TruVerifAI Privacy Policy
Last Updated: January 17, 2026 | Effective Date: January 17, 2026
1. Introduction
SUAVI LLC ("Company," "we," "us," or "our") operates the TruVerifAI platform and website located at truverif.ai (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
We reserve the right to make changes to this Privacy Policy at any time. We will notify you of any changes by updating the "Last Updated" date of this Privacy Policy. You are encouraged to periodically review this Privacy Policy to stay informed of updates.
2. Information We Collect
2.1 Information You Provide Directly
Account Information
When you create an account, we collect:
- Name
- Email address
- Profile information (if you sign in via Google OAuth)
- Account preferences and settings
Payment Information
When you make purchases, our payment processor (Stripe) collects:
- Payment card information
- Billing address
- Transaction history
Note: We do not store full credit card numbers on our servers. Payment processing is handled by Stripe in accordance with PCI-DSS compliance standards.
User Content and Queries
When you use the Service, we collect:
- Text queries and prompts you submit ("Input")
- Files and documents you upload
- Images you submit for analysis
Communications
When you contact us, we collect:
- Email correspondence
- Support requests
- Feedback and suggestions
2.2 Information Collected Automatically
Usage Data
We automatically collect certain information when you use the Service:
- Query history and timestamps
- Features and modes used
- Credit usage and consumption patterns
- Session duration and frequency of use
Device and Technical Information
- IP address
- Browser type and version
- Operating system
- Device type and identifiers
- Time zone and location (general, based on IP)
Cookies and Similar Technologies
We use cookies and similar tracking technologies to:
- Maintain your session and authentication
- Remember your preferences
- Analyze Service usage and performance
- Improve the Service
For more information, see Section 8 (Cookies and Tracking Technologies).
2.3 Information from Third Parties
OAuth Providers
If you sign in using Google OAuth, we receive:
- Your Google account email address
- Your name and profile picture (if available)
- Unique Google account identifier
Payment Processor
Our payment processor (Stripe) may provide us with:
- Transaction confirmations
- Payment status updates
- Limited payment method details (last 4 digits, card type)
3. How We Use Your Information
We use the information we collect for the following purposes:
3.1 Providing the Service
- Process your queries through multiple AI models
- Generate and deliver AI-generated Output
- Maintain your account and conversation history
- Process payments and manage subscriptions
- Provide customer support
3.2 Improving the Service
- Analyze usage patterns to improve features
- Identify and fix bugs and technical issues
- Develop new features and functionality
- Optimize performance and user experience
3.3 Communications
- Send transactional emails (account verification, password resets, receipts)
- Send service-related notifications (usage alerts, subscription updates)
- Send optional marketing communications (with your consent)
- Respond to your inquiries and support requests
3.4 Security and Compliance
- Protect against fraud, abuse, and unauthorized access
- Monitor for violations of our Terms of Service
- Comply with legal obligations
- Enforce our legal rights
3.5 Aggregated and Anonymized Data
We may use aggregated, anonymized, or de-identified information for any purpose, including research, analytics, and improving AI models. This data cannot reasonably be used to identify you.
4. How We Share Your Information
4.1 Third-Party AI and Search Providers
To provide the Service, we transmit your User Content (queries) to the following third-party providers:
AI Model Providers:
- OpenAI (GPT models) - Privacy Policy: https://openai.com/policies/privacy-policy
- Anthropic (Claude models) - Privacy Policy: https://www.anthropic.com/privacy
- Google (Gemini models) - Privacy Policy: https://policies.google.com/privacy
- xAI (Grok models) - Privacy Policy: https://x.ai/legal/privacy-policy
Search and Verification Providers:
- Perplexity (Web search for Verify mode) - Privacy Policy: https://www.perplexity.ai/privacy
- Tavily (Web search API) - Privacy Policy: https://tavily.com/privacy
These providers process your queries in accordance with their own terms and privacy policies. We encourage you to review their policies. We do not control and are not responsible for their data practices.
What we share with AI providers:
- The text of your queries
- File contents and images you submit for analysis
- Context from your conversation (within a single session)
What we do NOT share with AI providers:
- Your name or email address
- Your payment information
- Your account credentials
- Your IP address
4.2 Service Providers
We share information with service providers who assist us in operating the Service:
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Payment information, transaction details |
| SendGrid | Email delivery | Email address, email content |
| Replit | Hosting infrastructure | All Service data (encrypted) |
| Cloudflare | Security and CDN | IP address, traffic data |
| Perplexity | Web search verification (Verify mode) | Query text |
| Tavily | Web search API (Verify mode) | Query text |
These providers are contractually obligated to protect your information and use it only for the purposes we specify.
4.3 Legal Requirements
We may disclose your information if required to do so by law or in response to:
- Valid legal process (subpoena, court order, government request)
- To protect our rights, property, or safety
- To protect the rights, property, or safety of our users or others
- To detect, prevent, or address fraud, security, or technical issues
4.4 Business Transfers
In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.
4.5 With Your Consent
We may share your information with third parties when you give us explicit consent to do so.
4.6 Aggregated Data
We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with third parties for research, analytics, or other purposes.
5. Data Retention
5.1 Retention Periods
We retain your information for as long as necessary to:
- Provide you with the Service
- Comply with legal obligations
- Resolve disputes and enforce agreements
Specific retention periods:
| Data Type | Retention Period |
|---|---|
| Account information | Duration of account + 30 days after deletion |
| Conversation history | Duration of account (user can delete anytime) |
| Payment records | 7 years (legal requirement) |
| Server logs | 90 days |
| Anonymized analytics | Indefinitely |
5.2 Deletion
You may delete your conversation history at any time through the Service. When you delete your account, we will delete or anonymize your personal information within 30 days, except as required for legal compliance.
