Data Protection & Privacy
Comprehensive information about how we protect your data, your rights, and our data deletion policies.
Request Your Data
Get a copy of all personal data we have about you in a portable format.
Delete Your Account
Permanently delete your account and all associated data.
Your Right to Data Deletion
You have the right to request the deletion of your personal data at any time. This right is protected under various privacy regulations including GDPR, CCPA, and other applicable laws.
What Gets Deleted
- Account Information: Email, name, profile details, and account settings
- Generated Content: All AI-generated images, text, and creative assets
- Uploaded Content: Images, brand guidelines, and other uploaded files
- Usage Data: Generation history, preferences, and analytics data
- Payment Information: Billing details and transaction history
- Communication Data: Support tickets, emails, and chat history
Deletion Process
Immediate Deletion
Account access is immediately revoked and personal data is marked for deletion
30-Day Grace Period
Data is permanently deleted within 30 days, with option to restore during this period
Permanent Deletion
All data is permanently removed from our systems and backups
Exceptions to Deletion
Some data may be retained for legal or regulatory purposes:
- Financial records required for tax and accounting purposes (7 years)
- Data required for legal proceedings or investigations
- Anonymized data used for service improvement (no personal identifiers)
- Data required to prevent fraud or abuse
Important Notice
Account deletion is irreversible. Please ensure you have backed up any important content before proceeding. If you have active subscriptions, they will be cancelled immediately.
How We Use Your Data
We use your data exclusively for providing and improving our services. Here's how different types of data are used:
Service Provision
- Account management and authentication
- AI content generation and processing
- Payment processing and billing
- Customer support and communication
- Feature personalization
Service Improvement
- AI model training and optimization
- Platform performance monitoring
- Bug detection and resolution
- Feature development and testing
- User experience optimization
AI Training and LLM Processing
We use your data for AI model training and LLM processing. This includes:
- LLM Processing: Your brand profiles, product information, and creative briefs are processed through Large Language Models (OpenAI, Google, Anthropic, etc.) to generate advertising materials
- AI Training: Anonymized and aggregated data is used to improve our AI models and generation capabilities
- Content Generation: Your business information is used to create personalized advertising content and brand-consistent materials
- Quality Improvement: We analyze usage patterns to enhance our AI generation quality and accuracy
- Opt-out Options: You can opt-out of AI training while still using LLM processing for content generation
Data Sharing and Third Parties
We do not sell your personal data. We only share data with:
- AI/LLM Providers: OpenAI, Google, Anthropic, and other LLM providers to process your brand profiles, product information, and creative briefs for advertising content generation
- Payment Processors: Stripe and Razorpay for secure payment processing
- Cloud Services: AWS for secure data storage and processing
- Analytics: Anonymous usage statistics for service improvement
- Legal Requirements: When required by law or to protect rights
Technical Security
- End-to-end encryption for all data transmission
- AES-256 encryption for data at rest
- Secure API authentication and authorization
- Regular security audits and penetration testing
- Multi-factor authentication for admin access
- Automated security monitoring and alerting
Organizational Security
- Comprehensive employee security training
- Strict access controls and role-based permissions
- Regular security policy reviews and updates
- Incident response procedures and team
- Vendor security assessments
- Compliance with industry security standards
Access and Control
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate information
- Right to Erasure: Delete your personal data
- Right to Portability: Export your data in a portable format
- Right to Object: Object to certain processing activities
- Right to Restriction: Limit how we process your data
Consent and Preferences
- Consent Withdrawal: Withdraw consent at any time
- Marketing Preferences: Control marketing communications
- AI Training Opt-out: Opt-out of AI model training
- Cookie Preferences: Manage cookie settings
- Notification Settings: Control email and push notifications
- Account Settings: Update profile and privacy settings
Contact Methods
Response Time
We will respond to your request within 30 days. For complex requests, we may extend this period by an additional 60 days with notification.
Required Information
To process your request efficiently, please provide:
- Your full name and email address
- Specific details about your request
- Any relevant account information
- Proof of identity (for sensitive requests)
Verification Required
For security reasons, we may need to verify your identity before processing certain requests, especially for data deletion or sensitive information access.
Privacy Regulations
- GDPR: General Data Protection Regulation (EU)
- CCPA: California Consumer Privacy Act
- LGPD: Brazilian General Data Protection Law
- PIPEDA: Canadian Privacy Law
- Other Local Laws: As applicable in your jurisdiction
Security Standards
- ISO 27001: Information Security Management
- SOC 2: Security and Availability Controls
- PCI DSS: Payment Card Industry Standards
- GDPR: Data Protection Requirements
- Industry Best Practices: Regular security assessments