Skip to content
PlasmidStudio
Join beta

Privacy Policy

Last updated: March 2026

What Data We Collect

  • Email address: Used for authentication (magic link login) and account identification. No passwords are stored.
  • Construct data: Plasmid designs you create — sequences, features, annotations, primers, and metadata — are stored so you can access them across sessions.
  • AI chat history: Messages sent to the AI assistant during your session are used to provide contextual responses. Chat content is not persisted on our servers after your session ends.
  • Usage analytics: We collect anonymized usage data to understand how the product is used and improve it. See the Analytics section below for details.

How We Use Your Data

  • Provide the Service: Store and retrieve your constructs, process AI design requests, manage your account.
  • Improve the product: Analyze usage patterns to prioritize features, fix bugs, and improve the user experience.
  • We do not sell your data. We do not sell, rent, or share your personal information or construct data with third parties for marketing or advertising purposes.

AI Data Processing

  • AI design requests are proxied through our server-side API gateway (LiteLLM) and sent to AI providers (Anthropic and OpenAI).
  • Per their API terms of service, neither Anthropic nor OpenAI uses API data to train their models. Providers may temporarily retain requests for abuse monitoring and safety purposes.
  • Your browser never communicates directly with AI providers — all requests are routed through our API proxy.

Data Storage

  • Data is stored in Supabase PostgreSQL, a managed cloud database with encryption at rest (AES-256).
  • All data in transit is encrypted with TLS 1.3.
  • API keys (admin and user-provided) are encrypted with AES-256-GCM before storage.
  • For full details on our security practices, see our Security page.

Analytics

We use the following analytics services:

  • PostHog — product analytics to understand feature usage and user flows. Users are identified by anonymized IDs. Respects Do Not Track browser settings.
  • Google Analytics 4 (GA4) — traffic analytics to understand how visitors find PlasmidStudio and measure marketing effectiveness.
  • Sentry — error tracking to detect and fix bugs. Captures error context but not construct content.

Data Retention

  • Constructs: Stored indefinitely while your account is active. You can delete individual constructs at any time.
  • Usage logs: Detailed AI usage logs are rolled up into monthly aggregates after 90 days. Individual request-level data is then deleted.

Your Rights

  • Export your data: You can export your constructs at any time in GenBank, FASTA, SnapGene, SBOL, or PDF format.
  • Request deletion: Email hello@plasmidstudio.ai to request complete deletion of your account and all associated data.

Cookies

PlasmidStudio uses cookies and similar technologies from our analytics services (PostHog, GA4, Sentry) for product analytics, traffic measurement, and error tracking. Session cookies are used for authentication. We do not use cookies for advertising purposes beyond conversion tracking for our own marketing campaigns.

Children

PlasmidStudio is not designed for or directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us so we can delete it.

Privacy questions or data requests? Contact us at hello@plasmidstudio.ai