Privacy Policy

Last Updated: 2026-01-28T00:00:00.000Z

1. Introduction

This Privacy Policy describes how we collect, use, and protect your personal information when you use our services, including digital content purchases, team collaboration, file storage, and related features.

2. Information We Collect

2.1 Account Information

  • Email address
  • Authentication credentials (managed by Better Auth)
  • User profile information

2.2 Payment Information

  • Payment method details (processed securely through Stripe)
  • Transaction history
  • Digital content purchase records

2.3 Usage Data

  • Team membership and collaboration activities
  • File uploads and storage usage
  • Digital content holdings and transaction history
  • Invitation and referral activities

2.4 Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Usage patterns and preferences

2.5 Third-Party Sources

  • Authentication Providers: Information from OAuth providers (e.g., Google) used by Better Auth to verify your identity.
  • Payment Processors: Transaction status and subscription details from Stripe (we do not store your full payment card details).
  • Partner Records: Transaction records or payment-related information shared by our business partners and affiliates.

3. How We Use Your Information

3.1 Service Provision

  • Process digital content purchase transactions
  • Manage user accounts and authentication
  • Enable team collaboration features
  • Provide file storage and management
  • Track digital content holdings

3.2 Communication

  • Send transaction confirmations
  • Provide service updates and notifications
  • Respond to support requests

3.3 Security, Compliance, and Abuse Prevention

  • Identify, prevent, and stop users who violate our Terms of Service.
  • Prevent fraudulent, unauthorized, or illegal use of our services (including malicious AI content generation).
  • Comply with applicable laws and regulations (including UK GDPR and other legal obligations).
  • Cooperate with government agencies or public authorities when legally required or when necessary to protect life, safety, or property.

4. Data Storage

Your data is stored securely in Convex databases. We implement industry-standard security measures to protect your information from unauthorized access, disclosure, or destruction.

5. Third-Party Services

5.1 Stripe

Payment processing is handled by Stripe. Your payment information is subject to Stripe’s privacy policy. We do not store your full payment card details.

5.2 Convex

Our backend infrastructure uses Convex for data storage and processing. Convex’s privacy practices apply to data stored on their platform.

6. Your Rights (UK GDPR)

Under the UK General Data Protection Regulation (UK GDPR), you have specific rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of any inaccurate or incomplete data.
  • Right to Erasure (‘Right to be Forgotten’): Request deletion of your data where certain conditions are met.
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Data Portability: Request a transfer of your data to another service.
  • Right to Object: Object to the processing of your data in certain circumstances.
  • Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.

To exercise these rights, please contact us through the support channels provided in the application. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

7. Fees for Disclosure

While access to personal data is generally free, we reserve the right to charge a reasonable fee for administrative costs if your request is clearly unfounded, repetitive, or excessive. Any applicable fee will be communicated to you before processing the request.

7. Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations. Transaction records may be retained for longer periods as required by law.

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session
  • Remember your preferences
  • Analyze service usage

You can control cookie settings through your browser preferences.

9. Children’s Privacy

Our services are not intended for users under the age of 18. We do not knowingly collect personal information from children.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your data.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the “Last Updated” date.

12. Contact Us

If you have questions about this Privacy Policy, please contact us through the support channels provided in the application.