EFFECTIVE: June 2026 — Version v1-2026-06
This Privacy Policy explains what information Credit Wizard A.I ("we", "us", "Company") collects, why we collect it, how we use it, how we protect it, and the choices you have. By using the App, you agree to this Policy.
1. INFORMATION WE COLLECT.
(a) Account info: email, display name, password (hashed by our authentication provider), and optionally a phone number for two-step verification.
(b) Identity documents you choose to upload: government ID, proof of address, and (optionally) Social Security card. These are stored encrypted at rest in a private storage bucket, are NEVER public, and are only accessible by you and (when you ask) our support team.
(c) Credit reports and report data you upload. We extract structured details (creditors, accounts, balances, inquiries, dates) for use inside your private CRM and to power A.I. autofill on your dispute letters.
(d) Dispute artifacts: letters you generate, evidence uploads, certified-mail tracking numbers, bureau responses, CFPB / BBB / FTC complaint drafts.
(e) Usage data: pages viewed, errors, device and browser info, and IP address — used to keep the App running and secure.
(f) Communications: support tickets, emails, and any messages you send.
2. WHAT WE DO NOT COLLECT.
We do NOT pull your credit report on your behalf. We do NOT access your bureau accounts. We do NOT have a data feed from Equifax, Experian, or TransUnion. We do NOT sell personal information to third parties.
3. HOW WE USE INFORMATION.
We use your data only to: provide and operate the App; generate your AI-assisted letters and templates; secure your account; respond to support; process subscription payments; send transactional and account emails; comply with law.
4. SHARING.
We share data only with: our hosting and authentication provider (to run the App), our payment processor (for subscription billing), our email provider (for transactional and verification emails), and law-enforcement when legally required by valid process. We never sell or rent personal data.
5. SECURITY.
Row-Level Security is enforced on every per-user table in our database. Identity documents and credit reports live in private storage buckets accessible only by you. Passwords are hashed by our auth provider. Two-step email verification is available for sensitive actions. No system is perfectly secure — see Section 8 Limitation of Liability in our Terms.
6. AI PROCESSING.
When you use A.I. autofill, your dispute text and the report data you've uploaded are sent to our AI provider via the Lovable AI Gateway under a no-retention configuration. AI output is generated content and may be inaccurate — review before sending.
7. RETENTION.
We retain your account data while your account is active. You may request deletion at any time (see Section 10 and the in-app Data Deletion Request page). Some records may be retained as required by law, fraud prevention, or dispute resolution.
8. CHILDREN.
The App is not directed to children under 18 and we do not knowingly collect their data.
9. YOUR CHOICES.
You can: edit profile data; download / print your letters and uploads; cancel your subscription at any time from the in-app Cancel Subscription page; request a copy of your data; request deletion of your data. Email support to exercise these rights.
10. DATA DELETION.
Use the in-app Data Deletion Request page. We confirm and process deletion within 30 days. Some non-personal aggregated logs may remain. After deletion you can no longer recover prior content.
11. INTERNATIONAL.
The App is operated from the United States. By using it you consent to processing in the U.S.
12. CHANGES.
We may update this Policy. Material changes require you to re-accept.
13. CONTACT.
Use the in-app Support page to reach us about anything in this Policy.