Privacy Policy

Last Updated: October 5, 2025

This Privacy Policy explains how Neureal collects, uses, processes, and protects your information when you use our Prompt Engineering and Optimization services.

Last Updated: October 5, 2025

Neureal (the "Operator") is a Prompt Engineering and Optimization Platform operated by an individual based in Morocco. The Operator operates the website https://neureal.site/ (the "Site") and related services (collectively, the "Services").

This Privacy Policy describes how the Operator collects, uses, processes, and discloses your information, including personal data, in conjunction with your access to and use of the Prompt Engineering Services.

The Operator collects several types of information from and about users of the Prompt Engineering Services:

a. Personal Identification Information

  • Account Information: When you register, the Operator collects your email address, username, and password.
  • Payment Information: All payments are processed by Dodo Payments (the Payment Processor). They collect and process payment details including name, billing address, and payment method information. The Operator does not store sensitive payment information on its servers.
  • Communication Data: When you contact the Operator for support, your email address and the content of your messages are collected.

b. Prompt and Optimization Data

  • Original Prompts: The text prompts you submit for processing and optimization.
  • Optimized Prompts: Enhanced prompts generated by the Operator's optimization algorithms.
  • Usage Patterns: How you use the prompt engineering tools, including prompt types, optimization preferences, and interaction history.
  • Performance Metrics: Data about how different prompts perform and are optimized.

c. Technical and Usage Data

  • Device Information: IP address, browser type, operating system, and device characteristics.
  • Log Data: Time stamps, access times, pages viewed, and other system activity.
  • Cookies and Tracking: Information collected through cookies and similar technologies.
Important: The Operator does not collect biometric data. All prompt data is processed solely for providing optimization services and improving prompt engineering algorithms.

The Operator uses the information collected for the following purposes:

a. Service Provision and Operation

  • To provide, maintain, and improve the prompt engineering and optimization services
  • To process transactions and manage subscriptions
  • To authenticate users and secure accounts
  • To generate and deliver optimized prompts

b. Communication

  • To send service-related notifications
  • To respond to customer support requests
  • To communicate about updates, security alerts, and policy changes

c. Service Improvement and Analytics

  • To analyze usage patterns and optimize prompt engineering algorithms
  • To develop new features and optimization capabilities
  • To conduct research and development in prompt engineering
  • To improve system performance and response quality

d. Security and Compliance

  • To detect and prevent fraud, abuse, and security incidents
  • To enforce the Legal Terms and policies
  • To comply with legal obligations
Legal Basis: The Operator processes your information based on: (1) your consent; (2) the necessity to perform the contract with you; (3) legitimate business interests; and (4) compliance with legal obligations.

The Operator retains your information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

a. Retention Periods

  • Account Data: Retained while your account is active and for a reasonable period thereafter for legal compliance
  • Prompt and Conversation Data: Retained as necessary to provide services, ensure platform security, and comply with legal obligations
  • Payment Records: Retained as required by financial regulations and Dodo Payment's policies
  • Technical Logs: Retained for security monitoring and troubleshooting

b. Data Deletion

  • You may request deletion of your prompt data and personal information at any time by contacting the Operator
  • Upon account termination, the Operator deletes or anonymizes personal data within a reasonable timeframe
  • Some data may be retained where required by law or for legitimate business purposes
Data Preservation: The Operator may preserve data when necessary to comply with legal obligations, resolve disputes, or enforce agreements.

The Operator does not sell your personal data. Information may be shared in the following circumstances:

a. Service Providers

  • Dodo Payments: Payment processor for subscription management
  • Cloud Hosting Providers: For infrastructure and data storage
  • Analytics Services: To understand usage patterns and improve the Services

b. Legal Requirements

  • To comply with legal obligations and regulatory requests
  • To protect the rights, privacy, safety, or property of the Operator
  • In connection with business transfers, mergers, or acquisitions

c. Aggregated Data

The Operator may share aggregated, anonymized data that does not identify you personally for research and development purposes.

Note: The Operator uses proprietary algorithms for prompt optimization and does not rely on external AI model providers for core service functionality.

The Services are hosted in Germany. By using the Services, you acknowledge and consent to:

  • The transfer of your data to Germany for processing and storage
  • The application of German data protection laws to the storage and processing of your data
  • Potential transfers to other countries where service providers operate

The Operator implements appropriate safeguards to ensure your data receives adequate protection during international transfers, including:

  • Standard contractual clauses approved by relevant authorities
  • Data processing agreements with service providers
  • Security measures to protect data in transit and at rest
EU Users: If you are located in the European Economic Area, your data is transferred to Germany under adequacy decisions and appropriate safeguards as required by GDPR.

