Privacy Policy
Last Updated: May 11, 2026
1. Introduction
UsecaseAI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
2. Information We Collect
2.1 Information You Provide
- Account Information: Email address, name, username, profile information
- User Content: Stories, questions, answers, comments, and reactions you create
- Profile Data: Profile pictures, banner images, bio, social media links
- Communications: Messages you send to us for support or feedback
- Claude Code Session Data: If you import Claude Code session files, we store the parsed content — messages and tool call summaries — as draft story content in our database
2.2 Automatically Collected Information
- Usage Data: Pages viewed, features used, time spent, click patterns
- Device Information: IP address, browser type, operating system, device identifiers
- Cookies: We use cookies and similar tracking technologies (see Section 8)
- Log Data: Server logs including timestamps, errors, and system events
2.3 Third-Party Information
- Authentication Providers: Information from WorkOS when you sign in
- External Profiles: Public profile data from Twitter/X or GitHub if you link your account
2.4 What to Share (and What to Avoid) in Your Stories
UsecaseAI is designed for sharing how you use AI products—your workflows, outcomes, and experiences. When telling your story, focus on the what and why rather than sensitive implementation details.
Great things to share:
- The problems AI helped you solve
- Your workflows and creative approaches
- Results and outcomes you achieved
- Tips and lessons learned
Please avoid including:
- API keys, access tokens, or credentials for AI services
- Screenshots showing sensitive data in AI tool interfaces
- Proprietary prompts containing confidential business information
- Internal company data, trade secrets, or non-public information
- Claude Code session files containing credentials, API keys, passwords, or sensitive command history
- Personal information about others without their consent
- Financial account numbers, government IDs, or health information
You are solely responsible for the content you share. Any sensitive information you include may be publicly visible and processed by third-party AI services.
3. How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain the Service
- Authenticate your identity and manage your account
- Process your requests and transactions
- Generate AI-powered questions and content suggestions
- Personalize your experience and show relevant content
- Communicate with you about updates, features, and support
- Monitor and analyze usage patterns to improve the Service
- Detect, prevent, and address technical issues and security threats
- Enforce our Terms of Service and protect user safety
- Comply with legal obligations
4. AI and Content Processing
We use artificial intelligence (AI) services, including OpenAI's GPT models and Anthropic's Claude models, to enhance your experience:
4.1 Story Creation
- Generate personalized interview questions based on your story content
- Extract and identify AI products and people mentioned in stories
4.2 Media Analysis
- Images: AI generates descriptions of uploaded images to provide context
- Code blocks: AI analyzes code, markdown, conversations, and configuration files to extract structured information
- Videos: For YouTube videos, we may fetch transcripts and generate AI summaries of the content
4.3 Moderation
- Automated content moderation to detect policy violations
4.4 Claude Code Session Import
When you import a Claude Code session file (.jsonl):
- The file is parsed entirely in your browser using client-side JavaScript — the raw session file is never transmitted to our servers
- Parsed content (messages and tool call summaries) is stored as draft story content in our database (Convex) until you delete it or publish your story
- We apply automated redaction to common credential patterns — including API keys, tokens, passwords, and environment variables — before content is stored. This redaction is best-effort and does not guarantee removal of all sensitive information
- If you publish a story containing session content, that content becomes publicly visible
- Claude Code session data is not sent to third-party AI providers unless you explicitly use AI-assisted features on that content
Your content may be processed by third-party AI providers subject to their privacy policies. We do not currently sell your personal information or license your User Content to third parties for AI model training, AI research datasets, or similar AI development purposes. We may use aggregated or de-identified information that does not identify you to understand how the Service is used, improve the Service, and describe trends. If we introduce a third-party data licensing program involving User Content, we will update this Privacy Policy and provide notice and choices as required by applicable law before doing so.
5. Information Sharing and Disclosure
5.1 Public Information
By default, your stories, profile information, and interactions (reactions, follows) are public and visible to all users. You control what information you share publicly, and you should not include Sensitive Information in public content.
