Privacy Policy for Anime AI Me
Last Updated: March 26, 2024
This Privacy Policy explains how Anime AI Me ("we," "our," or "us") collects, uses, and protects your information when you use our image-generation application (the "App"). By using the App, you agree to this Policy.
1. Information We Collect
| Category | Details | Purpose |
|---|---|---|
| Account Data | Email address or mobile number supplied at sign-up | Access control, authentication |
| Payment Data | Card details handled by Stripe only (we receive a tokenised reference, not the card number) | Credit purchases & refunds |
| User Content | • Reference photos you upload • Generated images/avatars | Rendering requested images; display to you |
| Usage Data | App interactions, device & log information, performance metrics, error reports | Debugging, analytics, fraud prevention |
| Cookies / Local Storage | Store unauthenticated users reference photos in local storage on your browser | Improved UX, session continuity |
2. How We Use Data
- Create, authenticate, and maintain your account.
- Process payments via Stripe; we never store raw card data.
- Generate avatars through the OpenAI Images API based on your content and chosen style. We do not use your photos to train any AI models.
- Diagnose crashes, prevent abuse, and improve performance through aggregated analytics.
- Optional marketing (e-mail updates, feature announcements). We will only send these with your explicit consent and provide an opt-out link in every message.
3. Sharing & Disclosure
| Recipient | Why | Safeguards |
|---|---|---|
| Stripe | Payment processing | PCI-DSS compliant; see Stripe Privacy Policy |
| OpenAI | Image generation | Data sent over TLS; retained per OpenAI policy (currently ≤30 days for abuse monitoring) |
| Supabase | Cloud database & object storage | AES-256-at-rest encryption & TLS in-transit |
We do not sell or rent your personal data. We may disclose information if required by law or to defend legal rights.
4. Retention
| Data Type | Retention Rule |
|---|---|
| Photos & Avatars | Deleted immediately when you delete them in-app or delete your account. |
| Account Data | Kept while you hold an active account + up to 30 days for backup rotation. |
| Usage Logs | Aggregated after 90 days; raw logs purged within 12 months. |
5. Your Rights
Depending on your jurisdiction, you may: access, correct, export, or delete your personal data; object to or restrict processing; and withdraw consent. Submit requests at privacy@betterlate.dev (response within 30 days).
6. Security
- TLS 1.2+ for all network traffic
- AES-256 at rest in Supabase buckets & Postgres tables
- Principle-of-least-privilege API keys
- Regular penetration tests & dependency patching
No system is 100% secure, but we follow industry best practices to minimise risk.
7. International Transfers
If you reside outside the United States, your data may be processed there or in other countries. We rely on:
- European users: Standard Contractual Clauses (SCCs) with our subprocessors.
- UK users: International Data Transfer Addendum.
- California users: We comply with the CCPA/CPRA and do not sell personal data.
8. Children
The App is not directed to children under 13. We do not knowingly collect data from children. If we learn we have, we will delete it promptly to comply with COPPA.
9. Changes to This Policy
We will post any material change here and notify you in-app or by e-mail 14 days before it takes effect. Continued use after that date constitutes acceptance.
10. Contact
Questions or requests? E-mail privacy@betterlate.dev