Writelio LLC ("Writelio", "we", "us") is the data controller for the personal data described here. This policy explains what data we collect, why, who we share it with, and what you can make us do about it. It is written to be read, not to be survived.
Your name, email address, and a securely hashed password (or your identity provider's token if you sign in through one). For team accounts, the same for each member you invite. We never store your password in readable form.
The keywords, prompts, brand and author profiles, source material, drafts, and finished articles you create in the Service. We store this so the product works — so you can come back to a draft, re-run a scan, or publish later.
If you connect a CMS or publishing destination, we store the access token that platform issues, encrypted, and use it only to publish what you tell us to publish. You can disconnect at any time, which revokes our access.
Payments are processed by Stripe. Card numbers go to Stripe, not to us — we never see or store your full card details. We keep the billing metadata Stripe returns: plan, status, last four digits, country, and invoice history.
Log data needed to operate and secure the Service: IP address, browser and device type, pages and features used, timestamps, and error reports. We use this to keep the product up, diagnose faults, and detect abuse.
What we do not do: we do not sell your personal data, we do not share it with data brokers, we do not use it for behavioural advertising, and we do not use your content to train AI models.
Generating an article means sending your prompt and source material to a large-language-model provider. We currently use OpenAI and Anthropic for this.
We send them only what is needed to produce your output. We use their business/API tiers, under terms that prohibit training on data submitted through the API. We do not train our own models on your content either. If we ever want to change that, we will ask you first, in a separate opt-in — not by quietly editing this page.
We use a small number of vendors to run the Service. Each processes data on our instructions, under contract. They are:
We will also disclose data if the law genuinely requires it — and, where we are legally permitted to tell you, we will. If Writelio is ever acquired or merged, data may transfer to the acquirer, who remains bound by this policy until they give you notice of a change.
Our vendors operate in the United States and elsewhere, so your data may be processed outside your country. Where we transfer personal data out of the UK/EEA, we rely on appropriate safeguards — typically Standard Contractual Clauses — to protect it.
Wherever you live, you can ask us to: access the data we hold on you, correct it, delete it, export it in a portable format, object to or restrict how we use it, or withdraw consent you previously gave.
If you are in the UK or EEA, these are your rights under UK GDPR / GDPR, and you may complain to your data protection authority. If you are in California, you have the right to know, delete, correct, and opt out of "sale" or "sharing" of personal information — we do not sell or share it, so there is nothing to opt out of — and we will not discriminate against you for exercising any right.
Email hello@writelio.com and we will respond within 30 days. Most of it you can also do yourself from your account settings.
Data is encrypted in transit (TLS) and at rest. Access to production systems is restricted to staff who need it. Passwords are hashed, and third-party tokens are stored encrypted. No system is perfectly secure, and we will not pretend otherwise — but if a breach affects your personal data, we will notify you and the relevant regulator as the law requires.
We use cookies to keep you signed in and remember your preferences. We do not run advertising or cross-site tracking cookies. See the Cookie Policy for the detail.
Writelio is a business tool and is not for anyone under 18. We do not knowingly collect data from children. If you believe a child has given us data, tell us and we will delete it.
If we make a material change to this policy — particularly to what we collect, who we share it with, or the no-training commitment — we will email you and give you notice before it takes effect. We will not weaken a commitment by silently editing this page.
Writelio LLC is the data controller. For privacy questions, requests, or complaints — including access, deletion, correction and export — email hello@writelio.com and we will respond within 30 days.