PRIVACY POLICY

Effective Date: December 31, 2024 Last Updated: December 31, 2024

PLEASE READ THIS PRIVACY POLICY CAREFULLY. THIS PRIVACY POLICY DESCRIBES THE WAYS PRODUCTGENERATORAI (HEREINAFTER REFERRED TO AS "PRODUCTGENERATORAI," "WE," "OUR," OR "THE SERVICE PROVIDER") COLLECTS, STORES, USES, AND PROTECTS YOUR PERSONAL INFORMATION. BY ACCESSING OR USING OUR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS PRIVACY POLICY AND OUR TERMS OF SERVICE.

This Privacy Policy ("Policy") applies to all services, features, functions, and other aspects of our platform (collectively, the "Service") provided by ProductGeneratorAI, whether accessed through our website, mobile applications, APIs, or any other means. This Policy is legally binding and constitutes an integral part of our Terms of Service.

1. DEFINITIONS

For the purposes of this Privacy Policy:

"Personal Information" or "Personal Data" refers to any information relating to an identified or identifiable natural person ('Data Subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier.

"Processing" means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means.

"Data Controller" refers to ProductGeneratorAI, which determines the purposes and means of the Processing of Personal Data.

"Data Processor" means any natural or legal person, public authority, agency, or other body which Processes Personal Data on behalf of the Data Controller.

"User" or "You" refers to the individual accessing or using the Service, or any entity on behalf of which such individual is accessing or using the Service.

2. INFORMATION COLLECTION AND PROCESSING

2.1. Legal Basis for Processing

We Process your Personal Information on one or more of the following legal bases:

  • Performance of Contract: Processing is necessary for the performance of a contract to which you are party or in order to take steps at your request prior to entering into a contract;
  • Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject;
  • Legitimate Interests: Processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms;
  • Consent: You have given consent to the Processing of your Personal Information for one or more specific purposes.

2.2. Categories of Personal Information Collected

2.2.1. Information You Provide Directly

In the course of using the Service, we collect and Process the following categories of Personal Information that you provide directly:

  • Authentication Information:
    • Email address
    • Password (stored in encrypted format)
    • Multi-factor authentication credentials, where applicable
  • Profile Information:
    • Full name
    • Professional title or role
    • Profile picture, if provided
    • Biographical information, if provided
  • Financial Information:
    • Payment card information (processed securely through Stripe)
    • Billing address
    • Transaction history
    • Tax identification information, where required
  • Service Usage Information:
    • Images uploaded for AI processing
    • Text prompts and generation parameters
    • Output preferences and settings
    • Saved or favorited generations
  • Communication Data:
    • Support ticket contents
    • Customer service communications
    • Feedback and survey responses
    • Documentation of verbal communications

2.2.2. Information Collected Automatically

Through your interaction with the Service, we automatically collect and Process:

  • Device Information:
    • IP address and location data derived therefrom
    • Device identifiers and hardware specifications
    • Operating system type and version
    • Mobile device identifiers (where applicable)
  • Browser Information:
    • Browser type and version
    • Language preferences
    • Time zone settings
    • Plugin types and versions
  • Usage Data:
    • Access times and dates
    • Session duration and activity
    • Pages viewed and features used
    • Navigation patterns and interaction data
    • Click-stream data and scroll behavior
  • Performance Data:
    • Error logs and crash reports
    • Load times and performance metrics
    • API response times
    • System stability indicators

3. PURPOSES OF PROCESSING

We Process the collected Personal Information for the following specified purposes:

3.1. Service Operation and Delivery

  • Core Service Functionality:
    • User authentication and account management
    • Processing and generation of AI-powered images
    • Storage and retrieval of user content
    • Implementation of user preferences and settings
    • Processing of payments and subscriptions
  • Technical Service Delivery:
    • Load balancing and traffic optimization
    • Cache management and content delivery
    • System monitoring and maintenance
    • Security measures implementation

3.2. Service Enhancement and Development

  • Performance Optimization:
    • Analysis of service usage patterns
    • Identification of performance bottlenecks
    • Optimization of AI model parameters
    • Enhancement of generation quality
  • Product Development:
    • Research and development of new features
    • Testing of service improvements
    • Analysis of user feedback and behavior
    • Market research and competitive analysis

3.3. User Support and Communication

  • Customer Support:
    • Resolution of technical issues
    • Response to user inquiries
    • Processing of feature requests
    • Documentation of support interactions
  • Service Communications:
    • Delivery of essential service updates
    • Notification of security incidents
    • Communication of policy changes
    • Distribution of service newsletters

4. INFORMATION SHARING AND DISCLOSURE

We share and/or transfer your Personal Information with third parties under the following circumstances:

4.1. Third-Party Service Providers

  • Machine Learning and AI Processing:
    • Cloud computing providers for model hosting and execution
    • AI model training and optimization services
    • Image processing and generation services
    • Quality assurance and validation services
  • Infrastructure and Technical Services:
    • Cloud storage and hosting providers
    • Content delivery networks
    • Database management services
    • Security and authentication providers
  • Business Operations:
    • Payment processing services (Stripe)
    • Customer support platforms
    • Analytics and monitoring services
    • Communication service providers

4.2. Legal Requirements and Business Transfers

  • Legal Obligations:
    • Compliance with court orders and legal processes
    • Response to law enforcement requests
    • Protection of legal rights and interests
    • Prevention of fraud and illegal activities
  • Business Transfers:
    • Merger, acquisition, or sale of assets
    • Corporate restructuring or reorganization
    • Assignment of contractual rights
    • Transfer of customer relationships

5. DATA SECURITY MEASURES

We implement and maintain appropriate technical and organizational security measures designed to protect your Personal Information against unauthorized or unlawful Processing and against accidental loss, destruction, or damage. These measures include:

  • Technical Security:
    • End-to-end encryption of data transmission using TLS 1.3
    • Advanced encryption of stored data at rest
    • Regular security assessments and penetration testing
    • Multi-factor authentication implementation
    • Automated threat detection and prevention systems
  • Organizational Security:
    • Access control and authentication protocols
    • Employee security training and awareness programs
    • Data handling procedures and policies
    • Incident response and recovery plans
    • Regular security audits and compliance reviews

WHILE WE IMPLEMENT REASONABLE SECURITY MEASURES, NO METHOD OF TRANSMISSION OVER THE INTERNET OR METHOD OF ELECTRONIC STORAGE IS 100% SECURE. WE CANNOT GUARANTEE THE ABSOLUTE SECURITY OF YOUR PERSONAL INFORMATION. BY USING THE SERVICE, YOU ACKNOWLEDGE AND ACCEPT THESE INHERENT RISKS.

6. DATA RETENTION AND DELETION

6.1. Retention Period

We retain your Personal Information for as long as necessary to:

  • Provide and maintain the Service as requested;
  • Comply with our legal obligations;
  • Resolve disputes and enforce our agreements;
  • Protect our legitimate business interests.

6.2. Deletion Procedures

Upon receipt of a valid deletion request to [email protected], we will:

  • Account Deletion:
    • Permanently delete your account credentials
    • Remove personally identifiable information
    • Disconnect all associated services
    • Archive necessary transaction records
  • Data Retention Exceptions:
    • Anonymized statistical data
    • Aggregated performance metrics
    • Legal compliance records
    • Backup archives (subject to rotation)

7. YOUR RIGHTS AND CHOICES

7.1. Data Subject Rights

Subject to applicable law, you may have the following rights regarding your Personal Information:

  • Right to Access:
    • Obtain confirmation of Personal Information Processing
    • Access your Personal Information
    • Receive copies of your Personal Information
    • Understand the Processing purposes
  • Right to Rectification:
    • Correct inaccurate Personal Information
    • Complete incomplete Personal Information
    • Update outdated Personal Information
  • Right to Erasure:
    • Request deletion of Personal Information
    • Withdraw Processing consent
    • Object to unnecessary Processing
  • Right to Restriction:
    • Limit Processing activities
    • Temporarily suspend Processing
    • Preserve Personal Information
  • Right to Data Portability:
    • Receive Personal Information in structured format
    • Transmit Personal Information to another controller
    • Request direct controller-to-controller transmission

7.2. Exercise of Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within the timeframe required by applicable law. We may need to verify your identity before processing your request.

8. INTERNATIONAL DATA TRANSFERS

Your Personal Information may be transferred to, stored at, and Processed in countries other than your country of residence. These data transfers are necessary to provide the Service. We ensure that any such transfers comply with applicable data protection laws and that appropriate safeguards are in place.

  • Transfer Mechanisms:
    • Standard contractual clauses
    • Adequacy decisions
    • Binding corporate rules
    • Other legal transfer mechanisms
  • Transfer Safeguards:
    • Encryption during transfer
    • Access controls and monitoring
    • Data processing agreements
    • Regular compliance audits

9. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this Privacy Policy at any time. We will notify you of any material changes by:

  • Posting the updated Policy on our website;
  • Updating the "Last Modified" date at the top of this Policy;
  • Providing notice through the Service interface;
  • Sending an email notification where appropriate.

Your continued use of the Service after the effective date of any modifications to the Privacy Policy constitutes your acceptance of such modifications. If you do not agree to the modified terms, you must discontinue your use of the Service.

10. CONTACT INFORMATION

If you have any questions, concerns, or requests related to this Privacy Policy or our privacy practices, please contact us at:

ProductGeneratorAI

Email: [email protected]

We will respond to your inquiry as soon as reasonably possible and within the timeframe required by applicable law.

THIS PRIVACY POLICY WAS LAST UPDATED ON DECEMBER 31, 2024.