5.2 Service Providers
We share information with third-party service providers who help us operate the Service:
- Convex: Database and backend infrastructure
- WorkOS: Authentication and user management
- OpenAI: AI-powered content generation and moderation
- Anthropic: AI-powered content generation
- Stripe: Payment processing and subscription management
- PostHog: Product analytics and usage tracking
- Vercel: Hosting, infrastructure, and content delivery
- Resend: Transactional email delivery
- Sentry: Error monitoring and performance tracking
5.3 Legal Requirements
We may disclose your information if required to:
- Comply with legal obligations, court orders, or government requests
- Enforce our Terms of Service
- Protect the rights, property, or safety of UsecaseAI, users, or the public
- Prevent fraud or security issues
5.4 Business Transfers
If UsecaseAI is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your information becomes subject to a different privacy policy.
6. Data Security
We implement appropriate technical and organizational security measures to protect your information, including:
- Encryption of data in transit (HTTPS/TLS)
- Secure authentication via WorkOS
- Regular security audits and monitoring
- Access controls and authentication requirements
- Automated content moderation
- Best-effort automated redaction of common credentials and secrets in imported session content
However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
6.1 Data Breach Notification
In the event of a data breach that affects your personal information, we will notify you within 72 hours of becoming aware of the breach, as required by applicable law. Notification will be sent via email to the address associated with your account and/or through a prominent notice on our Service.
7. Your Rights and Choices
7.1 Access and Update
You can access and update your account information through your profile settings.
7.2 Delete Your Account
You can delete your account from your account settings. Upon deletion:
- Account access ends: Your sign-in access is removed and your account is marked as deleted
- Profile information is removed: Your name, username, bio, profile images, social links, and other profile details are deleted or replaced with a deleted-user placeholder
- Published content is hidden and deleted: Your published stories are removed from public feeds immediately and then deleted with related story data through a background cleanup process
- Drafts and interactions are deleted: Drafts, reactions, follows, pins, media, imported session data, and similar account-linked records are deleted through the same cleanup process
Some deletion steps may continue after you lose account access. We may retain limited records when required for legal compliance, security, fraud prevention, dispute resolution, payment processing, or backup integrity.
7.3 Data Export
You can request a copy of your data by contacting support@usecaseai.com. We will provide your data in a machine-readable format.
7.4 Marketing Communications
You can opt out of marketing emails by following the unsubscribe link in any marketing email or adjusting your notification settings.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Authenticate users and maintain sessions
- Remember your preferences
- Analyze usage patterns and improve the Service
- Provide security features
You can control cookies through your browser settings, but disabling cookies may limit your ability to use certain features.
We use PostHog for optional product analytics, including page and feature events that help us improve the Service. We do not use product analytics for cross-context behavioral advertising. You can turn off optional product analytics below or in Settings > Privacy. We also honor a browser Global Privacy Control signal, when detected, by turning off optional product analytics.
Product analytics
Allow UAI to use PostHog page and feature events to improve the service. We do not use analytics for cross-context behavioral advertising.
9. Children's Privacy
UsecaseAI is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
10. International Data Transfers
UsecaseAI is operated from the United States. We and the service providers described in Section 5.2 may process your information in the United States and other countries where we or those providers operate.
When personal data from the European Economic Area, United Kingdom, or Switzerland is transferred to a country that has not been recognized as providing an adequate level of protection, we rely on appropriate safeguards where required by law. These may include data processing agreements, the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum or Agreement, and transfer frameworks or adequacy decisions where a provider lawfully participates in or may rely on them.
We apply these transfers to provide, secure, support, improve, and maintain the Service; process payments; deliver transactional email; provide AI-assisted features you use; and comply with legal obligations. Retention is described in Section 11.
11. Data Retention
We retain your information for as long as your account is active or as needed to provide the Service.
