any time through links in every email or by contacting us directly.
Comments and community contributions include any content you post in comment sections, forums, or other community features. This content becomes publicly visible along with your username or display name. We use this information to facilitate community discussion, moderate content according to our community guidelines, and improve our platform. Remember that anything you post publicly can be viewed, copied, and redistributed by others.
Contact and support communications include information you provide when emailing us, submitting feedback forms, or requesting technical support. This may include your name, email address, and any information you choose to include in your message. We use this information to respond to your inquiries, provide support, and improve our services based on feedback.
Survey and research participation may involve additional information you voluntarily provide when participating in user research, surveys, or feedback requests. We use this information to understand user needs, improve our content and features, and conduct research about AI education and information consumption. Participation is always voluntary, and we explain how information will be used before collecting it.
Payment information is collected if you purchase premium services, though we process payments through third party payment processors who handle sensitive financial information directly. We receive only limited payment information such as the last four digits of credit card numbers, payment status, and billing address necessary for account administration and fraud prevention.
Information Collected Automatically
When you visit AI Secrets, certain information gets collected automatically through standard web technologies. This automatic collection helps us operate our website, understand how people use it, identify technical problems, and improve the user experience.
Log data includes technical information your browser or device sends when you access our website. This typically includes your IP address, browser type and version, operating system, referring website, pages visited, time spent on pages, access times and dates, and device identifiers. We use log data to operate our website reliably, diagnose technical problems, analyze traffic patterns, prevent fraud and abuse, and understand aggregate usage patterns.
Cookies and similar technologies may be used to collect information about your browsing activities and preferences. Cookies are small text files stored on your device that help websites remember information about your visit. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted or expired).
Essential cookies are necessary for our website to function properly. These enable core features like account authentication, security protections, load balancing, and basic functionality. You cannot opt out of essential cookies while using services that require them, though you can delete them through your browser settings after visiting.
Analytics cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. We use analytics to identify popular content, understand navigation patterns, measure the effectiveness of our content, and identify areas for improvement. Analytics data is aggregated and does not identify individual users.
Preference cookies remember your choices and settings to provide a more personalized experience. These might include language preferences, display settings, saved searches, or content filters. These cookies improve usability but are not essential for basic functionality.
Advertising cookies may be used if we display advertisements or use advertising platforms to reach potential readers. These cookies track your browsing activity across websites to enable interest-based advertising. You can opt out of interest-based advertising through industry opt-out mechanisms and browser settings.
We also use web beacons, pixel tags, and similar technologies embedded in our web pages and emails. These help us understand whether content has been viewed, measure email open rates, and verify that communications reach intended recipients.
Device information collected automatically may include device type, screen resolution, device orientation, connection type, and mobile carrier. This information helps us optimize content delivery, ensure compatibility across devices, and understand how people access our content across different platforms.
Usage information includes details about how you interact with our content such as articles read, time spent reading, scroll depth, clicks on links, search queries entered, comments posted, and features used. We analyze this information to understand what content is valuable, how people discover and consume information, and how we can improve the user experience.
Information from Third Party Sources
We may receive information about you from third party sources in specific circumstances, always in compliance with applicable privacy laws and the privacy policies of those third parties.
Social media platforms provide limited information if you choose to log in or connect your social media account to AI Secrets. This typically includes basic profile information like your name, email address, profile picture, and public profile information. We use this information only to create or link your account and as you authorize.
Authentication services may provide information when you use third party authentication like Google Sign-In or similar services. We receive only the information necessary to authenticate your identity and create your account.
Analytics and advertising partners may provide aggregate information about how people arrive at our website, what content performs well, and demographic information about our audience in aggregate form. This helps us understand our reach and improve our content strategy.
Fraud prevention and security services may provide information about IP addresses, devices, or activity patterns associated with fraudulent or abusive behavior. We use this information solely to protect our platform and users from security threats.
