Privacy Policy

Last Updated: January 24, 2026

Our Privacy Commitment
FluentPrep AI is committed to protecting your privacy and providing a transparent, educational service.

Core Privacy Principles

  • No data selling: We will never sell, rent, or share your personal data with third parties for marketing purposes.
  • Minimal collection: We only collect data necessary to provide and improve our service.
  • User control: You control your data. You can delete your account and all associated data at any time.
  • Transparency: We're open about what we collect, why, and how long we keep it.

Access Levels

FluentPrep AI offers flexible access options:

Free Access (No Account)

Limited daily practice with rotating questions. No personal information collected. IP address logged temporarily (24 hours) for rate limiting only.

Free Account

Same daily limits as free access. Requires email or Google sign-in. Your progress is tracked automatically (dashboard visible with Pro subscription).

Premium

Full access to all practice tasks. Subscription managed through Stripe. We never see your payment details.

Cookies We Use

FluentPrep AI uses strictly necessary cookies to provide and improve our service. These cookies do not require consent under GDPR as they are essential for the website to function.

  • Authentication Cookies: Managed by Supabase Auth to keep you logged in
  • Subscription Status Cookie (sub_status): Caches your subscription status for 1 hour to provide smooth UI experience and reduce server load. This cookie only stores "premium" or "free" status and does not contain personal information.

We do not use tracking cookies, advertising cookies, or analytics cookies that identify individual users.

Data We Collect

For All Users:

  • IP Address: Logged temporarily (24 hours) for rate limiting, then automatically deleted
  • Audio Recordings: Processed rapidly for AI feedback, never stored permanently on our servers. During mock tests, audio recordings are temporarily stored in your browser's local storage for result playback and evaluation retry, and are cleared when evaluations complete or when you clear your browser cache

For Account Holders:

  • Account: Email address, authentication method (email/password or Google OAuth)
  • Practice History: Scores, completed tasks, timestamps, performance metrics

For Premium Subscribers:

  • Subscription: Plan type, status, billing dates. Payment details handled by Stripe; we never see card information.

How We Use Your Data

  • Service Delivery: Provide AI feedback, track progress, manage subscriptions
  • Abuse Prevention: IP-based rate limiting to prevent spam and ensure fair access
  • Service Improvement: Anonymous analytics to improve features
  • Communication: Essential account emails only (password resets, subscription updates)

Data Retention

  • IP Addresses: Automatically deleted after 24 hours
  • Audio Recordings: Deleted from our servers immediately after processing. Mock test recordings in browser local storage are temporary and cleared automatically
  • Practice History: Retained while account is active (deletable on request)
  • Subscription Data: Retained for 7 years after cancellation (legal requirement)
  • Legal Consents: Payment-related consents (e.g., cooling-off period waivers) are retained for 7 years as required by law, even after account deletion, for legal defense and tax compliance purposes
  • Deleted Accounts: All personal data permanently deleted within 30 days, except legal/financial records required by law

Your Rights

You have the right to:

  • Access: Request a copy of your data
  • Correction: Update your account information
  • Deletion: Delete your account and personal data (exceptions apply for legal/financial records required by law)
  • Export: Download your practice history (coming soon)
  • Cancel: Cancel your subscription anytime (access continues until period end)

Note on Deletion Exceptions: When you delete your account, we anonymize (not delete) certain legal and financial records required for tax compliance, fraud prevention, and defense of legal claims. This includes payment consents and transaction records, retained for 7 years per GDPR Article 17(3)(b) and (e). Your personal identifiers are removed from these records.

Contact us at fluentprepai@gmail.com for privacy questions.

Third-Party Services

We use trusted third-party services for payment processing, authentication, and hosting. Payment details are handled securely by our payment processor. We never see your credit card information.

AI & Data Training

FluentPrep AI does not save or train on your data. Your audio recordings and written responses are directly processed for evaluation only. We do not store your submissions or use them for any machine learning training purposes.

Children's Privacy

FluentPrep AI is intended for users preparing for the TOEFL exam (typically 16+ years old). We do not knowingly collect data from children under 13. If you believe a child has created an account, please contact us immediately.

Changes to This Policy

We may update this policy to reflect service changes or legal requirements. Material changes will be announced on the homepage. Continued use after changes constitutes acceptance.

Contact Us

Questions about privacy? Email us at fluentprepai@gmail.com or visit our About & Support section.

🔒 Bottom Line:

FluentPrep AI is built to help students, not to collect data. We keep things minimal, transparent, and focused on your learning, never on exploiting your information.

FluentPrep AI - Your TOEFL preparation companion

KVK: 99537044