Trust-Prompt Plus Privacy Policy
This Trust-Prompt Plus privacy policy explains how Trust-Prompt Plus handles data as a local AI governance layer. It describes what data may be processed, how prompt checks work locally in the browser, how license activation is handled, how local audit visibility and policy export fit into the product, and when data may be shared.
Trust-Prompt Plus is designed to review content before submission on supported AI websites. Therefore, the product is intended to help users reduce privacy, security and compliance risk before data leaves the browser.
Who operates Trust-Prompt Plus
Operator
Media Train OÜ
Website:
trust-prompt.com
Product page:
Trust-Prompt Plus
Contact:
service@trust-prompt.com
Scope of this policy
This privacy policy applies to the Trust-Prompt Plus website pages, the browser extension in its Plus mode, and related product functionality such as license activation, local audit visibility and policy export.
What Trust-Prompt Plus is and how it is activated
Trust-Prompt Plus is designed as a local pre-send governance layer. Advanced Plus functionality is only activated after a valid license key is entered and the relevant licensed feature set becomes active.
- Base or non-activated mode: only the functionality available without an activated Plus license is available.
- Plus mode: additional features become available after successful license activation.
- Supported scope: the first public version is designed around supported AI websites and supported workflows.
How prompt text is processed
Trust-Prompt Plus is designed so that prompt checks happen locally in the browser before submission. The purpose of that design is to reduce unnecessary data movement and support a more privacy-respectful governance model.
Local pre-send checks
User-entered text may be evaluated locally for rule-based risk signals such as personal data, financial data, secrets, identifiers, structured records, sensitive categories and other governance-relevant patterns.
No remote prompt analysis by Trust-Prompt
Trust-Prompt Plus is not intended to send prompt text to Trust-Prompt servers for the purpose of prompt analysis, scoring or advertising.
User choice still matters
If a user chooses to submit content to a third-party AI service on a supported AI website, that content is then processed by that third party under the third party’s own terms and privacy practices.
Categories of data
Website data
If you visit trust-prompt.com, standard website operation data may be processed by hosting or infrastructure providers, such as IP address, browser information, request logs and basic security logs.
Extension data
Depending on the active product mode and settings, the extension may locally process user-entered text before send, rule matches, policy decisions, local settings, and local product state.
Configuration data
The product may locally store configuration information such as enabled modes, supported-site settings, product tier state, user preferences, and other settings required for normal operation.
License keys and activation-related data
To activate Plus functionality, users may enter a license key. Depending on the product implementation, Trust-Prompt Plus may store the minimum locally necessary activation-related information required to maintain the active product state.
Examples of license-related data
- license status
- activation state
- product tier
- local settings tied to the active product mode
Purpose
This information is used to unlock and maintain the licensed feature set, preserve product state and support the supported-site configuration of the product.
How local audit visibility fits into privacy
Trust-Prompt Plus is designed to support governance visibility while keeping the core review model local. That means audit-related product signals can remain local instead of becoming a remote prompt collection system.
Possible local audit signals
Depending on configuration, this may include rule hits, decision counts, product state changes, local governance events or similar audit-relevant signals.
Why this exists
Audit visibility helps users and governance owners understand how the layer behaves, which issues appear, and whether settings need adjustment.
Important distinction
The purpose of audit visibility is governance understanding and local product transparency, not advertising, resale or unrelated profiling.
Policy export and configuration transparency
Policy export is intended to support transparency around active settings and governance behaviour. Where available, policy export helps users and policy owners understand the active configuration, the expected decision posture and the related governance setup.
Purpose of policy export
Policy export supports documentation, operational review and clearer internal communication about the configuration of the local governance layer.
Privacy implication
Policy export is intended to describe configuration and governance behaviour. It is not intended to turn user prompt content into a remote analytics dataset.
How scope and permissions are used
Trust-Prompt Plus is intended to operate on predefined supported AI websites. Any permissions used by the extension are intended to support the user-facing pre-send governance functionality of the product.
- Supported AI websites are used to enable the product where the user expects it to work.
- The first public version is designed around a defined supported-site scope.
- Permissions are not intended to create unrelated browsing surveillance.
When data may be shared
Trust-Prompt Plus does not intend to share prompt text with third parties for advertising, resale or unrelated analytics. Data may be shared only where needed for legitimate service operation, legal compliance or infrastructure support.
Website and hosting support
Standard website and infrastructure providers may process limited operational data necessary to run and secure the website.
Licensing or commercial administration
If licensing, payment or account administration is used, relevant providers may process the minimum necessary data for that purpose.
Legal or security reasons
Data may also be disclosed where required by law, legal process, fraud prevention, security incident handling or protection of rights.
Website-only technologies
The website may use technically necessary cookies or similar technologies required for basic operation, security, performance or lawful site administration. If analytics or marketing technologies are used on the website, they should be disclosed separately and, where required, used only with appropriate consent.
How long data is kept and how it is protected
Retention
Website logs and administrative data should be retained only for as long as necessary for security, legal compliance and service operation. Locally stored extension data remains in the user’s browser environment until it is removed, reset or overwritten.
Security
Trust-Prompt Plus uses reasonable technical and organisational measures to protect relevant service and website data. However, no system can guarantee absolute security in all circumstances.
Your privacy rights and contact options
Depending on the applicable law, including GDPR where relevant, users may have rights such as access, rectification, deletion, restriction, objection and data portability.
Additional information
You can also read general information on data protection rights through the European Commission.
Changes to this privacy policy
This privacy policy may be updated from time to time to reflect product changes, legal requirements or operational improvements. The current version should remain available on this page together with the latest update date.
Continue reading
The product page explains how Trust-Prompt Plus works as a local AI governance layer on supported AI websites. Use both pages together so that product explanation and privacy explanation remain consistent.