Privacy Policy
Last updated: March 20, 2026
Specific Technologies Inc., a Delaware C Corporation ("the Company", "we", "us", "our"), operates Power Author ("the Service"). This Privacy Policy explains how we collect, use, store, and protect your personal data when you use the Service. These shorthand references are used throughout this policy.
1. Data Controller
The Company is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, you can contact us at privacy@powerauthor.com.
2. Data We Collect
We collect the following categories of personal data when you use the Service:
Account Data
When you create an account, we collect your email address, display name, and information about your authentication method (e.g., email/password or Google OAuth).
Service activity
As part of operating the Service, we store information associated with your account and workspaces, such as workspace and project activity and timestamps. We do not use third-party marketing or cross-site analytics products to track how you use the Service.
Content Data
We store the content you create within the Service, including keywords, articles, pipeline configurations, and generated outputs.
Technical data
Our hosting and infrastructure providers may automatically process technical information in connection with requests to the Service (for example IP address, browser type, or device information) in server logs or similar records, as typical for hosted web applications.
Payments
We do not currently collect payment card or payment-account credentials through the Service. If we introduce paid plans in the future, payment information will be collected and processed by a third-party payment processor, and we will update this Privacy Policy accordingly.
3. How We Use Your Data
We process your personal data only when we have a valid legal basis to do so. The following table describes each purpose and its legal basis under the General Data Protection Regulation (GDPR):
| Purpose | Legal Basis |
|---|---|
| Provide and operate the Service | Contractual necessity |
| Authenticate your identity | Contractual necessity |
| Send transactional emails (OTP codes, workspace invitations, account notifications) | Contractual necessity |
| Improve the Service and fix bugs | Legitimate interest |
| Comply with legal obligations | Legal obligation |
4. Data Sharing and Third-Party Processors
We share personal data with third-party service providers that assist us in operating the Service. We select providers that offer appropriate safeguards, and we rely on their contractual and policy commitments (including data processing terms where available and applicable).
| Processor | Purpose | Location |
|---|---|---|
| Supabase | Database hosting and authentication | US / EU |
| OAuth authentication (when you sign in with Google) | US / EU | |
| Resend | Delivering transactional email (e.g. OTP codes, invitations) | US / EU |
| OpenAI | AI processing when you use generation or related features; you may supply your own API credentials, and content you process is sent to OpenAI in order to provide those features | US / global |
| Anthropic | AI processing when you use generation or related features; you may supply your own API credentials, and content you process is sent to Anthropic in order to provide those features | US / global |
We do not currently use a payment processor through the Service; if that changes, we will list the processor here and update this policy.
We do not sell, rent, or trade your personal data to any third party for marketing or advertising purposes.
5. Data Retention
We retain your personal data for as long as your account is active and as needed to provide the Service. In general:
- Account data is kept while your account exists. If you close your account or request deletion, we will delete or anonymize associated personal data within a reasonable period, subject to technical constraints and any legal obligations that require longer retention.
- Content data (keywords, articles, pipeline outputs, and similar) is removed when you delete the relevant project or workspace, or when we delete it following your instructions, subject to backup and archival practices of our infrastructure providers.
- Copies of deleted information may persist for a period in backups or logs maintained by us or our providers; retention of those copies depends on the providers' practices and our configuration.
To request deletion of your data, contact us at privacy@powerauthor.com.
6. International Data Transfers
Your data may be processed in the United States and the European Union. When data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission or other legally recognized transfer mechanisms.
7. Your Rights Under GDPR
If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (Articles 15–22):
- Right of access — You can request a copy of the personal data we hold about you.
- Right to rectification — You can request that we correct any inaccurate or incomplete personal data.
- Right to erasure — You can request that we delete your personal data, subject to certain legal exceptions.
- Right to restrict processing — You can request that we limit how we use your data in certain circumstances.
- Right to data portability — You can request to receive your personal data in a structured, commonly used, machine-readable format.
- Right to object — You can object to processing of your personal data where we rely on legitimate interest as the legal basis.
- Right to withdraw consent — Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
- Right to lodge a complaint — You have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence or place of work.
To exercise any of these rights, please contact us at privacy@powerauthor.com. We will respond to your request within 30 days.
8. Cookies and Tracking
We use only essential cookies that are strictly necessary for the operation of the Service, including authentication tokens and session management cookies. These cookies do not require your consent under GDPR as they are necessary for the Service to function.
We do not use marketing cookies, advertising trackers, or third-party analytics tools that track your behavior across websites. If we introduce non-essential cookies in the future, we will obtain your explicit consent before enabling them.
9. Data Security
We implement technical and organizational measures appropriate to the nature of the Service. Access to the Service requires authentication, and access to workspace and project data is limited based on membership and permissions you and your collaborators configure. Certain highly sensitive credentials you choose to store with us (such as API keys used to connect to third-party services) are encrypted at the application layer before being stored in our database.
We rely on reputable hosting and infrastructure providers that apply industry-standard protections for data in transmission and storage; the specific technologies and configurations may change over time.
While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
10. Children's Privacy
The Service is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that data promptly. If you believe a child has provided us with personal data, please contact us at privacy@powerauthor.com.
11. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service at least 30 days before the changes take effect. Your continued use of the Service after the effective date of the revised policy constitutes your acceptance of the changes. The "Last updated" date at the top of this page indicates when the policy was last revised.
12. Contact
If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us at:
- Privacy inquiries: privacy@powerauthor.com
- General support: support@powerauthor.com
We will respond to data protection inquiries within 30 days.