Privacy Policy

This privacy policy applies to the Hypersonic app (hereby referred to as "Application") for mobile devices that was created by Andreas Krassnitzer (hereby referred to as "Service Provider") as a Freemium service. This service is intended for use "AS IS".

Information Collection and Use We collect and process certain information when you use our application. This includes:

• Account Information: Your name, email address, and password provided at signup.
• Shortcut and Prompt Data: The keyboard shortcuts you create, the AI prompts associated with them, and the selected text used when executing shortcuts.
• Usage Data: This includes IP address, device information, operating system, application usage details (e.g., pages visited, time spent, interaction logs).
• Location Data: While we do not collect precise location data, we may process approximate location information based on your IP address to improve our services.
• Communication Data: If you contact us, we may collect communication details to respond to your inquiries or provide support.

We use this information to:

• Provide and improve the application's functionality.
• Enable sharing and collaboration on shortcuts.
• Enhance user experience through analytics and service improvements.
• Contact you with important updates, required notices, or marketing communications (you can opt out at any time).
• We do not share user-generated content or selected text with other users. However, prompts in shortcuts may be processed to generate AI responses, which are then presented to users. All stored prompts and selected text are processed in accordance with this policy.

Legal Basis for Processing

We process your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR). Our processing activities rely on the following legal bases:

1. Account Information (Name, Email, Password)

• Legal Basis: Contractual Necessity – We require this information to create and maintain your account, authenticate your access, and provide core application functionality.

2. Shortcut and Prompt Data (Shortcuts, AI Prompts, Selected Text)

• Legal Basis: Contractual Necessity – This data is required to execute AI-generated shortcuts and deliver the service as described.
• Legal Basis: Consent – If you share shortcuts with other users or store prompts, we process this data with your consent.
• Legal Basis: Legitimate Interest – We analyze anonymized prompts to improve AI performance and user experience.

3. Usage Data (IP Address, Device Information, Operating System, App Usage)

• Legal Basis: Legitimate Interest – We collect and analyze usage data to enhance application performance, improve security, prevent fraud, and detect abuse.

4. Location Data (Approximate Geolocation via IP Address)

• Legal Basis: Legitimate Interest – We use approximate location data to optimize service performance, provide region-specific content, and conduct analytics.
• Legal Basis: Consent – If location-based features are enabled, we process this data based on your explicit consent.

5. Communication Data (Support Requests, Inquiries)

• Legal Basis: Contractual Necessity – When you contact us for support, we process your data to respond and assist.
• Legal Basis: Legitimate Interest – We retain limited communication records to improve customer service and resolve disputes.

6. Marketing Communications

• Legal Basis: Consent – We will only send marketing emails or promotional materials if you have explicitly opted in. You can withdraw your consent at any time.

We ensure that all processing activities align with these legal bases, and we provide mechanisms for users to exercise their rights regarding their personal data. For further inquiries, please contact us at mothership@hypersonic-ai.com.

Data Storage & International Transfers

We store and process user data on secure servers located in the United States. If you are accessing our services from the European Economic Area (EEA) or another region with data protection laws, we ensure that your data is protected in compliance with the General Data Protection Regulation (GDPR).

1. GDPR Compliance for U.S. Data Storage

To safeguard personal data transferred outside the EEA, we rely on the following legal mechanisms:

• Standard Contractual Clauses (SCCs): We implement the European Commission’s Standard Contractual Clauses (SCCs) as the legal basis for transferring and processing EEA user data in the U.S.
• Data Protection Addendum (DPA): We enter into contractual agreements with third-party service providers to ensure compliance with GDPR standards.
• Additional Safeguards: We implement encryption (AES-256 for storage, TLS for transmission), access controls, and regular security audits to prevent unauthorized access to personal data.

2. Your Rights Regarding International Transfers

If you are an EEA user and have concerns about how your data is transferred or processed outside the EEA, you have the right to: - Request a copy of our Standard Contractual Clauses (SCCs). - Object to the transfer of your data if you believe it is not adequately protected. - Request data deletion in accordance with our Data Retention Policy.

For any inquiries related to data storage or international transfers, please contact us at mothership@hypersonic-ai.com.

User Rights (GDPR Compliance)

Under the General Data Protection Regulation (GDPR), you have the following rights concerning your personal data:

1. Access, Update, or Delete Your Data You have the right to access your personal data and request corrections if it is inaccurate or incomplete. You may delete your account and associated data at any time by contacting us.
2. Object to Processing (Including AI Processing) You can object to the processing of your selected text by AI or request limitations on how your data is used. If you wish to disable AI processing for your selected text, you can contact us.
3. Data Portability (Export Your Data) You may request a copy of your data in a structured, machine-readable format. We will provide this data within a reasonable timeframe and free of charge.
4. Opt-Out of Marketing Communications You can opt out of receiving marketing emails or promotional notifications at any time by clicking the "unsubscribe" link in emails.

To exercise any of these rights, specifically to exercise your right to object, contact us at mothership@hypersonic-ai.com. We will process your request in accordance with applicable data protection laws.

AI Processing and User Data

Our application leverages AI-powered features. Below, we outline how AI interacts with your data, the third-party AI services we use, and your options for controlling AI processing.

1. How AI Interacts with User Data

• When you trigger a shortcut, the selected text is sent along with the AI prompt to an external AI service provider for processing.
• The AI generates a response, which is then returned to you within the application.
• We do not share user-generated content (i.e. prompts) with other users, but AI-generated responses based on public/shared shortcuts may be seen by multiple users.

2. AI Models and Third-Party Services

We use OpenAI as our third-party AI service provider to process user prompts and selected text. OpenAI’s AI models (such as GPT-4 and later versions) analyze text and generate responses.