6. Your Rights and Choices
6.1 Account Settings
Through your account settings, you can:
- Update your account information
- Delete your conversation history
- Manage email notification preferences
- Export your data
- Delete your account
6.2 Communication Preferences
You can opt out of:
- Marketing emails: Click "unsubscribe" in any marketing email or adjust settings
- Weekly summary emails: Adjust in account settings
- Usage alerts: Adjust in account settings
Note: You cannot opt out of transactional emails necessary for Service operation (receipts, security alerts, Terms updates).
6.3 Cookies
You can control cookies through your browser settings. Note that disabling cookies may affect Service functionality. See Section 8 for details.
6.4 Data Access and Portability
You may request a copy of your personal data by:
- Using the "Export Data" feature in Settings
- Contacting us at privacy@truverif.ai
6.5 Data Deletion
You may request deletion of your personal data by:
- Deleting your account through Settings
- Contacting us at privacy@truverif.ai
7. Rights for Specific Jurisdictions
7.1 California Residents (CCPA/CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Right to Know: You may request information about the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purpose for collection, and the categories of third parties with whom we share it.
Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
Right to Correct: You may request correction of inaccurate personal information.
Right to Opt-Out of Sale/Sharing: We do not "sell" personal information as defined by the CCPA. We do not share personal information for cross-context behavioral advertising.
Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
Categories of Personal Information Collected: In the past 12 months, we have collected: Identifiers (name, email, IP address), Commercial information (purchase history), Internet activity (usage data), and Inferences (preferences).
To exercise these rights, contact us at privacy@truverif.ai or use the controls in your account settings. We will verify your identity before processing your request.
7.2 European Economic Area, United Kingdom, and Switzerland (GDPR)
If you are in the EEA, UK, or Switzerland, you have the following rights under the General Data Protection Regulation (GDPR):
Legal Bases for Processing: We process your data based on:
- Contract performance (to provide the Service)
- Legitimate interests (to improve the Service, prevent fraud)
- Consent (for marketing communications)
- Legal obligations (for compliance purposes)
Your Rights:
- Access: Obtain a copy of your personal data
- Rectification: Correct inaccurate personal data
- Erasure: Request deletion ("right to be forgotten")
- Restriction: Limit processing of your data
- Portability: Receive your data in a portable format
- Object: Object to processing based on legitimate interests
- Withdraw Consent: Withdraw consent where processing is based on consent
International Transfers: Your data may be transferred to and processed in the United States and other countries where our service providers operate. We use appropriate safeguards such as Standard Contractual Clauses for such transfers.
Data Protection Officer: For GDPR-related inquiries, contact us at privacy@truverif.ai.
Supervisory Authority: You have the right to lodge a complaint with your local data protection authority.
7.3 Other Jurisdictions
Residents of other jurisdictions may have additional rights under local law. Please contact us at privacy@truverif.ai for more information.
8. Cookies and Tracking Technologies
8.1 Types of Cookies We Use
Essential Cookies (Required)
- Authentication and session management
- Security features
- Service functionality
Functional Cookies (Optional)
- Remember your preferences (theme, settings)
- Personalize your experience
Analytics Cookies (Optional)
- Understand how users interact with the Service
- Identify areas for improvement
8.2 Managing Cookies
You can manage cookies through:
- Your browser settings (to block or delete cookies)
- Your device settings
Note: Blocking essential cookies will prevent you from using the Service.
8.3 Do Not Track
Some browsers offer a "Do Not Track" (DNT) feature. We currently do not respond to DNT signals, as there is no industry-standard interpretation.
9. Data Security
9.1 Security Measures
We implement appropriate technical and organizational measures to protect your information, including:
- Encryption of data in transit (TLS/HTTPS)
- Encryption of data at rest
- Access controls and authentication
- Regular security assessments
- Employee training on data protection
9.2 No Guarantee
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
9.3 Your Responsibilities
You are responsible for:
- Maintaining the confidentiality of your account credentials
- Logging out of shared devices
- Not sharing sensitive personal information through the Service
9.4 Data Breach Notification
In the event of a data breach affecting your personal information, we will notify you as required by applicable law.
10. Children's Privacy
The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@truverif.ai. If we learn we have collected personal information from a child under 13, we will delete that information promptly.
11. Third-Party Links and Services
The Service may contain links to third-party websites or services that are not owned or controlled by us. This Privacy Policy does not apply to third-party websites or services. We encourage you to review the privacy policies of any third-party websites or services you visit.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the updated Privacy Policy on the Service
- Updating the "Last Updated" date
- Sending an email notification (for material changes)
Your continued use of the Service after changes become effective constitutes your acceptance of the revised Privacy Policy.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
SUAVI LLC
Email: privacy@truverif.ai
For California residents: Include "California Privacy Rights" in the subject line.
For GDPR inquiries: Include "GDPR Request" in the subject line.
For data deletion requests: Include "Data Deletion Request" in the subject line.
We will respond to your request within 30 days (or as required by applicable law).
14. Summary Table
| What We Collect | How We Use It | Who We Share With |
|---|---|---|
| Account info (name, email) | Provide Service, communicate | Service providers |
| Queries and content | Process through AI, deliver results | AI providers (OpenAI, Anthropic, Google, xAI), Search providers (Perplexity, Tavily) |
| Payment info | Process transactions | Stripe |
| Usage data | Improve Service, analytics | Internal use, anonymized sharing |
| Device/technical info | Security, troubleshooting | Service providers |