Yottle is built so we don't have your conversations to share, lose, or be compelled to hand over. This page describes exactly what we do and don't collect, and why.
What we don't store
We do not store the contents of your conversations. Your prompts and the model's responses live only in your browser tab and our inference provider's memory for the duration of the request. When you close the tab or click End Chat, the conversation is gone from our systems.
We do not store your IP address. We do not fingerprint your device or browser. We do not place advertising or analytics cookies that profile you. We do not sell, rent, or share data about you with third parties.
What we do store
If you sign in with Google, we keep:
- Your email address (so we can identify your account)
- Your plan tier (free or pro)
- A daily message counter, so we can enforce the free-tier limit
- A Stripe customer ID, only if you upgrade to Pro
- Account creation and last-login timestamps
That's the entire account record. No other identifiers, no behavioral analytics, no chat logs.
Anonymous sessions create a temporary identifier so we can enforce the preview cap (currently 8 messages per browser before sign-in). That identifier exists only in our auth provider; it is not tied to a real person and is purged on its normal lifecycle.
How your messages travel
Your messages are sent over HTTPS (TLS) from your browser to Yottle's servers, and from there to our inference provider. Inside our infrastructure, your messages are processed in memory only — never written to disk, never logged, never indexed.
We do not claim end-to-end encryption. Our servers and our inference provider necessarily process your messages in plaintext to produce a response. We claim, simply: encrypted in transit, never stored.
File uploads
When you attach a file, it's uploaded to our server, parsed into plain text in memory, and immediately discarded. The file itself is never written to disk, never logged, and never persisted past the request that handled it. The extracted text is then sent to our inference provider under the same rules as anything you type — not stored, not used for training.
Image attachments aren't supported yet. When that changes, we'll be explicit on this page and on /safety about how the vision flow handles your data — it may use a separate provider with separate guarantees.
Abuse prevention
We rate-limit anonymous requests using a short-lived hash of your IP. We do not store your IP.
Training
We do not train models on your conversations. We use a third-party inference provider whose privacy policy mirrors ours: no retention of inputs or outputs, no training on inference traffic. The full list of vendors that handle Yottle data is on our sub-processors page.
Payments
If you upgrade to Pro, payment is handled by Stripe. Yottle never sees your card details. We store only Stripe's customer ID and subscription status, which we use to grant or revoke Pro access.
Your rights
You can delete your Yottle account at any time by contacting us. Account deletion removes the account record described above. There are no chat contents to delete, because we don't have any.
If you're in the EU/EEA, UK, or California: we treat your GDPR/UK-GDPR/CCPA rights as the floor, not the ceiling. Email us if you want to exercise them.
Changes to this policy
If we change this policy in any way that affects what we store or share, we'll update the date at the top and post a clear notice on the site before the change takes effect.
Contact
Questions or concerns? Email us at hello@getyottle.com.