Professional databases and verification services may be used if we verify credentials of contributors or interview subjects for editorial purposes. This verification serves our editorial standards and quality commitments.
How We Use Your Information
We use the information we collect for specific, legitimate purposes that provide value to you and enable us to operate and improve AI Secrets. We do not use your information for purposes incompatible with those disclosed in this policy without obtaining your explicit consent.
Providing and Improving Our Services
We use your information primarily to deliver the services you request and expect from AI Secrets. This includes displaying content relevant to your interests, enabling account features you use, processing your newsletter subscriptions, facilitating community interactions, and providing customer support when you need assistance.
Personalization uses information about your content preferences and reading history to suggest articles, customize your homepage, highlight relevant new content, and improve your overall experience. Personalization always remains optional, and you can use AI Secrets without personalized features if you prefer.
Service improvement involves analyzing how people use our website to identify problems, discover opportunities for enhancement, test new features, evaluate content performance, and make data-driven decisions about product development. This analysis typically uses aggregate or anonymized data that does not identify individuals.
Technical operations require certain data to keep our website functioning reliably and securely. This includes load balancing, caching content for faster delivery, backing up data, diagnosing technical issues, preventing service interruptions, and maintaining security protections.
Communication and Support
We use your contact information to communicate with you about our services, respond to your inquiries, provide technical support, send administrative notices about your account, and deliver newsletters or updates you have requested.
Newsletter delivery requires your email address to send content you have subscribed to receive. We track aggregate email performance like open rates and click rates to understand what content resonates with subscribers, but we handle this data with privacy protections and do not sell or share subscriber information with third parties for their marketing purposes.
Account and service notifications include important information about your account, security alerts, privacy policy updates, terms of service changes, and other administrative communications necessary for maintaining your relationship with AI Secrets. You cannot opt out of essential service communications while maintaining an account, though you can opt out of optional communications.
Customer support communications help us respond to your questions, resolve technical problems, investigate complaints, and improve our support processes. Support conversations may be retained to maintain service quality and train support staff.
Research and Analytics
We conduct research and analysis to understand how people engage with AI content, what information needs exist in the AI community, how our content serves those needs, and how we can improve our educational mission.
Aggregate analytics examine patterns across all users without identifying individuals. We analyze which articles are most valuable, how people navigate our website, what topics generate interest, how engagement changes over time, and what factors influence learning outcomes. These insights inform our editorial strategy and product decisions.
User research may involve surveys, interviews, or feedback sessions with participants who volunteer to help us understand user needs and evaluate potential improvements. Participation is always voluntary, and we explain how information will be used before collecting it.
A/B testing helps us evaluate whether changes to our website, content presentation, or features improve user experience. Tests might involve showing different versions of pages to different user segments and measuring which performs better. We use statistical methods that protect individual privacy while generating valid insights.
Security and Fraud Prevention
We use information to detect, prevent, and respond to fraud, abuse, security incidents, and other harmful activity. This includes monitoring for unusual access patterns, identifying potential account compromises, preventing spam and automated abuse, protecting against denial of service attacks, and investigating suspected violations of our terms of service.
Security monitoring may involve analyzing login patterns, device information, IP addresses, and usage behaviors to identify anomalies suggesting security threats. We balance security needs against privacy interests, using the minimum information necessary for effective security.
Legal Compliance and Protection
We may use or disclose information when we believe in good faith that it is necessary to comply with legal obligations, respond to valid legal process, protect the rights and safety of AI Secrets and our users, enforce our terms of service, investigate and prevent illegal activity, or fulfill other legitimate legal purposes.
Legal compliance uses may include responding to subpoenas, court orders, or other legal process from jurisdictions where we operate, cooperating with law enforcement investigations when legally required, complying with tax and financial reporting obligations, and fulfilling regulatory requirements applicable to our business.
How We Share Your Information
We do not sell your personal information to third parties. We do not rent your data to advertisers. We do not provide your information to data brokers. We share information only in specific circumstances described below, always with appropriate privacy protections.
