TypoSweep

Privacy Policy

Last updated: 12 May 2026

This Privacy Policy explains what data TypoSweep collects, how we use it, and what we don't do with it.

What we collect

  • Your email address, which you provide on the upload form. We use it to send you your preview, your completed audit, and occasional service-related messages.
  • Your manuscript file, which you upload. We process it through our typo-detection pipeline; that's the entire purpose we have for it.
  • Payment metadata (whether you paid, when, for how much) is stored by Stripe. We see only what Stripe shows us in our dashboard — never your actual card details.
  • Basic usage data — your IP address and timestamp of upload — is recorded so we can enforce daily rate limits on the free preview and diagnose abuse.

What we don't do with your manuscript

  • We do not use your manuscript to train AI models. The Claude API calls that power the audit do not retain your text for training (per Anthropic's API terms).
  • We do not sell, share, or license your manuscript. No third party reads it. No marketing partner sees it.
  • We do not advertise based on its contents.

How long we keep it

We delete every uploaded manuscript and every generated audit file from our storage 30 days after upload. After that, the only record we retain is the metadata (your email, payment status, word count, flag counts) used for accounting and support. The download links we email you also expire after 7 days, which is why we recommend saving the files shortly after they arrive.

Where it lives while we have it

Manuscripts and generated reports are stored encrypted at rest in Cloudflare R2 object storage. They travel over TLS-encrypted connections in transit. Database records (your email, job metadata) live in a managed Postgres database.

Who we share with

We use a small number of service providers, each for a single function:

  • Anthropic — runs the Claude AI model that performs the typo audit.
  • Stripe — processes payments.
  • Cloudflare — DNS, hosting (R2 storage), bot protection.
  • Render — application hosting.
  • Resend — sends transactional email.
  • Sentry (optional) — captures application errors.

Each of these providers sees only what it needs to do its job — for example, Stripe sees your email and payment; Resend sees the email we send to you. None of them sees your full manuscript except Anthropic (which receives it in chunks for the audit and does not retain it for training).

Your rights

You can ask us to delete your data at any time by emailing hello@typosweep.com. We'll honor the request within 14 days.

Children

TypoSweep is intended for adults. We don't knowingly process data from anyone under 16.

Changes

If we materially change this Policy, we'll update the date above and, for changes affecting existing customers, send an email notification.

Contact

Privacy questions? Email hello@typosweep.com.

This Policy is provided as a starting template and has not been reviewed by an attorney. Before significant launch or revenue milestones — and especially before operating in jurisdictions with strict data-privacy regimes like the EU (GDPR) or California (CCPA) — have a lawyer review it.