Privacy Policy
Last updated: February 25, 2026
Your privacy is important to us. This policy explains what data we collect, how we use it, and your rights regarding your information.
1. Information We Collect
We collect information you provide directly: account details (name, email), payment information (processed securely through Stripe), uploaded images and videos for generation purposes, and generation parameters and prompts. We also collect information automatically: device and browser information, IP address, usage patterns and feature interactions, generation history and metadata, and cookies for session management.
2. How We Use Your Information
We use your information to: provide and maintain the Service, including processing AI generations; manage your account, credits, and subscriptions; improve our models and generation quality; communicate service updates and relevant information; detect and prevent fraud or abuse; comply with legal obligations; and personalize your experience based on usage patterns.
3. Uploaded Content
Images and videos you upload for generation are processed by our AI systems and may be sent to third-party AI model providers (such as fal.ai, Replicate, and others) for processing. Uploaded content is temporarily stored during the generation process and may be retained for service improvement. You retain ownership of your uploaded content. We do not sell your uploaded content to third parties. You can request deletion of your uploaded content at any time.
4. Generated Content & Content Moderation
AI-generated content is stored in your account history for your convenience. Generation metadata (prompts, parameters, timestamps) is stored alongside outputs. Generated content may be used in aggregate, anonymized form for model improvement. If you participate in the Creator Program, watermarked content may be tracked across social platforms for view verification purposes. We employ automated content moderation systems to screen prompts and generated outputs for prohibited content, including child sexual abuse material (CSAM) and other illegal or harmful content. Flagged content may be reviewed, blocked, and reported to the appropriate authorities. Content moderation logs may be retained as necessary for legal compliance and safety purposes.
5. Data Sharing & Third Parties
We share data with: AI model providers (images/videos for processing only, under data processing agreements); payment processors (Stripe, for payment handling, under their DPA); cloud infrastructure providers (Cloudflare, for hosting and storage); authentication provider (Clerk, for account management); analytics services (anonymized usage data only). We maintain Data Processing Agreements (DPAs) with all third-party processors as required by GDPR. We do not sell your personal information. We may disclose information if required by law, court order, or to protect our rights and safety.
6. Data Security
We implement industry-standard security measures including: encryption of data in transit (TLS/SSL) and at rest; secure authentication through Clerk; regular security audits and monitoring; access controls and least-privilege principles. While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
7. Data Retention
Account data is retained for as long as your account is active. Generation history is retained according to your subscription tier. Payment records are retained as required by law (typically 7 years). Upon account deletion, personal data is removed within 30 days, except where retention is required by law. Anonymized, aggregate data may be retained indefinitely for analytics.
8. Your Rights
Depending on your jurisdiction, you may have the right to: access the personal data we hold about you; correct inaccurate personal data; request deletion of your personal data; object to or restrict processing of your data; data portability (receive your data in a machine-readable format); withdraw consent at any time where processing is based on consent. You can exercise your right to data deletion and data export directly from your account settings page. For other requests, contact us at [email protected].
9. Cookies
We use essential cookies for session management and authentication. We use analytics cookies to understand how the Service is used. When you first visit the Service, you will be presented with a cookie consent banner where you can choose to accept all cookies or limit to essential cookies only. You can change your cookie preferences at any time through the cookie settings link in the footer. We do not use third-party advertising cookies.
10. Children's Privacy
The Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a minor, we will take steps to delete that information promptly.
11. International Data Transfers
Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses where applicable. By using the Service, you consent to the transfer of your data to countries that may have different data protection laws.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service. Continued use of the Service after changes constitutes acceptance of the updated policy.
13. Contact Us
For questions or concerns about this Privacy Policy or our data practices, contact us at [email protected] or through our Support page. For EU residents, you may also contact your local data protection authority.
This privacy policy is effective as of the date stated above and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.