Back to home

Privacy Policy

How ArtCreate AI collects, uses, shares, and protects personal data.

Last updated: 2026-07-11

This Privacy Policy explains how the operator of ArtCreate AI ("ArtCreate AI," "we," "us," or "our") handles personal data when you use our website, creative tools, AI Agent, account area, APIs, and related services (the Service).

The legal name, address, and contact details of the contracting operator are shown in the checkout flow, account area, or other notices made available for your region. You can also contact us through the Support Center.

1. Data we collect

Depending on how you use the Service, we may process:

  • Account data: name, email address, profile image, authentication identifiers, account settings, language, and security events.
  • Creative content: prompts, uploaded images, audio or video, generation parameters, model choices, AI Agent instructions, task steps, outputs, and related history.
  • Usage and device data: IP address, browser and device information, referral pages, timestamps, feature interactions, logs, and diagnostic data.
  • Transaction data: plan, credits, order amount, currency, invoices, payment status, and provider transaction identifiers. Payment providers process full payment credentials; we do not normally receive or store complete card numbers.
  • Support data: tickets, messages, attachments, feedback, and other information you choose to send us.
  • Cookie and similar-technology data: essential session and preference data, plus analytics data where those features are enabled. See our Cookie Policy.

Please do not upload confidential information or personal data that is unnecessary for your creative task.

2. How we use data

We use data to:

  • provide accounts, generations, long-running Agent runs, media history, storage, downloads, subscriptions, credits, and support;
  • route requests to the selected AI provider and return results;
  • process payments, prevent fraud, protect accounts, enforce usage limits, and investigate abuse;
  • maintain, debug, measure, and improve the reliability and usability of the Service;
  • communicate service, billing, security, and policy updates; and
  • comply with law and enforce our agreements.

Where applicable, our legal bases include performing a contract, complying with legal obligations, protecting legitimate interests such as security and service improvement, and consent where required.

ArtCreate AI does not use private prompts, uploads, or outputs to train its own foundation models unless we clearly disclose that use and obtain any consent required by law. A selected third-party model provider may process content under its own terms and data controls; review any provider information shown in the product before submitting sensitive material.

3. When we share data

We may share the minimum data needed with:

  • AI inference providers that process prompts, reference files, parameters, and outputs;
  • hosting, database, storage, CDN, security, and monitoring providers that operate the Service;
  • payment, invoicing, and fraud-prevention providers that complete transactions;
  • authentication, email, analytics, and customer-support providers where those integrations are enabled;
  • professional advisers, authorities, or counterparties when required by law, to protect rights and safety, or as part of a legitimate business transaction.

We do not sell personal data for money. If a law treats some analytics or advertising disclosures as a "sale" or "sharing," we will provide the controls required for the affected users.

4. International transfers

Our providers and users may be located in different countries. When personal data is transferred internationally, we use safeguards required by applicable law, such as approved contractual clauses or an adequacy mechanism where available.

5. Retention

We keep data only as long as reasonably needed for the purposes above. Retention depends on the data type, account status, product settings, legal obligations, dispute and fraud-prevention needs, and backup cycles. You should download important outputs; the Service is not a permanent archive.

When data is deleted, residual copies may remain temporarily in backups or be retained where law, security, fraud prevention, payment records, or dispute resolution requires it.

6. Security

We use administrative, technical, and organizational measures designed to protect data, including access controls and transport encryption where appropriate. No online service is completely secure, so use a strong unique password, protect your account, and notify Support if you suspect unauthorized access.

7. Your choices and rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to, or obtain a copy of personal data, withdraw consent, or appeal a decision. You may also update certain profile information, manage subscriptions, or delete content through the account area.

Submit a request through the Support Center. We may verify your identity and may retain data where an exception or legal obligation applies. You may also complain to your local data-protection authority.

8. Children

The Service is not directed to children. You must be at least 18 years old, or the age of legal majority where you live, unless the Service expressly offers a supervised experience permitted by law. Do not submit personal data about a child without the authority and consent required by law.

9. Changes

We may update this policy as the Service, providers, or law changes. We will post the revised date and provide additional notice when a material change requires it. Your continued use after the effective date is subject to the updated policy, but we will seek consent where the law requires consent for a new use.

10. Contact

For privacy questions or requests, use the Support Center. The operator identity and any region-specific privacy contact are provided in the contracting or account information available to you.