HumanGPT logoHumanGPTmakes AI sound human
Try it free
← back to home§01Privacy policy

What we collect.
What we don't.

Short version: we don't store the text you paste, we don't sell anything to anyone, we don't run third-party trackers, and you can delete every record we have on you in two clicks. The long version is below, with a plain-English translation next to every legal paragraph.

Last updated · May 4, 2026

1. What we collect

When you use HumanGPT we receive the text you paste into the tool, the IP address your request comes from, basic browser metadata (user agent, referrer, language), and any account information you provide if you sign up for a paid plan. That is the entire list.

2. What we do with the text you paste

Your text is sent to our humanizer pipeline (which currently uses Google's Gemini API) and the rewritten output is sent back to you. We do not save the input text in our database. We do not train any model on your text. We do not aggregate it. We do not sell it. The text is held in-memory long enough to process the request, then dropped.

3. Cookies and tracking

We use one essential cookie to maintain your free-tier rate limit per browser session. We do not use Google Analytics, Facebook Pixel, third-party advertising trackers, or any cross-site tracking technology. We do use Cloudflare to keep the site fast and protected from abuse, which involves Cloudflare seeing your request metadata (this is industry-standard for any modern website).

  • No Google Analytics. No GA4. No Facebook Pixel. No TikTok Pixel.
  • No third-party advertising cookies. We don't run ads.
  • No retargeting. If you leave, you leave. We don't follow you around the internet.
  • Yes, Cloudflare for DDoS protection. Yes, Creem for payments (only if you upgrade).

4. Who we share data with

We share data with the minimum number of vendors required to actually run the product. As of today: Google Gemini API (for the humanizer pipeline), Cloudflare (for hosting and protection), Creem (only if you make a payment), and Resend (only if you subscribe to our newsletter or contact us). We do not share data with anyone else.

5. International users and GDPR / CCPA

We comply with GDPR (EU/UK) and CCPA (California) and treat the rights they grant as global rights for every user. You can request access to all data we hold on you, request correction, request deletion, and object to processing at any time. We respond to these requests within 30 days, usually within 48 hours. Email [email protected] with the subject 'Privacy request' and include the email address you used to sign up.

6. Data retention

Free tier: we hold no record of you beyond a temporary rate-limit counter that resets every 24 hours. Paid tier: we keep your account record (email, plan, billing history) for as long as your account exists, plus 90 days after closure for legal and accounting purposes. After 90 days, we hard-delete it.

7. Children's privacy

HumanGPT is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe a child has provided us with personal information, contact us and we will delete it within 7 days.

8. Security

We use HTTPS everywhere. Passwords (when accounts ship) are stored hashed and salted with bcrypt. Creem handles payment information end-to-end (we never receive your full card number). Our infrastructure runs on Vercel and Cloudflare, both of which are SOC 2 certified.

9. Changes to this policy

When we make a material change to this policy we will email all account holders and post a notice on the homepage at least 30 days before the change takes effect. Minor edits (clarifying language, fixing typos) we just push.

10. Contact

Privacy questions: [email protected]. We aim to respond within 24 hours, faster if it's a deletion or access request.