11.1 After Account Deletion
When you delete your account, we remove or de-identify account-linked data as described above. We may retain limited information for legitimate purposes:
- Deletion and compliance records: Records needed to confirm deletion, comply with legal obligations, resolve disputes, prevent fraud, and maintain security
- Billing records: Payment and subscription records that we or our payment processor must retain for tax, accounting, chargeback, or compliance purposes
- Backups and logs: Limited data in backups, logs, and security systems until they are overwritten or no longer needed under our retention practices
11.2 Permanent Deletion Requests
If you have questions about deletion or want us to review remaining account-linked data, contact support@usecaseai.com. We will respond to deletion requests as required by applicable law.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy and updating the "Last Updated" date. Continued use of the Service after changes become effective constitutes acceptance of the revised policy.
13. GDPR Rights (European Users)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, UsecaseAI is the controller of the personal data described in this Privacy Policy, except where a service provider acts as an independent controller for its own services. You can contact us at support@usecaseai.com.
13.1 Legal Basis for Processing
We process your personal data under the following legal bases:
- Contractual Necessity: To provide the Service and fulfill our agreement with you
- Consent: For optional features like marketing communications
- Legitimate Interests: To improve our Service, ensure security, and prevent fraud
- Legal Obligation: To comply with applicable laws and regulations
13.2 Recipients, Transfers, and Retention
Categories of recipients are described in Section 5, international transfer safeguards are described in Section 10, and retention criteria are described in Section 11.
13.3 Your Rights
- Right to Access: Request copies of your personal data
- Right to Rectification: Request correction of inaccurate data
- Right to Erasure: Request deletion of your data
- Right to Restrict Processing: Request limitation of data processing
- Right to Data Portability: Receive your data in a portable format
- Right to Object: Object to certain types of processing
- Right to Withdraw Consent: Withdraw consent at any time
- Right to Lodge a Complaint: File a complaint with your local data protection supervisory authority
To exercise these rights, contact support@usecaseai.com. We will respond to your request within 30 days.
14. CCPA Rights (California Residents)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
14.1 Your Rights
- Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
- Right to Delete: Request deletion of your personal information, subject to certain exceptions
- Right to Opt-Out: Opt out of the sale or sharing of your personal information
- Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights
- Right to Correct: Request correction of inaccurate personal information
- Right to Limit Use: Limit the use and disclosure of sensitive personal information
14.2 Categories of Information
In the preceding 12 months, we have collected the following categories of personal information:
- Identifiers (name, email, username, IP address)
- Internet or network activity (browsing history, interactions with Service)
- Professional or employment-related information (if provided in stories)
- Sensitive personal information if you choose to include it in stories, imported session content, or other User Content
- Inferences drawn from the above to create a profile
14.3 Sale, Sharing, and Sensitive Personal Information
We do not sell your personal information or share it for cross-context behavioral advertising as those terms are defined under the CCPA. We do not use or disclose sensitive personal information for purposes other than those permitted by the CCPA, such as providing the Service, security, fraud prevention, legal compliance, payment processing, and other business purposes. We also do not currently license your User Content to third parties for AI model training, AI research datasets, or similar AI development purposes. We do share information with service providers as described in Section 5.2 for business purposes.
14.4 Opt-Out Signals and Analytics Controls
We treat Global Privacy Control and similar legally recognized opt-out preference signals as requests to opt out of sale or sharing where required by applicable law. Because we do not sell personal information or share it for cross-context behavioral advertising, there is no sale or sharing to opt out of at this time. When we detect a Global Privacy Control signal, we also turn off optional PostHog product analytics. You can turn optional product analytics on or off in Settings > Privacy, unless your browser's Global Privacy Control signal is active.
14.5 How to Exercise Your Rights
To exercise your CCPA rights, contact us at support@usecaseai.com or submit a request through your account settings. We will verify your identity before processing your request and respond within 45 days.
15. Contact Information
If you have questions about this Privacy Policy or our data practices, please contact us at:
Email: support@usecaseai.com