1. Information We Collect

We collect the following categories of information: (a) Account Information — name, email address, and password hash when you create an account; (b) Service Usage Data — content orders, site configurations, publishing history, credit transactions, and AI model preferences; (c) Technical Data — IP address, browser type and version, device type, operating system, and general usage patterns; (d) Payment Data — transaction records, billing currency, and payment provider references (we do not store full credit card numbers); (e) Communication Data — support requests and correspondence with our team.

2. How We Use Your Information

Your information is used to: provide and maintain our AI content generation and publishing service; process credit purchases and payments; authenticate your identity and secure your account; send transactional notifications about your orders and account; analyze aggregated usage patterns to improve our service; detect and prevent fraud, abuse, or security incidents; comply with legal obligations. We do not use your data to train AI models and we do not build advertising profiles.

3. Information Sharing & Third-Party Processors

We do not sell, rent, or trade your personal information. We share data only with: (a) Payment Processors (Stripe, Iyzico, PayTR) — to process credit purchases securely; (b) AI Service Providers (OpenAI, Anthropic) — content generation requests are sent without personally identifying information; (c) Infrastructure Providers — cloud hosting and database services that process data on our behalf under strict data processing agreements; (d) Legal Authorities — when required by applicable law, regulation, or legal process. All third-party processors are contractually bound to protect your data and use it only for the specified purposes.

4. Data Retention

We retain your account data for as long as your account is active. Content generation records are retained for 12 months after creation. Payment records are retained for 7 years as required by tax and financial regulations. Technical logs (IP addresses, access logs) are retained for 90 days. When you delete your account, personal data is permanently removed within 30 days, except where retention is required by law.

5. Data Security

We implement industry-standard security measures including: encrypted data transmission using TLS 1.2+; secure password hashing with bcrypt; encryption of API keys and site credentials at rest; regular security audits and vulnerability assessments; role-based access controls with principle of least privilege; automated monitoring for suspicious activity. While we take reasonable precautions, no method of transmission or storage is 100% secure.

6. Your Rights

Depending on your jurisdiction, you may have the right to: access the personal data we hold about you; correct inaccurate or incomplete data; request deletion of your personal data; export your data in a portable format; object to or restrict certain processing activities; withdraw consent where processing is based on consent. To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. Cookies & Tracking

We use only essential cookies required for authentication, session management, and language preferences. We do not use third-party tracking cookies, advertising pixels, or analytics services that track individual users. For detailed information, see our Cookie Policy.

8. Children's Privacy

Our service is not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.

9. International Data Transfers

Your data may be processed in countries other than your country of residence, including countries within the European Economic Area and the United States. When we transfer data internationally, we ensure appropriate safeguards are in place through data processing agreements and standard contractual clauses.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on our platform at least 14 days before they take effect. Your continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related inquiries, data access requests, or complaints, please contact us at [email protected]. If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority.