Privacy Policy

Effective Date: March 30, 2026

MRCARE TECHNOLOGIES LLC (“Cuedock,” “we,” “our,” or “us”) operates the Cuedock platform at cuedock.app (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Service. By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, please do not use the Service.

1. Information We Collect

A. Information You Provide Directly

  • Account Registration: Full name, email address, and password when you sign up, or profile data from your Google account if you sign in via OAuth.
  • User Content: Prompt blocks (Role, Context, Task, Modifier), assembled prompts, custom text cards, and any other content you create or save within the Service. See Section 4 for important information about how this content is stored.
  • Payment Information: If you subscribe to a paid plan, billing is handled by Stripe. We do not store full payment card numbers on our servers.
  • Communications: Messages, feedback, or support requests you send us.

B. Information Collected Automatically

  • Usage Data: Features accessed, AI requests made, timestamps, page views, and interaction patterns.
  • Log and Device Data: IP address, browser type, operating system, referring URLs, and error reports.
  • Cookies and Session Tokens: Authentication session cookies and analytics identifiers. See Section 8 for details.

2. How We Use Your Information

  • To create and manage your account and provide the Service.
  • To process your prompt content through third-party AI provider(s) (which may include Vercel AI Gateway, Anthropic, or other model providers) to generate AI responses and feedback.
  • To enforce subscription plan limits and rate limits on AI requests.
  • To send transactional emails such as account verification, password resets, and billing receipts.
  • To analyze aggregate usage patterns and improve the Service.
  • To respond to your support requests and communications.
  • To detect, investigate, and prevent fraud, abuse, or violations of our Terms of Service.
  • To comply with applicable legal obligations.

3. How We Share Your Information

We do not sell your personal information. We share information only as described below:

  • AI Provider(s): When you use AI-powered features, the content of your prompts (including prompt block text and assembled prompts) is transmitted to one or more third-party AI providers for processing. Cuedock currently routes AI requests through Vercel AI Gateway, which may in turn invoke models from Anthropic or other model providers as configured. Each provider may retain and use this data pursuant to its own terms and privacy policies, including Anthropic’s Privacy Policy and Vercel’s Privacy Policy. Cuedock may change its AI provider(s) at any time without prior notice. By using AI features on Cuedock, you consent to this transmission.
  • Supabase: Our database and authentication infrastructure provider. Your account data and user content are stored on Supabase’s servers, subject to their privacy and security practices.
  • Stripe: Our payment processor. Stripe handles payment data under their own PCI-compliant systems.
  • Vercel: Our hosting, deployment, and AI routing infrastructure provider. Vercel processes request-level data as part of serving the application and routing AI requests through Vercel AI Gateway, and provides analytics and performance monitoring.
  • Legal and Safety Disclosures: We may disclose your information to law enforcement or other authorities if required by law, court order, or governmental authority, or when necessary to protect the rights, safety, or property of Cuedock, our users, or the public.
  • Business Transfers: If Cuedock is acquired by or merged with another company, your information may be transferred as part of that transaction. We will provide notice prior to any such transfer becoming subject to a materially different privacy policy.

4. Data Storage and Security — Important Notice Regarding Encryption

Notice: Prompt Content Is Not Encrypted at Rest

Your prompt blocks, assembled prompts, custom text, and other content you save in Cuedock are stored in plaintext (not encrypted at rest) in our database infrastructure. While we apply access controls, Row Level Security (RLS) policies, Supabase authentication, and other standard safeguards, your stored prompt content is readable to authorized database administrators and could potentially be exposed in the event of a security incident.

You should not enter, store, or transmit sensitive, confidential, proprietary, or secret information in your Cuedock prompts. This includes, but is not limited to: passwords, private API keys, financial account data, protected health information (PHI), Social Security or government identification numbers, trade secrets, or any other data whose unauthorized disclosure could harm you or others.

By using the Service and storing content in Cuedock, you acknowledge and accept the risk that your prompt content is not encrypted at rest.

We use commercially reasonable safeguards to protect your information, including HTTPS/TLS encryption for data in transit, secure authentication, and access controls. However, no security system is perfect, and we cannot guarantee the absolute security of your information.

5. Data Retention

We retain your personal information and user content for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it by law, for fraud prevention, or for other legitimate business purposes (such as resolving disputes or enforcing agreements). Anonymized, aggregate data may be retained indefinitely.

Community-Shared Content: Deleting your account does not automatically remove content you have previously shared to the Community Library. Community-shared blocks and prompts may remain visible to other users after account deletion. To remove your community-shared content, you must explicitly delete it from the Community Library prior to or separately from account deletion, or contact us at legal@cuedock.app.

6. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data (subject to legal retention obligations).
  • Data Portability: Request your data in a commonly used, machine-readable format.
  • Objection or Restriction: Object to, or request restriction of, certain processing activities.
  • Withdraw Consent: Where processing is based on your consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, email us at legal@cuedock.app. We will respond within 30 days or as required by applicable law. We may require verification of your identity before processing requests.

California Residents (CCPA/CPRA): You have the right to know what personal information we collect, share, or disclose; the right to delete your personal information; the right to correct inaccurate personal information; and the right to opt out of the “sale” or “sharing” of personal information. We do not sell or share personal information for cross-context behavioral advertising. To submit a request, email us at legal@cuedock.app.

EU/EEA/UK Residents (GDPR/UK GDPR): Our lawful bases for processing include contract performance, legitimate interests, legal compliance, and consent. You have the right to lodge a complaint with your local data protection supervisory authority.

7. Children’s Privacy

The Service is not directed to individuals under 13 years of age (or 16 in the EU/EEA). We do not knowingly collect personal information from children below these ages. If we learn that we have collected such information, we will promptly delete it. If you believe a child has provided us with personal information, contact us at legal@cuedock.app.

8. Cookies and Tracking

We use cookies and similar tracking technologies to authenticate sessions, maintain user preferences, and collect analytics data. Authentication cookies are essential to the operation of the Service. Analytics cookies help us understand how users interact with the Service. You may control or disable cookies through your browser settings; however, disabling essential cookies may prevent you from using core features of the Service. We do not currently respond to “Do Not Track” browser signals.

9. International Data Transfers

Cuedock is based in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. Data protection laws in those countries may differ from those in your country of residence. By using the Service, you consent to such transfers. For transfers involving EU/EEA/UK personal data, we rely on appropriate transfer mechanisms, including standard contractual clauses, to the extent required by applicable law.

10. Third-Party Links and Services

The Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices or content of those third parties. We encourage you to review their privacy policies before providing any personal information.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. When we make material changes, we will update the “Effective Date” at the top of this page and, where required by applicable law, notify you by email or via a prominent notice on the Service. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

MRCARE TECHNOLOGIES LLC

Email: legal@cuedock.app

See also our Terms of Service.