Security & Privacy at GhostWriter

Our Security Commitment

Protecting your work is a top priority. We employ industry-standard practices to safeguard the confidentiality, integrity, and availability of your data within the GhostWriter platform.

Data Encryption

• Encryption in Transit: All data exchanged between your browser and our servers is encrypted using TLS (Transport Layer Security), the standard for secure internet communication (HTTPS).
• Encryption at Rest: Manuscript data and sensitive account information stored on our servers are encrypted using robust encryption algorithms (e.g., AES-256).

Infrastructure Security

• Secure Cloud Hosting: We host our platform on reputable cloud infrastructure providers (e.g., AWS, Google Cloud) that maintain high levels of physical and network security compliance (e.g., SOC 2, ISO 27001).
• Regular Backups: Your data is backed up regularly to prevent data loss in case of hardware failure or other unforeseen events.
• Access Controls: We implement strict internal access controls, ensuring only authorized personnel with a legitimate need can access system infrastructure or user data for maintenance or support purposes.

Account Security

• Secure Authentication: We utilize secure methods for user authentication to protect against unauthorized account access.
• User Permissions: Coaches control who they invite to collaborate on a manuscript, managing access levels within the platform.

Privacy Overview

We respect your privacy and are transparent about how we handle your information. (Note: This is a summary; a full, legally compliant Privacy Policy document would be required for a live application).

Information We Collect

• Account Information: Name, email address, payment details (processed via secure third-party providers like Stripe), and plan information required to provide our service.
• Manuscript Content: The text and associated metadata (like comments, version history) that you and your clients create within the platform. You and your invited collaborators own this content.
• Usage Data: Anonymized or aggregated data about how users interact with the platform (e.g., feature usage frequency) to help us improve the service. We do not analyze the *content* of manuscripts for this purpose.

How We Use Information

• To provide, maintain, and improve the GhostWriter service.
• To process payments and manage accounts.
• To communicate with you regarding your account, support requests, or important service updates.
• To monitor for security threats and prevent abuse.
• To analyze aggregated usage patterns for product development (content remains private).

Data Sharing

We do not sell your personal information or manuscript content. We only share data with trusted third-party service providers necessary to operate our platform (e.g., cloud hosting, payment processing, email delivery) under strict confidentiality agreements. We may disclose information if required by law or to protect our rights and safety or the rights and safety of others.

Your Content Ownership

You and your clients retain full ownership of the intellectual property created within GhostWriter. We simply provide the platform to facilitate its creation and storage. We do not claim any rights to your manuscript content.

Data Residency & Specific Measures

Manuscripts and associated data are encrypted at rest (AES-256) and in transit (TLS 1.3). Our primary data residency is in the US-West region.

For a full breakdown, please consult our complete Privacy Policy and Terms of Service.