Manuscript Privacy

Novelify respects your ownership of all manuscripts, outlines, characters, notes, and any other creative content you create or upload to the Platform. We do not claim any ownership rights over your work.

Your content is stored securely and is accessible only to you and those you explicitly authorize. We do not share, sell, or distribute your manuscripts to third parties.

This commitment to your privacy is fundamental to our service. You write freely, knowing your creative work remains confidential.

All manuscript data is protected using industry-standard encryption:

• In Transit: All data transmitted between your device and our servers is encrypted using TLS 1.3 (Transport Layer Security), ensuring that your content cannot be intercepted during transmission
• At Rest: All stored content is encrypted using AES-256 encryption at the storage level
• Backups: Encrypted backups are performed regularly to prevent data loss

These encryption standards are consistent with those used by financial institutions and healthcare providers.

Access to your manuscripts is strictly controlled:

• Only you can access your account and content using your email and password
• Novelify employees and contractors do not have direct access to your manuscripts. In rare cases where access is required for technical support or troubleshooting (with your explicit consent), such access is logged, time-limited, and audited
• Two-factor authentication (2FA) is available for enhanced account security
• Session management features allow you to view and revoke active sessions

You are responsible for maintaining the security of your account credentials. We strongly recommend using a strong, unique password and enabling two-factor authentication.

Each Novelify account operates in an isolated environment. Your manuscripts are stored in a logically segregated database partition, ensuring that no other user can access your content. Our infrastructure is designed with strict multi-tenancy controls to prevent cross-account data access.

Regular security audits and penetration testing verify the effectiveness of these isolation measures.

You have full control over your content:

• You may delete individual manuscripts or your entire account at any time
• Deleted manuscripts are moved to a "trash" folder for 30 days, after which they are permanently deleted
• Upon account deletion, all your content is permanently deleted from our servers within 30 days
• Backups containing deleted data are overwritten within 90 days

We retain the minimum amount of data necessary for legal and operational purposes (e.g., billing records), which does not include your manuscripts or creative content.

When you use AI writing features, portions of your manuscript or context may be sent to our AI service provider for processing. This data is:

• Used only to generate the requested AI output
• Not retained by the AI provider beyond the processing request (typically seconds)
• Not used to train or improve AI models
• Transmitted over encrypted connections

We have contractual safeguards with our AI providers to ensure your manuscript data is never used for purposes beyond providing the service to you.

We do not sell access to your manuscripts to any third party. Limited content access may be granted to:

• Infrastructure providers: AWS hosts our data with strict access controls and SOC 2 compliance
• AI providers: As described above, with strict data processing agreements in place
• Legal authorities: Only when required by valid legal process, such as a court order or subpoena

In the event of a legal request for your data, we will notify you to the extent permitted by law and challenge overly broad requests.

In the unlikely event of a security incident affecting your manuscripts, we will:

• Notify you within 72 hours of discovering the incident
• Provide details about the nature and scope of the breach
• Take immediate steps to contain and remediate the issue
• Cooperate with relevant authorities as required by law

We maintain a comprehensive incident response plan and conduct regular security drills to ensure preparedness.

While we implement extensive security measures, your actions also play a role in protecting your manuscripts. We recommend:

• Using a strong, unique password for your Novelify account
• Enabling two-factor authentication
• Not sharing your account credentials with others
• Logging out of Novelify on shared or public devices
• Regularly backing up important manuscripts outside the Platform

Following these practices significantly reduces the risk of unauthorized access to your creative work.

If you have questions, concerns, or requests regarding this policy, please contact us:

• General support: support@novelify.online
• Billing & refund inquiries: billing@novelify.online
• Privacy & data requests: support@novelify.online