Privacy Policy

Last Updated: December 14, 2025

Introduction

Welcome to SREBPS, an AI-powered service based in Italy. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services available at https://srebps-ai.gt.tc/.

By accessing or using SREBPS, you agree to the terms outlined in this Privacy Policy. If you do not agree with these terms, please do not use our services.

Information We Collect

Information You Provide

  • Account Information: Email address and authentication credentials when you create an account through Firebase Authentication
  • Profile Information: Optional username and preferences you choose to set
  • Conversation Data: Messages, prompts, and interactions with our AI system stored in Firebase Firestore
  • Uploaded Content: Files, images, or other content you submit during conversations

Automatically Collected Information

  • Authentication Data: Login timestamps and authentication tokens managed by Firebase
  • Usage Data: Basic interaction patterns necessary for service functionality
  • Technical Data: Browser type and basic device information required for proper rendering

What We Do NOT Collect

  • We do NOT use cookies for tracking or analytics
  • We do NOT collect precise location data
  • We do NOT use third-party analytics or advertising services
  • We do NOT track your activity across other websites

How We Use Your Information

We use the collected information solely for the following purposes:

Service Delivery

  • Authenticating your account through Firebase Authentication
  • Storing and retrieving your conversation history from Firebase Firestore
  • Processing your queries through external AI APIs
  • Providing AI-generated responses to your prompts
  • Managing your account settings and preferences

Service Operations

  • Maintaining the functionality and security of the platform
  • Ensuring proper synchronization of your data across sessions
  • Debugging and resolving technical issues

Legal Compliance

  • Complying with applicable laws and regulations
  • Responding to legal requests when required
  • Enforcing our Terms of Service

Data Storage and Security

Your data is stored and protected using industry-standard security measures:

Firebase Security

  • Authentication: Account credentials are securely managed by Firebase Authentication with industry-standard encryption
  • Database Security: Chat history is stored in Firebase Firestore with strict security rules
  • Access Control: Only authenticated users can access their own data through secure Firebase security rules
  • Encryption: Data is encrypted in transit using HTTPS/TLS and at rest by Firebase infrastructure

Privacy by Design

  • Your conversations are private and accessible only to you
  • We do not access, read, or review your stored conversations without your explicit permission
  • Firebase security rules prevent unauthorized access to user data
  • No employee or administrator can view your conversations without proper authorization

Data Isolation

Each user's data is isolated and protected:

  • Conversations are stored per-user with strict access restrictions
  • User authentication is required for all data operations
  • Cross-user data access is prevented by Firebase security rules

AI Processing

We use external AI APIs to generate responses to your queries:

External API Usage

  • Your messages are sent to third-party AI service providers to generate responses
  • These services process your prompts in real-time to provide AI-generated answers
  • The specific AI providers may include services like OpenAI, Anthropic, or similar platforms
  • Each provider has their own privacy policy and data handling practices

Data Sent to AI Services

  • Your conversation messages and prompts are transmitted to AI APIs
  • File uploads and images may be processed by AI services when relevant
  • Conversation context may be included to provide coherent responses

AI Provider Practices

  • Third-party AI providers may use your data according to their own policies
  • Some providers may use data for model training unless opted out
  • We recommend reviewing the privacy policies of the AI services we use
  • We select providers that prioritize user privacy and data protection

Our Limitations

  • We do not control how external AI providers process your data
  • We do not train our own AI models on your conversations
  • We do not retain copies of responses from external APIs beyond what's stored in your Firestore

Third-Party Services

SREBPS relies on the following third-party services:

Firebase (Google)

  • Firebase Authentication: Manages user accounts and login
  • Firebase Firestore: Stores your conversation history and account data
  • Firebase Hosting: Hosts the application infrastructure
  • Privacy Policy: Firebase Privacy & Security

External AI APIs

  • Third-party AI service providers process your prompts and generate responses
  • These services have their own privacy policies and terms of service
  • Data transmitted to these services is subject to their data handling practices

Important Notice

When you use SREBPS, your data is processed by these third-party services. We encourage you to review their privacy policies to understand how they handle your information. We select service providers that maintain high standards of data protection and privacy.

Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. Data is shared only in the following limited circumstances:

Service Providers

  • Firebase/Google: For authentication and data storage infrastructure
  • AI Service Providers: For processing your queries and generating responses

Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal processes, court orders, or government requests
  • Protect our rights, property, or safety, or that of our users
  • Detect, prevent, or address fraud or security issues
  • Enforce our Terms of Service

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the successor entity with notice to you.

With Your Consent

We may share information for other purposes with your explicit consent.

What We Never Do

  • We never sell your data to advertisers or data brokers
  • We never share your conversations with third parties for marketing
  • We never access your conversations without authorization

Your Rights and Choices

You have the following rights regarding your personal information:

Access and Portability

  • Access your conversation history at any time through the interface
  • Export your data by contacting us
  • Request a copy of your account information

Correction and Update

  • Update your profile and account settings at any time
  • Modify or correct your information through your account

Deletion

  • Delete individual conversations or messages directly in the interface
  • Request complete account deletion by contacting us
  • Upon account deletion, your data will be permanently removed from Firebase within 30 days
  • Note: Data may be retained in backups for up to 90 days after deletion

Data Minimization

  • We collect only the minimum data necessary to provide the service
  • You can use the service without providing optional information
  • You control what information you share in conversations

To exercise these rights, please contact us using the information provided in the Contact section.

Children's Privacy

Srebps is not intended for children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children.

If we become aware that we have collected personal information from a child without proper consent, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us immediately.

International Data Transfers

Srebps is based in Italy and operates within the European Union. Your information may be processed on servers located in the EU and in other countries where Firebase and AI service providers operate, including the United States.

Data Transfer Safeguards

  • Firebase infrastructure complies with international data protection standards
  • Google (Firebase) maintains certifications including EU-U.S. Data Privacy Framework
  • Data transfers outside the EU are protected by appropriate legal mechanisms and standard contractual clauses
  • Encryption protects data during international transmission
  • EU data protection standards apply to all processing activities

By using our services, you consent to the transfer of your information to countries that may have different privacy protections, while maintaining EU-level safeguards.

Data Retention

We retain your information for as long as necessary to provide services:

Retention Periods

  • Account Data: Retained while your account is active in Firebase Authentication
  • Conversation History: Stored in Firestore until you delete it or close your account
  • Deleted Data: Removed from active systems within 30 days, and from backups within 90 days
  • Legal Data: May be retained longer if required by law or for legal defense

Automatic Deletion

  • You can delete conversations at any time through the interface
  • Deleted conversations are permanently removed from Firestore
  • Account closure triggers deletion of all associated data

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you via email if you have an active account
  • Display a prominent notice on the platform
  • Provide an opportunity to review changes before they take effect

We encourage you to review this Privacy Policy periodically. Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Website: https://srebps-ai.gt.tc/
Service Provider: SREBPS
Location: Italy
Contact: Through the platform interface or website contact form

We will respond to your inquiry within 30 days of receipt.

Legal Notices

Italian Law: As a service provider based in Italy, we comply with Italian data protection laws and regulations.

GDPR Compliance: For users in the European Economic Area, we comply with the General Data Protection Regulation (GDPR). You have rights including access, rectification, erasure, restriction, portability, and objection.

EU Data Protection: Your data is processed in accordance with EU data protection standards and regulations.

Additional Rights: Depending on your location, you may have additional privacy rights under local laws. Please contact us to exercise these rights.

Key Takeaways

  • We use Firebase for secure authentication and data storage
  • Your conversations are private and not accessed without permission
  • We do not use cookies for tracking or analytics
  • External AI APIs process your messages to generate responses
  • You control your data and can delete it at any time
  • We never sell your information to third parties