Who we are: VFX AI, Inc., 228 Hamilton Avenue, Palo Alto, CA 94301
How to reach us: privacy@vfxai.com • support@vfxai.com
Goes into effect: November 15, 2024
Who we are: VFX AI, Inc., 228 Hamilton Avenue, Palo Alto, CA 94301
How to reach us: privacy@vfxai.com • support@vfxai.com
We run an AI video platform. You bring inputs (uploads, prompts), we return outputs (generated/edited media).
Your uploads and outputs are yours.
We don't train our foundation models on your projects by default. You can opt in to help improve the system; you can opt out later.
We use common web tech (cookies/SDKs) to make things work and understand usage.
You can ask us to access, delete, correct, or export your info.
We don't sell your personal data.
To run your account: name, email, password hash, company/team, role.
To take payments: billing name/address, tax IDs, last 4 digits of card (the full card stays with our processor).
To make the app work: IP address, device/OS/browser, language/time zone, crash logs, telemetry, session IDs.
To power core features: the media you upload, your prompts/captions/timelines, and the outputs we render.
To stay in touch: support emails/chats, in-product messages, release notes, optional marketing emails.
To integrate with tools you connect: account handle/ID and authorized data from platforms like YouTube/Drive (only if you connect them).
To improve reliability & safety: aggregated analytics, error signals, abuse/fraud indicators.
Provide the service: authenticate you, render/edit/export, store projects, collaborate, run the API.
Bill you: subscriptions, invoices, receipts, fraud checks.
Support you: respond to tickets, fix bugs, send important service notices.
Make the product better & safe: measure performance, fight spam/abuse, test new features.
Tell you what's new: product updates; marketing only with consent where required.
Comply with law: security, audits, legal requests, dispute handling.
Training default: No, by default. We don't use your uploads, prompts, or outputs to train or fine-tune our foundation models unless you explicitly opt in (or your enterprise contract says otherwise).
What we may still analyze: de-identified, aggregate telemetry (e.g., feature usage counts, error rates) to keep things fast and stable.
Provenance: some outputs may include visible or invisible watermarks/provenance for transparency and misuse deterrence.
Third-party AI: when a feature relies on a third-party model or cloud runtime, we bind them to strict confidentiality and security terms. We'll say so in-product where relevant.
We don't sell your personal data. We share limited info with:
Service providers/processors: hosting/CDN, storage/transcoding, analytics/telemetry, email/SMS, support desk, logging/monitoring, security/fraud, and similar operations.
Payment processor: currently Stripe handles payment credentials directly.
Integrations you enable: platforms you connect (e.g., publishing to your channel).
Your collaborators/admins: if you invite teammates or your org manages your seat.
Legal/compliance: if the law requires it or to protect people, property, or our platform.
Corporate change: if we merge/sell assets, your data may transfer with notice.
We also share aggregated or de-identified stats that don't identify you.
We use essential cookies (security, login), functional (remember settings), and analytics/performance cookies/SDKs.
We may use advertising/retargeting only if you've consented where required; you can opt out in our Cookie Settings and your browser/device controls.
Global opt-outs: aboutads.info/choices, optout.networkadvertising.org, youronlinechoices.eu.
We don't respond to browser "Do Not Track" signals right now.
We use reasonable administrative, technical, and organizational measures: encryption in transit, access controls, network protections, monitoring, and least-privilege practices. No system is perfect—please use a strong password and protect your devices.
We keep personal data only as long as needed for the service and legitimate business/legal needs (tax, fraud prevention, disputes).
Examples:
Backups age out on a schedule.
Our services aren't for children under 16. If you think a child gave us personal data, email privacy@vfxai.com and we'll act promptly.
You can:
How: email privacy@vfxai.com. We'll verify it's you (or your authorized agent) and respond within the legal window. If we must decline (e.g., a legal exception applies), we'll explain and tell you how to appeal.
If you live in a state with a comprehensive privacy law (e.g., CA (CPRA), VA (VCDPA), CO, CT, UT), you may have rights to know/access, delete, correct, portability, opt out of certain processing (like targeted ads or profiling with significant effects), and no discrimination for using your rights.
Sale/Share: we do not sell personal data, and we don't "share" for cross-context behavioral advertising without offering required opt-outs.
Sensitive data: if we handle any, we use it only for permitted, limited purposes and not to infer characteristics.
Use the methods in §11 to exercise these rights. California "Shine the Light" requests can go to privacy@vfxai.com.
Controller: VFX AI, Inc., USA.
If your data moves out of your region (e.g., EEA/UK/CH → U.S.), we use Standard Contractual Clauses and add safeguards as needed.
If you're in the EEA/UK/CH, you may have rights to access, rectify, erase, restrict, port, or object; where we rely on consent, you can withdraw it anytime (without affecting prior lawful processing). You can also complain to your local Data Protection Authority.
Contact privacy@vfxai.com for transfer details or to exercise rights.
If we make a material change, we'll let you know (banner, in-app message, or email) and update the date at the top. Continuing to use the service after the change takes effect means you accept the update.
VFX AI, Inc.
228 Hamilton Avenue, Palo Alto, CA 94301
Privacy: privacy@vfxai.com
Support: support@vfxai.com