Service Providers and Processors
We engage third party service providers to perform functions on our behalf under our instructions. These providers process data solely to deliver services we have contracted them to provide and are bound by confidentiality obligations.
Hosting and infrastructure providers store and deliver our website content through cloud hosting services and content delivery networks. These providers have access to data stored on their systems but are contractually prohibited from using it for their own purposes.
Analytics providers help us understand website usage and user behavior through analytics platforms. We select providers offering privacy-protective analytics options and configure services to minimize data collection where possible.
Email service providers deliver our newsletters and transactional emails. These providers process subscriber email addresses and engagement data on our behalf but cannot use this information for their own marketing or other purposes.
Payment processors handle financial transactions if you purchase premium services. Payment processors collect and process payment information directly and are responsible for their own compliance with payment card industry standards and applicable financial regulations.
Customer support platforms may host support communications and help us manage customer inquiries efficiently. These platforms process support tickets and customer communications under strict confidentiality requirements.
Security and fraud prevention services analyze activity patterns to identify threats and protect our platform. These services process limited technical information necessary for security functions.
Business Transfers
If AI Secrets is involved in a merger, acquisition, asset sale, bankruptcy, or other business transaction, your information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy. You will have the opportunity to delete your account before any such transfer if you prefer.
Legal Requirements and Protection
We may disclose information when we believe in good faith that disclosure is necessary to comply with legal obligations, respond to valid legal process, protect rights and safety, or investigate potential violations of law or our terms of service.
Legal process responses include complying with court orders, subpoenas, search warrants, or other valid legal demands from government authorities or parties to legal proceedings. We review all legal demands for validity and scope, challenge overly broad requests where appropriate, and disclose only information specifically required.
Safety and protection purposes may justify disclosure when we believe it is necessary to prevent imminent harm to individuals, investigate suspected illegal activity, protect our intellectual property rights, enforce our terms of service, or defend against legal claims.
We commit to transparency about government requests for user data. Where legally permitted, we will notify affected users before disclosing their information to government authorities, allowing them the opportunity to challenge the request. We publish transparency reports describing the number and types of government requests we receive.
Aggregate and Anonymized Data
We may share aggregate statistics, anonymized data, or de-identified information that cannot reasonably be used to identify you. This might include publishing research about AI content consumption patterns, sharing anonymized usage statistics with partners, or contributing to industry research using de-identified data.
Aggregation combines data from many users so that individual information cannot be identified. Anonymization removes or modifies identifying information so data cannot reasonably be linked back to individuals. De-identification uses technical measures to separate identifying information from other data.
When we share aggregate or anonymized data, we implement appropriate technical safeguards to prevent re-identification. We do not attempt to re-identify anonymized data and contractually prohibit recipients from attempting re-identification.
With Your Consent
We may share information in ways not described in this policy when we have obtained your explicit consent to do so. We will clearly describe the sharing, obtain your affirmative consent, and allow you to withdraw consent for future sharing.
International Data Transfers
AI Secrets operates globally and may transfer, store, and process your information in countries other than where you reside. These transfers enable us to operate efficiently and serve our international audience while maintaining appropriate privacy protections.
Legal Basis for Transfers
When we transfer personal information from the European Economic Area, United Kingdom, Switzerland, or other jurisdictions with data localization or transfer restrictions, we rely on appropriate legal mechanisms to ensure adequate protection.
Standard Contractual Clauses approved by the European Commission provide contractual guarantees that transferred data will receive adequate protection. We incorporate these clauses into agreements with service providers receiving data transfers.
Adequacy decisions by the European Commission or other regulators recognize certain countries as providing adequate data protection. Where available, we rely on these adequacy findings for transfers to approved jurisdictions.
Binding Corporate Rules may be used if we establish internal policies governing data transfers within an organizational group, though as an independent operation, we primarily rely on other mechanisms.
