AI Plant Doctor ("we", "us", "our") offers AI-assisted plant care through our applications and websites. This Privacy Policy explains what information we collect from guests and members, how we minimize and secure it across plant diagnostics, reminders, and purchases, and the rights you can exercise at any time.

This policy applies to the full production AI Plant Doctor service. We will document and announce any future data-handling changes before they take effect.

Information We Collect

Account & Authentication: Email address, display name, identity-provider identifiers, security attestations, preferred locale, session tier (guest, free, premium), and consent records required to create or maintain an account.
Plant Library & Photos: Plant nicknames, species context, room/location labels, care notes, treatment plans, and up to three photos you capture or upload per diagnosis. Media is encrypted at rest under your user scope, EXIF data is discarded before analysis, and guest entries stay on-device until you opt to sync.
Diagnosis Jobs & AI Outputs: Job identifiers, image object paths, client platform/version metadata, optional plant context derived from your library, AI-generated summaries/issues/treatment steps, locale preferences, tier, timestamps, processing metrics, and error codes.
Reminders & Notification Preferences: Reminder schedules, snooze settings, quiet hours, device tokens, preferred notification channels, push/email opt-in status, and lifecycle automation history.
Credits, Purchases & Subscriptions: Credit balances, transaction history, product identifiers, order IDs, hashed purchase tokens or receipts, pricing, tax jurisdiction, refunds, chargeback indicators, and audit logs supplied by the applicable app store or payment platform.
Support & Communications: Emails you send to support@theaiplantdoctor.com, attachments or screenshots you share, and our replies and troubleshooting notes.
Usage Analytics & Diagnostics: App interactions, lifecycle events (e.g., diagnosis count, quick-action taps), experiment cohorts, crash reports, device/OS information, anonymized performance metrics, and anti-abuse telemetry captured by privacy-preserving analytics and observability tooling.
Device Permissions: Camera, photo library, and notifications, only when you choose to enable them for app functionality.

How We Use Information

Deliver and continually improve plant diagnosis, AI-generated treatment plans, reminders, plant libraries, cross-device sync, and guest-to-account migrations on the basis of contract performance and legitimate interests.
Submit photos to accredited AI inference partners to interpret symptoms, localize summaries, and refine heuristics using aggregated, de-identified learnings. We never commercialize your media or train unrelated models without separate consent.
Operate hardened backend services (encrypted storage, databases, job queues, lifecycle automations) so your data remains synchronized, available offline when possible, and recoverable after incidents.
Send reminders, lifecycle nudges, newsletters (when opted in), regulatory notices, and support responses via email or push notifications, including quick-action deep links back into the app.
Process credits and subscriptions, verify receipts with your platform’s billing service, detect fraud or abuse, enforce usage policies, comply with audits, taxation, and other legal obligations.
Monitor anonymized usage trends, reliability metrics, and security telemetry to prioritize features, detect anomalies, prove compliance, and protect the community.

Data Processing and Sharing

We do not sell personal information. We rely on carefully vetted subprocessors bound by confidentiality, transfer impact, and data-processing terms so the Service operates end to end:

Infrastructure & Platform Providers: Manage secure hosting, authentication, databases, encrypted media storage, serverless execution, messaging, observability, and resilience testing.
AI Inference Partners: Run constrained large-model workloads that analyze plant imagery and return structured diagnoses via encrypted channels subject to confidentiality and data-minimization controls.
App Store & Payment Platforms: Verify in-app purchases, subscriptions, refunds, and chargeback workflows in accordance with platform policies and financial regulations.
Communications & Professional Service Providers: Deliver transactional email, lifecycle campaigns, push notifications, customer support, legal, compliance, and auditing services.

We require subprocessors to meet or exceed our technical and organizational safeguards. We disclose data only to comply with law, respond to emergencies, investigate abuse, protect rights, or support mergers, investments, or similar corporate transactions. Plant photos are never re-used to train external models without explicit permission.

Data Retention

Account, credit, and billing records are retained while your account is active and for up to seven years afterward where required for tax, auditing, or fraud prevention.
Plant libraries, diagnosis jobs, treatment plans, and reminders remain until you delete them in-app or delete your account; deleting a record also removes the associated encrypted media.
Guest data and local notification settings remain on your device only; uninstalling the app or clearing data removes them.
Analytics, crash, and security logs are rotated or aggregated within thirteen months unless a longer retention period is needed for legal, safety, or incident-response reasons.

Security

We apply defense-in-depth safeguards: encryption in transit and at rest, hardware-backed attestation for clients, scoped service accounts, least-privilege access reviews, tamper-evident logging, penetration testing, incident response playbooks, and continuous monitoring. No system is 100% secure, so contact us immediately if you suspect unauthorized access.

Your Choices and Rights

View, edit, export, or delete plant entries, diagnoses, reminders, and credits directly in the app or by contacting us.
Use Account Settings → Delete Account (or email support@theaiplantdoctor.com) to request permanent erasure of your profile, application data, and media, subject to lawful exceptions.
Manage push/email preferences within the app or your device OS, revoke camera/photo permissions at any time, or opt out of analytics where offered.
Request confirmation of processing, correction of inaccuracies, portability of certain data, restriction or objection to processing, and appeal automated decisions by contacting us or your local supervisory authority.

Children's Privacy

The Service is not directed to children under 13. If you believe we collected data from a child, contact us so we can delete it promptly.

International Transfers

We store and process data on secure infrastructure primarily located in the United States. When information moves to jurisdictions with different privacy laws, we rely on legally recognized safeguards (such as standard contractual clauses) and conduct transfer impact assessments.

Changes to This Policy

We update this Privacy Policy when features, regulations, or enforcement expectations change. Material updates are posted here and, when practical, communicated inside the app or by email. Continued use of the Service after the effective date means you accept the revised terms.

Contact Us

For privacy questions or requests, contact: support@theaiplantdoctor.com