• Data Handling by OpenAI: User inputs are sent to OpenAI’s API for real-time processing. OpenAI may process but does not retain these inputs for long-term storage.
• No AI Model Training on User Data: We do not allow OpenAI to use your data to train or improve their models.

3. AI Opt-Out Mechanisms

We respect user preferences and provide options for opting out of AI processing:

• Disable AI Processing: Users can disable AI-based processing in their account settings, preventing selected text from being sent to OpenAI.
• Selective AI Usage: Users can choose which shortcuts trigger AI processing and which do not.
• Request Data Deletion: Users may request the deletion of stored AI prompts and associated input/output data.

4. Legal Basis for AI Processing

• Consent: AI processing occurs only when a user initiates a shortcut. By using AI-powered shortcuts, you consent to the processing of your selected text.
• Legitimate Interest: We use AI to enhance user experience and improve service functionality. However, users can opt out at any time.

For any questions or to opt out of AI processing, please contact us at mothership@hypersonic-ai.com.

Third Party Access

Only aggregated, anonymized data is periodically transmitted to external services to aid the Service Provider in improving the Application and their service. The Service Provider may share your information with third parties in the ways that are described in this privacy statement.

Please note that the Application utilizes third-party services that have their own Privacy Policy about handling data. Below are the links to the Privacy Policy of the third-party service providers used by the Application:

• Google Services

The Service Provider may disclose User Provided and Automatically Collected Information:

• as required by law, such as to comply with a subpoena, or similar legal process;
• when they believe in good faith that disclosure is necessary to protect their rights, protect your safety or the safety of others, investigate fraud, or respond to a government request;
• with their trusted services providers who work on their behalf, do not have an independent use of the information we disclose to them, and have agreed to adhere to the rules set forth in this privacy statement.

Opt-Out Rights

You can stop all collection of information by the Application easily by uninstalling it. You may use the standard uninstall processes as may be available as part of your device.

Data Retention Policy

We retain user data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. Below are the specific retention periods for different types of data:

1. User Account Data

• We retain your account data (name, email, password) until you delete your account.
• Upon account deletion, all associated personal data will be permanently removed within 90 days, unless legal or regulatory requirements mandate longer retention.

2. AI Prompts & Selected Text

• AI prompts and selected text processed through keyboard shortcuts are stored for a maximum of 2 years to improve service functionality and allow users to review past interactions.
• Users can request deletion of stored AI prompts and selected text at any time by contacting us.
• Upon account deletion, all stored prompts and selected text will be erased within 90 days.

3. Location Data

• If location data is collected (e.g., for approximate geolocation), it is retained for a maximum of 7 days before being anonymized or deleted.
• Aggregated, non-identifiable location data may be retained for analytics purposes.

4. Communication and Support Data

• If you contact us for support or inquiries, we may retain communication records for up to 6 months to resolve issues and improve our services.

5. Legal and Compliance Obligations

• In some cases, we may be required to retain data for longer periods to comply with legal obligations, resolve disputes, or enforce our agreements.

How to Request Data Deletion

You have the right to request the deletion of your data at any time. To do so, please contact us at mothership@hypersonic-ai.com. We will process your request within a reasonable timeframe, typically within 30 days.

Children

The Service Provider does not use the Application to knowingly solicit data from or market to children under the age of 13.

The Application does not address anyone under the age of 13. The Service Provider does not knowingly collect personally identifiable information from children under 13 years of age. In the case the Service Provider discover that a child under 13 has provided personal information, the Service Provider will immediately delete this from their servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact the Service Provider (mothership@hypersonic-ai.com) so that they will be able to take the necessary actions.

Security

We are committed to safeguarding the confidentiality, integrity, and availability of your data. We implement industry-standard security measures to protect your personal information from unauthorized access, loss, misuse, or alteration.

1. Data Encryption

• All stored user data, including account information and shortcut-related data, is encrypted using AES-256 encryption or equivalent industry-standard methods.
• Data in transit is protected using TLS (Transport Layer Security) encryption to prevent interception.

2. Access Controls and Authentication

• Access to user data is restricted to authorized personnel only, based on the principle of least privilege.
• Multi-factor authentication (MFA) is enforced for internal system access.
• User passwords are hashed using bcrypt or a similarly strong hashing algorithm.

3. Data Minimization

• We collect and store only the data necessary to provide our services.
• Non-essential data is either anonymized or deleted after the defined retention period.

4. Monitoring and Threat Detection

• Our systems are monitored for suspicious activity, unauthorized access attempts, and potential vulnerabilities.
• Regular security audits and penetration testing are conducted to identify and address risks.

5. Data Breach Notification (GDPR Compliance)

• In the event of a data breach affecting personal data, we will assess its severity and impact.
• If the breach is likely to result in a risk to your rights and freedoms, we will notify affected users and the relevant data protection authority within 72 hours, as required by GDPR.

6. Process for Notifying Affected Users

• Affected users will be notified via email and/or in-app notifications with details of the breach, its impact, and recommended actions to protect their data.
• We will provide guidance on steps to mitigate risks, such as resetting passwords or enabling additional security measures.

For any security concerns or questions regarding our data protection practices, please contact us at mothership@hypersonic-ai.com.

Changes

This Privacy Policy may be updated from time to time for any reason. The Service Provider will notify users of any changes to the Privacy Policy by updating this page with the new Privacy Policy and sending an email to the email address provided. You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.

This privacy policy is effective as of 2025-02-13

Your Consent

By using the Application, you are consenting to the processing of your information as set forth in this Privacy Policy now and as amended by us.

Contact Us

If you have any questions regarding privacy while using the Application, or have questions about the practices, please contact the Service Provider via email at mothership@hypersonic-ai.com.

This privacy policy page was generated by App Privacy Policy Generator