Specific derogations under GDPR and similar laws may justify certain transfers based on your explicit consent, contractual necessity, important public interests, legal claims, or vital interests. We use these derogations only when other mechanisms are unavailable and the derogation legitimately applies.
Transfer Safeguards
Regardless of legal mechanism, we implement appropriate safeguards for international data transfers including encryption during transmission and at rest, access controls limiting who can access transferred data, monitoring and auditing of data access, contractual protections with receiving parties, and incident response procedures for addressing security breaches.
We select service providers and partners based partly on their data protection capabilities and commitments. We require contractual provisions ensuring appropriate protection for transferred data and prohibiting unauthorized uses.
Data Security
We implement technical, organizational, and administrative safeguards designed to protect your information against unauthorized access, disclosure, alteration, and destruction. While no security measures are completely foolproof, we take data security seriously and invest appropriately in protective measures.
Technical Security Measures
Encryption protects data both in transit and at rest. We use HTTPS encryption with strong cipher suites for all website communications. Sensitive data stored in databases is encrypted using industry-standard encryption algorithms. Passwords are hashed using strong, salted hashing algorithms designed for password storage.
Access controls limit who can access personal information to those with legitimate business needs. We implement role-based access controls, principle of least privilege, multi-factor authentication for administrative access, and regular access reviews to ensure permissions remain appropriate.
Network security measures include firewalls, intrusion detection systems, DDoS protection, and network segmentation to isolate sensitive systems. We monitor network activity for suspicious patterns and respond promptly to detected threats.
Application security practices include secure coding standards, regular security testing, vulnerability scanning, penetration testing, security code reviews, and secure development lifecycle practices. We keep software and systems patched and updated against known vulnerabilities.
Data backup and disaster recovery procedures ensure we can restore services and data if systems fail or disasters occur. Backups are encrypted, stored securely, and tested regularly to verify restoration capabilities.
Organizational Security Measures
Security policies and procedures govern how our team handles personal information. These include acceptable use policies, incident response procedures, data classification schemes, retention policies, and training requirements.
Employee training ensures team members understand privacy principles, data protection obligations, security best practices, and their role in protecting user information. Training occurs during onboarding and periodically thereafter.
Background checks are conducted for employees and contractors with access to sensitive systems or personal information, to the extent permitted by applicable law and appropriate to their role.
Vendor management includes security assessments of service providers, contractual security requirements, monitoring of vendor security practices, and contingency plans for vendor failures or security incidents.
Physical security measures protect equipment and facilities where personal information is stored or processed, including access controls, surveillance, environmental protections, and secure disposal procedures for hardware containing data.
Incident Response
Despite our security measures, no system is completely immune to security incidents. We maintain an incident response plan for detecting, responding to, and recovering from security breaches.
If we discover a security incident affecting personal information, we will investigate the incident, take steps to contain and remediate the breach, assess what information was affected, evaluate risks to affected individuals, and comply with applicable breach notification requirements.
Notification timing and content follows applicable laws, which vary by jurisdiction. Generally, we commit to notifying affected individuals and relevant regulators without undue delay once we have investigated the incident and understand its scope and impact. Notifications describe what happened, what information was affected, what we are doing in response, and what steps you can take to protect yourself.
Data Retention
We retain personal information for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, enforce our agreements, and protect our legitimate interests. Retention periods vary based on information type and context.
Retention Periods by Category
Account information is retained while your account remains active and for a limited period after account closure to facilitate reactivation if you change your mind, comply with legal obligations, resolve disputes, and prevent abuse. Account data is typically deleted within ninety days of account closure unless legal requirements mandate longer retention.
Content you create, such as comments or forum posts, may be retained after account deletion if you posted it publicly, as it has become part of community discussions. However, we will disassociate public content from your account and personally identifying information upon request.
