Privacy Policy
Effective July 9, 2026
1. In short
PromptShot uses a BYOK model. Screenshots, prompts, and API keys go directly from the app to your selected AI provider, or stay on your computer when you use a local model. PromptShot servers do not proxy these requests.
2. Local data
Settings, API keys, conversation history, and the license token are stored locally in the application profile. API keys, the license token, and history files are protected with Windows encryption (DPAPI/Electron safeStorage) whenever system encryption is available. You can remove the data through the app or by deleting its profile.
3. Subscription data
The license service processes the buyer email, plan, subscription period, a one-way hash of the device identifier, and activation records. Payment details are processed by lava.top and are not received by PromptShot.
4. Service providers
Your chosen AI provider processes screenshots under its own policy. PromptShot uses lava.top, Timeweb hosting, and an SMTP provider for licensing and email delivery. We do not sell personal data.
5. Retention and security
License records are retained for the subscription period and a reasonable support and fraud-prevention period. Security measures include HTTPS, digitally signed licenses, and activation rate limits.
6. Your rights
You may request access, correction, or deletion of subscription data held on the server. We may need to verify control of the relevant email address.
7. Contact
Privacy requests: privacy@prompt-shot.com.