Privacy Policy

NxtDocument Studio is a web-based document blueprint and artifact generation platform. The public Studio experience allows users to create document structures, generate document artifacts, and export outputs without creating an account. For privacy or data requests, contact: hello.nxtdocument@yahoo.com.

This policy applies to the public NxtDocument Studio website and app experience, including Studio Builder, Instant Draft, artifact generation, reference parsing, exports, blog pages, feedback forms, and related pages under studio.nxtdocument.com. It does not apply to third-party websites that may be linked from the service.

• Document briefs, prompts, requirements, and instructions entered into the app.
• Blueprint/template data created in Studio Builder or Instant Draft.
• Reference files or URLs you choose to attach for document generation.
• Optional document header details such as organization name, prepared by, date, or confidentiality label.
• Optional feedback/contact details if you join the feedback circle, such as email address, role, company, and use case.
• Messages sent through contact or feedback channels.

Because the public Studio experience does not require sign-up, NxtDocument uses limited anonymous technical signals to protect the service from abuse and control paid generation costs. These signals are used for security, quota enforcement, reliability, and abuse prevention, not for selling personal profiles.

• Anonymous browser/device fingerprint hash.
• Local anonymous session ID.
• IP-derived hash processed server-side for abuse prevention.
• Generation counters and quota state.
• Started, completed, failed, or expired generation events.
• Export activity counters.
• Reference parsing activity counters.
• Abuse-prevention events such as cooldowns, duplicate prompt checks, or rate-limit events.

Raw IP addresses are not displayed in the UI. IP-derived signals may be processed server-side and stored as hashes or security metadata where applicable.

NxtDocument may store certain app data locally in your browser to make the app usable without sign-up.

• Local blueprints and templates.
• Generated artifact history where applicable.
• Anonymous session ID.
• UI preferences.
• Draft form state.
• Quota display state.

Clearing browser storage may remove locally saved data. Server-side protection records may still exist for abuse prevention and quota enforcement.

When you request AI-powered artifact generation, your brief, selected blueprint, generation settings, and any references you provide may be sent to the secure server-side generation endpoint. The server uses a protected AI provider integration to create the requested output. API keys are not exposed to the browser.

• The frontend does not call the AI provider directly.
• Generation is protected by quota, token, and abuse-prevention controls.
• User-provided references may be used to ground the generated document.
• If you choose placeholder or source-backed missing-data handling, the system attempts to avoid inventing unsupported facts.

You may optionally provide reference files or URLs. These are used to help generate the requested document. Do not upload confidential, regulated, privileged, highly sensitive, or third-party-restricted material unless you have the right and authority to do so.

• Reference processing may extract text or metadata.
• Some file types may only be partially parsed.
• Unsupported or oversized files may be rejected.
• Internal/private URLs are blocked for security.
• Reference limits exist to prevent abuse and protect service stability.

If you voluntarily submit your email to join the feedback circle, NxtDocument may contact you occasionally about product feedback, surveys, early access updates, or user research. This is optional and is not required to use the public Studio experience.

• Email address.
• Role or company if provided.
• Use case if provided.
• Consent timestamp or submission date.
• Source of the opt-in event.

You may request removal from feedback communications by contacting hello.nxtdocument@yahoo.com.

• Provide the public Studio, Instant Draft, and artifact generation experience.
• Generate document blueprints and artifacts.
• Process references selected by the user.
• Export generated documents.
• Protect against abuse, automated misuse, excessive generation, and cost attacks.
• Maintain service reliability and security.
• Respond to contact or feedback requests.
• Improve product quality using aggregated or anonymous operational data.
• Understand high-level usage patterns for product development.

Depending on the context and applicable law, processing may rely on:

• Performance of a requested service when generating documents or processing user-submitted inputs.
• Legitimate interests in securing the service, preventing abuse, enforcing quotas, and maintaining reliability.
• Consent when you voluntarily submit feedback contact details or opt into communications.
• Legal obligation where retention or disclosure is required by applicable law.

• We do not require users to create an account for the public Studio experience.
• We do not sell user contact details.
• We do not use anonymous security fingerprints for advertising profiling.
• We do not intentionally collect sensitive personal data.
• We do not ask users to upload confidential or regulated data.
• We do not expose AI provider API keys to the browser.

NxtDocument may use service providers for hosting, database/storage, server functions, analytics, email/contact handling, and AI generation. These providers process information only as needed to operate the service and provide requested functionality.

• Hosting and deployment providers.
• Database and backend providers.
• AI generation providers.
• Email/contact providers.
• Analytics or performance tools if enabled.

Service providers may process data in different countries depending on their infrastructure. Where required, appropriate safeguards should be used for international transfers. Users should avoid submitting sensitive or regulated data unless they have assessed their own compliance requirements.

• Local browser data remains until the user clears it or the app removes it.
• Anonymous quota/security records may be retained for a reasonable period for abuse prevention, reliability, and operational analysis.
• Feedback contact records may be retained until deletion is requested or the purpose no longer applies.
• Uploaded reference data should only be retained as needed for processing unless explicitly stored as part of a user-controlled workflow.
• Aggregated or anonymized metrics may be retained for product analytics and investor/product reporting.

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing of personal data, and to withdraw consent where processing is based on consent. To make a request, contact hello.nxtdocument@yahoo.com.

Because the public Studio experience is mostly anonymous, some requests may require information that helps identify the relevant record, such as the email used for feedback opt-in or details about the session.

NxtDocument Studio is not intended for children. Users should not submit information from or about children.

NxtDocument uses technical and organizational measures such as server-side API key protection, anonymous quota enforcement, abuse-prevention checks, reference parsing limits, and restricted admin/API routes. No system can be guaranteed perfectly secure. See our Security page for more detail.

This policy may be updated as the product evolves. Material changes should be reflected by updating the "Last updated" date at the top of this page.

For privacy questions, feedback-contact removal, or data requests, contact: hello.nxtdocument@yahoo.com.