Newsletter subscriptions and email communications are retained until you unsubscribe, after which we delete or anonymize your subscription data while retaining aggregate statistics. Transactional email records may be retained longer for customer support and legal compliance.
Usage logs and analytics data are typically retained for limited periods, often between ninety days and two years depending on the specific data type and business need. We aggregate or anonymize older usage data where possible, removing direct identifiers while preserving analytical value.
Customer support communications are retained for the period necessary to resolve your inquiry and a reasonable period thereafter for quality assurance and training purposes. Support tickets older than three years are typically deleted unless ongoing legal or business needs require retention.
Payment and financial records are retained as required by applicable tax, accounting, and financial regulations, which often mandate retention for five to seven years or longer depending on jurisdiction.
Security logs and fraud prevention data may be retained longer than other data types because security analysis often requires historical data to identify patterns. However, we implement privacy-protective measures like aggregation and pseudonymization where possible.
Retention Extensions
Legal obligations may require us to retain information longer than our standard retention periods. These might include litigation holds, regulatory investigations, tax audits, or compliance with specific legal requirements.
Your consent can authorize retention beyond standard periods if you explicitly agree to extended retention for specific purposes. We will honor your consent until you withdraw it.
Legitimate interests may justify extended retention in specific circumstances, such as retaining information necessary to defend against legal claims within applicable statutes of limitations.
Secure Deletion
When retention periods expire and no exception applies, we securely delete or anonymize personal information using methods appropriate to the storage medium and data sensitivity. Deletion makes information unrecoverable using reasonable means. Anonymization removes or modifies identifying information so data cannot reasonably be linked back to individuals.
Backup systems may retain deleted information temporarily until backup rotation cycles complete. Deleted data in backups is not accessible for normal operations and will be permanently deleted when backup media is overwritten or destroyed.
Your Privacy Rights
You have important rights regarding your personal information. The specific rights available to you depend on your location and applicable laws, but we extend strong privacy protections to all users regardless of location.
Right to Access
You have the right to know what personal information we hold about you, how we use it, who we share it with, and other information about our processing activities. You can request a copy of your personal information in a structured, commonly used, machine-readable format.
To access your information, log into your account settings where you can view and download much of your data directly. For information not available through account settings, submit an access request to privacy@ai-secrets.online. We will respond within thirty days or sooner as required by applicable law.
Right to Correction
You have the right to correct inaccurate personal information and complete incomplete information. You can update much of your information directly through account settings. For corrections beyond self-service capabilities, contact us at privacy@ai-secrets.online with details of needed corrections.
We will verify your identity, evaluate the correction request, and update information determined to be inaccurate or incomplete. In some cases, we may maintain records of previous values for legal compliance or legitimate business purposes while updating primary records.
Right to Deletion
You have the right to request deletion of your personal information in many circumstances, subject to exceptions for legal obligations, legitimate interests, and other lawful reasons for retention.
To delete your account and associated information, use the account deletion feature in account settings or contact privacy@ai-secrets.online. We will delete your information within ninety days unless legal requirements mandate longer retention.
Deletion requests are evaluated to ensure they do not conflict with legal obligations, pending legal claims, fraud prevention needs, or other legitimate reasons for retention. When we cannot delete information, we will explain why and what information must be retained.
Right to Restriction
You have the right to restrict processing of your personal information in certain circumstances, such as when contesting accuracy, when processing is unlawful but you prefer restriction to deletion, when we no longer need the data but you need it for legal claims, or while we verify legitimate grounds for processing that you have objected to.
Restriction means we will store information but not actively process it without your consent except for limited purposes like legal claims or protecting others’ rights.
Right to Object
You have the right to object to processing based on legitimate interests or for direct marketing purposes. When you object, we will stop processing unless we can demonstrate compelling legitimate grounds that override your interests or the processing is necessary for legal claims.
You can object to direct marketing at any time, and we will stop marketing to you immediately. Use unsubscribe links in emails, adjust communication preferences in account settings, or contact privacy@ai-secrets.online.
