p2d, a product of Sum28 · California, USA · Effective: July 3, 2026
This policy explains what p2d (“we”, operated by Sum28) collects when you use the service to turn listing photos and your notes into marketing copy, how we use it, and your choices.
What we collect
Account — your email and a hashed password (we never store your password in plain text), plus a record of your acceptance of our Terms of Service (the date and version you agreed to).
Inputs you provide — the listing photos you upload, any text you paste (fact sheets, notes, prior listings), and structured facts you confirm (architect, selling points, etc.).
Generated content — the descriptions we produce and your edits/refinements, kept in your history so you can return to them.
Feedback — if you send in-app feedback, the text and any optional voice memo you record (audio). These are stored with your account until you delete them or your account, and a copy (including the audio attachment and the app/device info you include) is emailed to our support inbox so we can respond.
Push notifications — if you enable them, your device’s Apple push token, so we can tell you when your copy is ready or credits are returned.
Usage & billing — credits, generations, refinements, and plan, plus a Stripe customer identifier that links your account to your Stripe billing record. Payments are processed by Stripe; we never see or store your card number.
Anti-abuse signals — salted, one-way hashes of your IP address and a device identifier (the rate-limit records themselves never store the raw values), used to rate-limit the free preview and prevent fraud.
Server logs — like nearly every online service, our servers keep standard access logs (including IP addresses and requested pages) for security and operations; they are retained for about 30 days and then deleted.
What we deliberately do NOT keep
Your photos are processed in memory and are not stored on our servers after we extract the visual features. We keep the derived feature list and the photo file names (so features can be traced to their source shots), not the images themselves.
Raw text you paste is not retained. We extract the factual selling points you then confirm, and discard the original pasted text.
Drafts stay on your device. Drafts you compose in the iOS app (photos and fields) stay on your device until you submit them.
This minimizes the data we hold about you and the listings you work on.
How we use your information
To provide the service — read photos, generate and refine copy, run automated grounding checks, and screen it for potentially problematic fair-housing language (automated assistance to support your own review — not legal advice or a compliance determination).
To run your account, process payments, provide support, and prevent abuse and fraud.
To improve the service — we use de-identified, aggregated usage data and the AI outputs the service generates to evaluate and calibrate quality. We do not use your inputs (photos, pasted text, confirmed facts) or personal information to train AI models, our AI providers (Anthropic, OpenAI) process your content under API tiers that do not use it to train their models, and we do not sell your data.
Push notifications are optional: iOS asks for your permission first, we use them only for service updates about your account and generations (never marketing), and you can turn them off at any time in iOS Settings. Push tokens are deleted when you delete your account.
Cookies
We use exactly two cookies, both essential: a signed session cookie that keeps you logged in, and a signed device cookie (kept about one year) that helps us rate-limit the free preview and prevent abuse. We use no analytics cookies, no advertising cookies, and no third-party trackers, and we do not respond to cross-site tracking because we do none.
Service providers (sub-processors)
To operate, we share data with vetted providers strictly to deliver the service:
Anthropic and OpenAI — to process photos and text and generate copy. We use API tiers that do not use your data for model training.
CoreLogic (Trestle) — to look up listing facts you request by MLS # or address.
Stripe — to process payments.
Amazon Web Services (AWS) — cloud hosting and databases (United States) and delivery of transactional email (e.g., your “copy is ready” email).
Apple — delivery of push notifications to your iOS device.
Google Fonts — your browser loads the typefaces on our web pages from Google's servers (no cookies are set; Google receives the standard web request, including your IP address).
Retention
We keep your generated listings and account data until you delete them or your account, and feedback (including any voice memos) until you delete your account or ask us to remove it. Photos and pasted source text are discarded after processing, as described above. When you delete your account we erase your listings, stored feedback and voice memos, push tokens, and extraction records, and cancel any active subscription (completed manually if a payment-processor error prevents it). Copies of feedback previously delivered to our support inbox are retained as ordinary business correspondence. One exception: our anti-abuse records — salted one-way hashes of IP and device identifiers that contain no readable personal information — are retained in de-identified form so free-preview limits cannot be reset by deleting and recreating an account. Payment records are retained by Stripe and by us as required by law.
Your rights
You can delete your account and its data at any time in the iOS app (Account → Delete account). This erases your listings and history, feedback (including voice memos), push tokens, and extraction records, and cancels any active subscription. For access, correction, or a portable export of your data — or deletion if you cannot use the app — email us at info@sum28.com and we will fulfill your request.
We honor the substance of California’s CCPA/CPRA rights for all users as a matter of policy, wherever you live: the right to know what we collect, to delete it, to correct it, and not to be discriminated against for exercising these rights. We do not sell your personal information and do not share it for cross-context behavioral advertising, so there is nothing to opt out of. Wherever you are located, we honor equivalent access, correction, deletion, and portability rights on request.
Security
We protect your data with encryption in transit and access controls; passwords are stored only as salted PBKDF2 hashes, and our databases are encrypted at rest. Our servers and databases are hosted in the United States (AWS, US-West). Card data is handled by Stripe under PCI-DSS. No system is perfectly secure, but we work to safeguard your information.
Children
p2d is a professional tool for real-estate agents and is not directed at anyone under 18.
Changes
We may update this policy; we’ll post the new effective date and, for material changes, notify you.