The Operator implements comprehensive security measures to protect your data:

a. Technical Safeguards

  • Encryption of data in transit using TLS/SSL protocols
  • Secure storage with access controls and monitoring
  • Regular security assessments and vulnerability testing
  • Network protection and intrusion detection systems

b. Administrative Safeguards

  • Limited access to personal data on a need-to-know basis
  • Employee training on data protection and privacy
  • Incident response and data breach procedures

c. Organizational Safeguards

  • Data protection impact assessments
  • Contractual obligations with service providers
  • Regular review and update of security practices
Important: While robust security measures are implemented, no method of transmission over the Internet or electronic storage is 100% secure. The Operator cannot guarantee absolute security but continuously works to maintain the highest standards of data protection.

This section specifically addresses the processing of prompt data through the Services:

a. Prompt Processing and Optimization

  • Original prompts are processed by proprietary algorithms to generate optimized versions
  • Optimized prompts are generated using specialized prompt engineering techniques
  • Anonymized prompt data is used to improve optimization algorithms
  • All processing is done using the Operator's own systems and infrastructure

b. Prohibited Uses

  • Generation of illegal, harmful, or abusive content
  • Creation of content that violates intellectual property rights
  • Political manipulation or election interference
  • Impersonation of individuals without consent

c. Content Responsibility

  • You are responsible for ensuring prompt inputs do not infringe third-party rights
  • You must have necessary rights or licenses for content processed through the Services
  • Commercial use of optimized prompts may require appropriate subscriptions
  • You retain ownership of your original prompts and are responsible for how you use optimized versions
Ethical Use: The Operator monitors for and prohibits misuse of the Services, including generation of harmful, misleading, or illegal content. Violations may result in termination of service and legal action.

Depending on your location, you may have the following rights regarding your personal data:

a. Access and Portability

  • Right to access the personal data held about you
  • Right to receive your data in a structured, machine-readable format
  • Right to know the categories of data collected and processing purposes

b. Correction and Deletion

  • Right to correct inaccurate or incomplete personal data
  • Right to request deletion of your personal data ("right to be forgotten")
  • Right to withdraw consent where processing is based on consent

c. Objection and Restriction

  • Right to object to processing based on legitimate interests
  • Right to restrict processing in certain circumstances
  • Right to opt-out of marketing communications

d. How to Exercise Your Rights

To exercise any of these rights, please contact the Operator at neurealchat@gmail.com. The Operator will respond to your request within 30 days and may need to verify your identity before processing.

Appeals: If unsatisfied with the response, you may have the right to lodge a complaint with your local data protection authority.

The Operator uses cookies and similar technologies to provide and improve the Services:

a. Types of Cookies Used

  • Essential Cookies: Required for basic site functionality and security
  • Performance Cookies: Help understand how users interact with the Services
  • Functionality Cookies: Remember your preferences and settings

b. Your Cookie Choices

  • Most browsers allow you to control cookies through their settings
  • You can set your browser to refuse all or some cookies
  • Disabling essential cookies may affect Service functionality

c. Do Not Track Signals

The Services do not currently respond to Do Not Track signals. This policy will be updated if practices change.

Third-Party Tracking: The Operator does not permit third-party behavioral advertising tracking on the Services.

The Services are intended for users who are at least 18 years old. The Operator does not knowingly collect personal information from children under 18.

a. Age Restrictions

  • Persons under the age of 18 are not permitted to use or register for the Services
  • The Operator does not knowingly market to or solicit information from children
  • If the Operator learns it has collected personal information from a child under 18, that information will be deleted promptly

b. Parental Controls

Parents or guardians who believe their child has provided personal information should contact the Operator immediately at support@neureal.site.

Verification: The Operator may require verification of parental consent for any user there is reason to believe is under 18.

The Services may contain links to third-party websites and services:

a. External Websites

  • The Operator is not responsible for the privacy practices of third-party websites
  • This Privacy Policy applies only to information collected by the Services
  • You are encouraged to review the privacy policies of any third-party sites you visit

b. Integrated Services

  • Dodo Payments: Payment processing and subscription management
  • Analytics Providers: Service performance monitoring
Note: The Operator uses proprietary systems for prompt optimization and does not integrate with external AI model providers.

This Privacy Policy may be updated from time to time to reflect:

  • Changes in practices or services
  • Legal or regulatory requirements
  • Technological developments in prompt engineering
  • User feedback or industry standards

a. Notification of Changes

  • The updated Privacy Policy will be posted on this page
  • The "Last Updated" date at the top of this policy will be updated
  • For material changes, additional notice may be provided via email or in-service notifications

b. Your Continued Use

Your continued use of the Services after any modification to this Privacy Policy constitutes your acceptance of such changes.

Review Responsibility: You are encouraged to periodically review this Privacy Policy to stay informed about information practices.

For questions about this Privacy Policy or privacy practices, please contact the Operator:

Email: support@neureal.site

Operational Base: Tanger, Morocco

Data Hosting: Germany

Governing Law

This Privacy Policy shall be governed by and construed in accordance with the laws of Morocco, without regard to its conflict of law principles.

Dispute Resolution

Any disputes relating to this Privacy Policy shall be subject to the dispute resolution provisions outlined in the Legal Terms.

Legal Compliance: The Operator complies with applicable data protection laws, including the GDPR for European users, by implementing appropriate safeguards and providing necessary rights and protections.