Right to Data Portability
You have the right to receive personal information you provided to us in a structured, commonly used, machine-readable format and to transmit it to another controller without hindrance where technically feasible.
Data portability applies to information you provided, processed based on consent or contract, and processed by automated means. It does not extend to derived or inferred data. Request data portability through account settings or by contacting privacy@ai-secrets.online.
Right to Withdraw Consent
When we process personal information based on your consent, you have the right to withdraw that consent at any time. Withdrawal does not affect lawfulness of processing before withdrawal.
To withdraw consent, adjust settings in your account, use opt-out mechanisms provided in communications, or contact privacy@ai-secrets.online. We will stop processing based on withdrawn consent unless another legal basis applies.
Right to Lodge Complaints
You have the right to lodge complaints about our privacy practices with supervisory authorities. If you believe we have violated your privacy rights or applicable data protection laws, you can file a complaint with the data protection authority in your jurisdiction.
European Economic Area residents can contact their national data protection authority. Contact information for EU data protection authorities is available at https://edpb.europa.eu/about-edpb/board/members_en
UK residents can contact the Information Commissioner’s Office at https://ico.org.uk/make-a-complaint/
We encourage you to contact us first at privacy@ai-secrets.online so we can attempt to resolve concerns directly.
Exercising Your Rights
To exercise privacy rights, contact us at privacy@ai-secrets.online with your request. Include sufficient information for us to verify your identity and understand your request.
Identity verification protects your privacy by ensuring requests come from actual account holders or data subjects. We may request additional information to verify your identity before processing requests involving access, correction, or deletion of personal information.
We respond to valid requests within thirty days or as otherwise required by applicable law. If we need additional time, we will notify you and explain why. If we decline a request, we will explain our reasoning and inform you of your right to appeal or complain to a supervisory authority.
We do not charge fees for most requests unless they are manifestly unfounded, excessive, or repetitive. In such cases, we may charge a reasonable fee or refuse the request, explaining our decision.
Authorized agents may submit requests on your behalf in jurisdictions that allow it. We require written authorization from you confirming the agent’s authority and may verify directly with you that you authorized the agent.
Children’s Privacy
AI Secrets is not directed to children under the age of sixteen, and we do not knowingly collect personal information from children under sixteen. If we learn we have collected personal information from a child under sixteen, we will delete it promptly.
Age verification mechanisms may be implemented if we offer services that could attract younger users. We take special care regarding content and features that might appeal to minors.
If you believe we have inadvertently collected information from a child under sixteen, please contact us immediately at privacy@ai-secrets.online so we can investigate and delete the information if confirmed.
Parents and guardians concerned about their children’s online privacy should supervise internet usage, use parental control tools, and educate children about sharing personal information online.
Some jurisdictions define children differently or impose additional protections for older minors. We comply with applicable age-related privacy requirements in all jurisdictions where we operate.
California Privacy Rights
California residents have specific privacy rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). This section describes those rights and how to exercise them.
Information We Collect
The “Information We Collect” section above describes personal information categories we collect. For California transparency requirements, categories collected in the preceding twelve months include identifiers, internet activity information, commercial information, professional information (if provided), and inferences drawn from personal information.
Business and Commercial Purposes
We use personal information for business and commercial purposes described in the “How We Use Your Information” section. These include providing services, personalization, communications, research and analytics, security and fraud prevention, and legal compliance.
Categories of Third Parties
We share personal information with categories of third parties described in the “How We Share Your Information” section, including service providers, analytics partners, advertising partners, and as required for legal compliance.
Selling and Sharing Personal Information
We do not sell personal information as defined by CCPA. We do not share personal information for cross-context behavioral advertising purposes. Therefore, opt-out rights related to selling and sharing do not apply to AI Secrets because we do not engage in these practices.
