The short version: We store your account information and review history. The creatives you upload are sent to our AI provider for analysis and are not stored by Greenlit. We do not sell your data to anyone.
Who We Are
Greenlit AI is a brand compliance review tool operated as a sole proprietorship in India. For questions about this policy, contact us at [email protected].
What We Collect
When you use Greenlit AI, we collect the following:
- Account information — your email address and password (stored securely via Supabase)
- Brand configuration — your taxonomy, rules, and brand colors as you set them up
- Review history — the verdict, score, category results, and creative label for each review you run
- Usage data — how many reviews you run per day, for billing and limit enforcement
We do not collect payment details directly. Payment is handled via Razorpay, which has its own privacy policy.
Creative Images
When you upload a creative for review, the image is sent to Anthropic's API to perform the analysis. This is the core function of the product.
- Images are transmitted securely and are not stored by Greenlit AI
- Anthropic does not use API inputs to train their models by default — see anthropic.com/privacy for their full policy
- We store only the outcome of the review (verdict, score, category results) — not the image itself
How We Use Your Data
- To provide the review service and display your review history
- To enforce daily usage limits per your plan
- To show you dashboard analytics on your review performance
- To send transactional emails related to your account (e.g. signup confirmation)
We do not use your data for advertising. We do not sell your data to third parties.
Data Isolation
Each brand workspace is fully isolated. Your brand rules, colors, taxonomy, and review history are only visible to members of your workspace. No data is shared across accounts.
Third-Party Services
Greenlit AI uses the following third-party services to operate:
- Supabase — database and authentication (hosted in Asia-Pacific, Sydney)
- Anthropic — AI model for creative analysis
- Cloudflare — hosting and edge functions
- Razorpay — payment processing
Each of these providers has their own privacy policy governing how they handle data.
Data Retention
We retain your account data and review history for as long as your account is active. If you close your account, you can request deletion of your data by emailing [email protected]. We will process deletion requests within 30 days.
Security
We take reasonable steps to protect your data. All data is transmitted over HTTPS. Authentication is managed by Supabase with row-level security policies ensuring no cross-account data access. Your Anthropic API key is never exposed in the browser — all AI calls are routed through a server-side function.
Your Rights
You can request access to, correction of, or deletion of your personal data at any time by contacting us at [email protected]. We will respond within 30 days.
Changes to This Policy
We may update this policy from time to time. If we make significant changes, we will notify you via email. The date at the top of this page reflects when it was last updated.
Get in touch
For any questions about this privacy policy or how we handle your data, e