Privacy Policy
Last updated: May 2026
This policy explains what data SlipGen(“we”, “us”) collects, why we collect it, and the choices you have. We've written it in plain language because most schools and teachers using SlipGen aren't lawyers — if anything is unclear, email hello@slipgen.inand we'll explain.
Who we are
SlipGen, operated from India. The data controller is the operator of https://www.slipgen.in. You can reach us at hello@slipgen.in.
What we collect
We try to collect as little as possible. The data we hold falls into three buckets:
1. Your account
- Your email address (used to sign in and contact you about your account)
- Your full name, if you provided one at sign-up or through Google sign-in
- Your plan tier (Free / Basic / Standard) and whether your account is active or suspended
- Timestamps of account creation and last update
2. Student data you enter
When you use the editor, you provide student details (name, class, division, roll number, subject, optional photo, optional aspiration tag). This data is stored only in your browser during a session — we do not store it on our servers or share it with any third party for marketing.
If you upload a student photo, it is automatically compressed in your browser before any AI request. The original file never leaves your device. The compressed image is only sent to our AI provider (see “Third parties” below) when you explicitly ask for AI cartoonisation.
3. Usage telemetry
To run the service we record:
- The number of slips you export (so we know how much paper SlipGen has helped save)
- The number of AI cartoonisations you run (so we can enforce daily plan quotas)
- The provider that fulfilled an AI request (e.g. Pollinations.ai), for debugging
We do not log student names, photos, or any other slip content. We do not use cookies for advertising or third-party tracking. We do not sell, rent, or share your data.
How we use the data
- To run your account — authenticating you, applying your plan limits, showing your usage
- To deliver the service — processing AI requests when you ask for them, generating PDFs in your browser
- To improve the product — aggregate counts of how many AI runs / exports happen so we can plan capacity
- To contact you — account emails (sign-up confirmation, password reset). We do not send marketing emails.
Third parties
SlipGen uses the following external services. Each only sees the minimum data needed to do its job.
- Supabase — stores your account row (email, name, plan, role) and authenticates you. Hosted on AWS infrastructure.
- Google — if you choose to sign in with Google, Google sees your sign-in attempt. We receive only your email, name, and profile picture URL.
- Pollinations.ai / fal.ai / Replicate — when you trigger AI cartoonisation, the student photo and a text prompt are sent to whichever provider responds. Your account ID is not shared.
- Vercel — our hosting provider. Receives standard web-server logs (IP address, request paths) for the duration needed to serve your request.
Cookies
We use a single category of cookies: essential cookies that keep you signed in (the Supabase auth cookie). Without it, you would have to sign in on every page load. We do not use any tracking, advertising, or analytics cookies.
How long we keep data
- Account data is kept as long as your account exists. Delete your account by emailing us — we will wipe it within 7 days.
- Slip/student data is not stored server-side at all. Closing the browser tab erases it.
- Usage telemetry is retained for 12 months in aggregate; individual rows are pruned after 90 days.
Your rights
Under India's Digital Personal Data Protection Act, 2023 and equivalent laws in other regions, you can:
- Access the personal data we hold about you
- Correct anything that's wrong
- Ask us to delete your account and personal data
- Withdraw consent for processing (this will close your account)
- Lodge a complaint with the Data Protection Board of India
To exercise any of these, email hello@slipgen.in. We respond within 7 working days.
Children
SlipGen is intended for teachers, school staff, and event organisers — adults responsible for student records. It is not intended for use by children under 18 directly. If you are a school using SlipGen with student data, you are responsible for ensuring you have appropriate consent from parents or guardians under applicable law.
Security
Authentication uses industry-standard practices (HttpOnly cookies, rate-limited login, password hashing). Row-level security in our database means users can only read their own rows. We use HTTPS everywhere. No security is perfect, but we treat this seriously and welcome reports of issues at hello@slipgen.in.
Changes
We'll update this page if our practices change. The “Last updated” date at the top reflects the most recent change. Material changes will be notified to active users by email.