Sensitive Personal Information
We do not collect sensitive personal information as defined by CPRA such as Social Security numbers, precise geolocation, racial or ethnic origin, religious or philosophical beliefs, genetic data, biometric data for identification purposes, health information, sex life or sexual orientation information, or citizenship or immigration status.
California Privacy Rights
California residents have the right to know what personal information we collect, use, disclose, sell, or share; access personal information we hold; delete personal information subject to exceptions; correct inaccurate information; and limit use of sensitive personal information (though we do not collect such information).
Exercise these rights by contacting privacy@ai-secrets.online or using account settings for self-service options. We will not discriminate against you for exercising privacy rights.
Retention Periods
See the “Data Retention” section above for information about how long we retain different categories of personal information.
California Shine the Light
Under California Civil Code Section 1798.83, California residents may request information about disclosure of personal information to third parties for direct marketing purposes. Because we do not disclose personal information to third parties for their direct marketing purposes, this right generally does not apply.
Nevada Privacy Rights
Nevada residents have the right under Nevada law to opt out of the sale of certain covered information. We do not sell covered information as defined by Nevada law, so this opt-out right does not currently apply. If our practices change, we will update this policy and provide required opt-out mechanisms.
Virginia, Colorado, Connecticut, and Utah Privacy Rights
Residents of Virginia, Colorado, Connecticut, and Utah have privacy rights under their respective state comprehensive privacy laws. These rights generally include accessing personal data, correcting inaccuracies, deleting personal data, obtaining copies of personal data, and opting out of certain processing activities.
Specific rights available to you under your state law include the right to confirm whether we process your personal data, access your personal data, correct inaccuracies, delete personal data, obtain a copy of personal data, and opt out of targeted advertising, sale of personal data, and profiling in furtherance of decisions producing legal or similarly significant effects.
We do not engage in targeted advertising, sale of personal data, or profiling producing legal or similarly significant effects as defined by these state laws, so opt-out rights related to these activities do not apply.
To exercise rights under these state laws, contact privacy@ai-secrets.online. If we decline your request, you have the right to appeal by contacting us at the same address with “Privacy Rights Appeal” in the subject line. We will respond to appeals within required timeframes.
Changes to This Privacy Policy
We may update this privacy policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will update the “Last Updated” date at the top of this policy.
Material changes will be communicated through prominent notice on our website, email notification to registered users, or other appropriate methods depending on the nature of changes and applicable legal requirements. Material changes include significant changes to what information we collect, how we use it, who we share it with, or your privacy rights.
Your continued use of AI Secrets after changes become effective constitutes acceptance of the updated policy. If you disagree with changes, you may close your account and stop using our services. Account closure requests should be directed to privacy@ai-secrets.online.
We encourage periodic review of this policy to stay informed about how we protect your privacy. Archived versions of previous policies are available upon request.
Additional Information and Contact
This privacy policy provides comprehensive information about our privacy practices, but you may have additional questions or concerns. We welcome inquiries and feedback about privacy.
Contact Methods
For privacy questions, requests to exercise rights, concerns about our practices, or complaints, contact our privacy team at privacy@ai-secrets.online. We commit to responding to all legitimate inquiries within thirty days.
For general inquiries not specifically related to privacy, contact us at contact@ai-secrets.online.
For security concerns or to report security vulnerabilities, contact security@ai-secrets.online. We maintain a responsible disclosure program for security researchers.
Supervisory Authority Contact
If you are located in the European Economic Area, United Kingdom, Switzerland, or another jurisdiction with data protection authorities, you have the right to lodge complaints with your local supervisory authority. Contact information is typically available through your national data protection authority website.
Effective Date and Updates
This privacy policy became effective on January 24, 2026. Check the “Last Updated” date at the top to determine when this policy was most recently revised.
We thank you for trusting AI Secrets with your information and for taking the time to understand how we protect your privacy. Your privacy matters to us, and we remain committed to earning and maintaining your trust through transparent, responsible data practices.
Last Updated: January 24, 2026