PromptVid
PromptVid

Privacy Policy

Last Updated: September 1, 2025

Company: PromptVid

Website: https://PromptVid.site

Email: inbox@PromptVid.site

1. Introduction

PromptVid ("we," "us," "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

Key Points:

  • We collect minimal data necessary to provide the Service
  • We use industry-standard security measures
  • We do not sell your personal data
  • You have rights to access, modify, and delete your data

2. Information We Collect

2.1 Information You Provide

Account Information:

  • Email address (required)
  • Name (optional)
  • Company name (optional)
  • Password (hashed and encrypted)

Payment Information:

  • Processed entirely by Paddle.com (our payment processor)
  • We do NOT store credit card information
  • Paddle collects: billing address, payment method, transaction history

Usage Information:

  • Video URLs you submit for analysis (we do NOT store the video files themselves)
  • Generated prompt results
  • Analysis history and timestamps
  • Account activity and preferences
  • Feature usage patterns

We do NOT collect or store:

  • Actual video files or video content
  • Downloaded copies of analyzed videos
  • Video thumbnails or frames (beyond what's necessary for temporary analysis)
  • Private or password-protected content

2.2 Automatically Collected Information

Technical Data:

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Referral URLs
  • Pages visited and time spent

Cookies and Tracking:

  • Session cookies (essential for Service functionality)
  • Analytics cookies (with your consent)
  • See our Cookie Policy

2.3 Information from Third Parties

From Paddle (Payment Processor):

  • Transaction success/failure status
  • Subscription status
  • Geographic location (for tax compliance)

From Video Platforms:

  • Publicly available metadata from video URLs you submit (title, description, duration, etc.)
  • We do NOT scrape, download, or store actual video files
  • We access videos via platform APIs or public URLs for analysis only
  • Video content is processed by third-party AI services and not stored by us
  • Analysis is performed in real-time and video data is not retained after processing

3. How We Use Your Information

3.1 To Provide the Service

  • Process video analysis requests
  • Generate AI prompts using third-party AI services
  • Manage your account and subscription
  • Send service-related communications
  • Provide customer support

3.2 To Improve the Service

  • Analyze usage patterns (aggregated and anonymized)
  • Monitor Service performance and reliability
  • Develop new features and improvements
  • Conduct research and analytics

3.3 For Business Operations

  • Process payments through Paddle
  • Comply with legal obligations
  • Prevent fraud and abuse
  • Enforce our Terms of Service
  • Resolve disputes

3.4 Marketing (With Your Consent)

  • Send promotional emails about new features
  • Share relevant updates and offers
  • You can opt-out anytime via email preferences

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), UK, and Switzerland:

We process your data based on:

  • Contract Performance: To provide the Service you subscribed to
  • Legitimate Interests: To improve our Service and prevent abuse
  • Consent: For marketing communications and non-essential cookies
  • Legal Obligation: To comply with tax, accounting, and legal requirements

5. Data Sharing and Disclosure

5.1 Service Providers

We share data with trusted third parties who help us operate:

AI Processing Services:

  • Video URLs and metadata for AI analysis
  • Subject to third-party terms and privacy policies
  • We use enterprise-grade AI services with industry-standard security
  • Video content is processed temporarily and not permanently stored by AI providers

Paddle.com (Payment Processing):

  • Payment and billing information
  • Subject to Paddle's Privacy Policy
  • Paddle is our Merchant of Record and handles all payment data

Cloud Infrastructure:

  • Data hosting and application services
  • Data stored in secure, certified data centers
  • Industry-standard encryption and security measures

Analytics:

  • Anonymized usage statistics and performance monitoring
  • No personally identifiable information shared for analytics

5.2 We Do NOT:

  • Sell your personal data to third parties
  • Share your data for third-party marketing
  • Provide your email to advertisers

5.3 Legal Disclosures

We may disclose information if required to:

  • Comply with legal obligations (subpoenas, court orders)
  • Protect our rights and property
  • Prevent fraud or security threats
  • Protect user safety

5.4 Business Transfers

In the event of a merger, acquisition, or sale, user data may be transferred. We will notify users of any ownership changes.

6. Data Retention

Account Data:

  • Retained while your account is active
  • Deleted within 90 days after account termination (unless required by law)

Generated Prompts:

  • Stored for the duration of your subscription
  • Available for 30 days after subscription cancellation (then permanently deleted)
  • You can export your data before cancellation
  • Deleted prompts cannot be recovered

Video URLs and Analysis History:

  • Retained while your account is active
  • Deleted within 90 days after account termination (unless required by law)
  • You can request early deletion at any time

Analytics Data:

  • Aggregated data retained indefinitely (anonymized)
  • Personal identifiers removed after 26 months

Payment Records:

  • Retained by Paddle per legal requirements (typically 7 years)
  • We retain transaction IDs for reconciliation (7 years)

7. Data Security

7.1 Security Measures

We implement industry-standard security practices:

  • Encryption: All data transmitted via HTTPS/TLS
  • Database Encryption: Data encrypted at rest
  • Access Controls: Role-based access to systems
  • Authentication: Secure password hashing (bcrypt/Argon2)
  • Monitoring: 24/7 security monitoring and alerts
  • Regular Audits: Security reviews and penetration testing

7.2 Your Responsibilities

  • Use strong, unique passwords
  • Enable two-factor authentication (if available)
  • Keep your account credentials confidential
  • Report suspicious activity immediately

7.3 Data Breach Notification

In the unlikely event of a data breach:

  • We will notify affected users within 72 hours
  • Notification will include nature of breach and steps taken
  • We will comply with all applicable breach notification laws

8. Your Privacy Rights

8.1 All Users Have the Right To:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate or incomplete data
  • Deletion: Request deletion of your account and data
  • Export: Download your data in portable format (JSON/CSV)
  • Objection: Opt-out of marketing communications

8.2 Additional Rights for EEA/UK Users (GDPR):

  • Right to Restriction: Limit how we use your data
  • Right to Portability: Receive data in machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing at any time
  • Right to Complain: Lodge complaint with supervisory authority

8.3 Additional Rights for California Users (CCPA):

  • Right to Know: What personal information we collect
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of data sales (we don't sell data)
  • Right to Non-Discrimination: Equal service regardless of privacy choices

8.4 How to Exercise Your Rights

9. International Data Transfers

9.1 Data Storage Locations

  • Data is stored in secure data centers with industry-standard protections
  • We use reputable cloud infrastructure providers

9.2 For EEA/UK Users

Data may be transferred outside the EEA for processing. We ensure adequate protections through:

  • Standard Contractual Clauses (SCCs)
  • GDPR-compliant service providers
  • Appropriate safeguards per GDPR Article 46

9.3 Third-Party Transfers

  • AI services: Certified under international data transfer frameworks
  • Payment processing: Compliant with international data transfer regulations
  • All transfers comply with applicable data protection laws

10. Children's Privacy

Our Service is NOT intended for users under 18 years old.

  • We do not knowingly collect data from children under 18
  • If we discover we have collected data from a minor, we will delete it immediately
  • Parents/guardians can contact us to request deletion of minor's data

11. Contact Information

For Privacy Questions or Requests:

Email: inbox@PromptVid.site

Website: https://PromptVid.site

Response Time: Within 30 days

Document Version History:

v1.0 - September 1, 2025 - Initial publication

By using PromptVid, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

← Back to Home