Privacy Policy for Faceless Shorts

Effective Date: January 6, 2025

1. General Provisions

Faceless Shorts ("we", "our", "us") respects your privacy and is committed to protecting your personal data. This privacy policy will inform you as to how we look after your personal data when you visit our website and tell you about your privacy rights and how the law protects you.

This privacy policy applies to all information collected by Faceless Shorts through our website, services, and applications. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us when you:

  • Create an account (name, email address, password)
  • Make a purchase or payment (billing information, payment details)
  • Use our video generation services (scripts, images, audio files)
  • Communicate with us (support tickets, feedback, inquiries)
  • Subscribe to our newsletter or marketing communications
  • Connect with social media accounts (with your authorization)

2.2 Account Information

When you create an account, we collect:

  • Registration information (email address, username, password)
  • Profile information (display name, avatar, preferences)
  • Account activity data (login history, usage patterns)
  • Credits and subscription details

2.3 Payment Information

For payment processing, we collect:

  • Billing address and contact information
  • Payment method details (processed securely through third-party payment processors)
  • Transaction history and invoice information

Important: We do not store your complete credit card information. All payment transactions are processed through secure third-party payment processors (Creem) that comply with PCI-DSS standards.

2.4 Content and Project Data

When using our video generation services, we collect:

  • Video scripts and text content you provide
  • Uploaded images, audio files, and media assets
  • Generated video projects and configurations
  • AI-generated content (scripts, images, audio, videos)

2.5 Automatically Collected Information

We automatically collect certain information when you use our services:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages visited, features used, time spent, click patterns
  • Log Data: Access times, referring URLs, search queries
  • Cookies and Tracking Technologies: Session IDs, preferences, analytics data

3. How We Use Your Information

We use the collected information for various purposes:

3.1 Service Provision

  • To provide, maintain, and improve our video generation services
  • To process your requests and deliver video projects
  • To manage your account and subscription
  • To generate AI content based on your inputs
  • To store and manage your media files

3.2 Payment Processing

  • To process payments and subscriptions
  • To send invoices and receipts
  • To manage credits and billing inquiries
  • To prevent and detect fraudulent transactions

3.3 Communication

  • To send you transactional emails (account updates, payment confirmations)
  • To respond to your inquiries and support requests
  • To send important notices about service changes
  • To provide technical support and troubleshooting assistance

3.4 Marketing (With Consent)

  • To send promotional emails about new features and offers (with your consent)
  • To personalize your experience based on your preferences
  • To recommend features and content based on your usage patterns

3.5 Analytics and Improvement

  • To analyze usage patterns and improve our services
  • To develop new features and optimize performance
  • To conduct research and development activities
  • To measure the effectiveness of our marketing campaigns

3.6 Legal and Security

  • To comply with legal obligations and regulations
  • To enforce our Terms and Conditions
  • To protect our rights, property, and safety
  • To prevent fraud, abuse, and security threats
  • To investigate and respond to violations of our policies

3.7 Legal Basis for Processing (GDPR)

For users in the European Economic Area, we rely on the following legal bases:

  • Contract Performance: To provide services under our user agreement
  • Legitimate Interests: For analytics, security, and fraud prevention
  • Consent: For marketing communications and optional features
  • Legal Obligation: To comply with applicable laws and regulations

4. Data Sharing and Disclosure

4.1 Third-Party Service Providers

We share your information with trusted third parties who assist us in operating our services:

  • Payment Processors: Creem and other payment providers for transaction processing
  • Cloud Hosting: Infrastructure providers for data storage and hosting
  • AI Services: Google, ElevenLabs, and other AI providers for content generation
  • Storage Services: Cloudflare R2, AWS S3, or similar for media file storage
  • Email Services: Resend for transactional and marketing emails
  • Analytics: Google Analytics, PostHog, or similar for usage analytics
  • Authentication: Google OAuth for social login functionality

These service providers have access to your personal information only to perform specific tasks on our behalf and are contractually obligated to keep your information confidential.

4.2 Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal processes, court orders, or government requests
  • Respond to lawful requests from public authorities
  • Protect our rights, property, and safety
  • Enforce our Terms and Conditions
  • Prevent fraud or other illegal activities

4.3 Business Transfers

In the event of a merger, acquisition, restructuring, sale of assets, or transfer of all or a portion of our business, your information may be transferred as part of the transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information for any other purpose with your explicit consent at the time of collection or afterwards.

4.5 User-Generated Content

Unless you choose to make your videos public, we do not share your video projects, scripts, or generated content with third parties. Any content you designate as public may be accessible to other users and the general public.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized or unlawful processing, accidental loss, destruction, or damage:

5.1 Technical Security Measures

  • Encryption: SSL/TLS encryption for data in transit, encryption at rest for sensitive data
  • Access Controls: Role-based access, multi-factor authentication for admin accounts
  • Secure Authentication: Hashed passwords, secure session management
  • Network Security: Firewalls, intrusion detection systems, secure hosting infrastructure
  • Regular Updates: Security patches, software updates, vulnerability assessments

5.2 Organizational Security Measures

  • Employee Training: Regular data protection and security awareness training
  • Access Policies: Minimum necessary access, background checks for personnel
  • Incident Response: Procedures for detecting and responding to data breaches
  • Confidentiality Agreements: All staff with data access sign confidentiality agreements

5.3 Data Retention

We retain your personal information for as long as necessary to provide our services, fulfill transactions, comply with legal obligations, resolve disputes, and enforce our agreements.

  • Account Information: Retained while your account is active
  • Project Data: Retained according to your account plan or until deleted
  • Payment Records: Retained for tax and legal purposes (typically 7 years)
  • Analytics Data: Aggregated and anonymized after 24 months

When you delete your account, we will delete or anonymize your personal information unless retention is required by law or for legitimate business purposes.

5.4 No Absolute Security

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information.

6. Your Privacy Rights

6.1 General Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal information
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Restriction: Request restriction of processing
  • Object: Object to processing of your information
  • Portability: Receive your data in a structured, machine-readable format
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent

6.2 California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Categories of personal information collected, used, and shared
  • Right to Delete: Request deletion of personal information collected
  • Right to Opt-Out: Opt-out of the sale of personal information (Note: we do not sell personal information)
  • Right to Non-Discrimination: No discrimination for exercising privacy rights
  • Right to Correction: Request correction of inaccurate personal information

To exercise these rights, California residents may contact us at the contact information provided below.

6.3 European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have enhanced rights under the General Data Protection Regulation (GDPR):

  • Right to be Informed: Transparent information about data processing
  • Right of Access: Access to personal data and processing information
  • Right to Rectification: Correction of inaccurate or incomplete data
  • Right to Erasure: Deletion of personal data ("right to be forgotten")
  • Right to Restrict Processing: Limit how data is used
  • Right to Data Portability: Receive data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Rights in Relation to Automated Decision-Making: Protection from automated decisions
  • Right to Lodge a Complaint: File a complaint with a supervisory authority

For GDPR requests, we will respond within one month of receipt. You may contact our Data Protection Officer at the email address provided below.

6.4 How to Exercise Your Rights

To exercise any of your privacy rights, please:

  • Contact us through our support system
  • Email us at the contact information below
  • Use account settings where applicable (e.g., delete account, export data)

We will verify your identity before processing your request and respond within the timeframe required by applicable law (typically 30 days for GDPR requests).

7. Cookies and Tracking Technologies

7.1 Types of Cookies We Use

We use various types of cookies:

  • Essential Cookies: Required for the website to function (authentication, security)
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Help us understand how visitors use our website
  • Marketing Cookies: Track visitors across websites for advertising (with consent)

7.2 Third-Party Cookies

We allow third-party services to place cookies on your device:

  • Google Analytics for usage analytics
  • Google OAuth for authentication
  • Payment processors for transaction processing

7.3 Managing Cookies

You can control and manage cookies through your browser settings. Please note that disabling essential cookies may affect the functionality of our website. You can learn more about cookies and how to manage them at www.allaboutcookies.org.

7.4 Do Not Track

We do not currently respond to "Do Not Track" signals. However, you can set your browser to refuse cookies, but some features of our website may not function properly.

8. International Data Transfers

Faceless Shorts may transfer and process your personal information in countries other than your country of residence. These countries may have different data protection laws than your jurisdiction.

When we transfer your information from the European Economic Area, United Kingdom, or Switzerland, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions where applicable
  • Other legally binding mechanisms ensuring data protection

For more information about international data transfers, please contact us using the details provided below.

9. Children's Privacy

Our services are not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to remove that information from our servers.

10. Third-Party Links

Our website may contain links to third-party websites, plugins, or applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices.

We encourage you to review the privacy policy of every third-party website you visit. Our privacy policy applies only to our website and services.

11. Data Breach Notification

In the event of a data breach involving your personal information, we will:

  • Notify you without undue delay if the breach poses a high risk to your rights and freedoms
  • Provide details about the nature of the breach and the categories of data affected
  • Describe the likely consequences and the measures we are taking to address the breach
  • Notify regulatory authorities as required by applicable law (within 72 hours for GDPR)

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a revised "Effective Date" and the new version will be effective as soon as it is accessible.

We will notify you of any material changes to this Privacy Policy by:

  • Posting a notice on our website
  • Sending you an email notification (if you have an account)
  • Providing prominent notice in our application

Your continued use of our services after the effective date of the revised Privacy Policy constitutes your acceptance of the changes.

13. Your Rights Under the California Consumer Privacy Act

California residents have specific rights regarding their personal information under the California Consumer Privacy Act (CCPA). In summary:

  • Right to Know: You have the right to request that we disclose what personal information we collect, use, and share
  • Right to Delete: You have the right to request deletion of your personal information
  • Right to Opt-Out: You have the right to opt-out of the sale of your personal information (Note: we do not sell personal information)
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights

To exercise these rights, please contact us using the information provided below. We will verify your identity before processing your request. Only you or a person registered with the California Secretary of State that you authorize to act on your behalf may make a verifiable consumer request related to your personal information.

14. Your Rights Under the General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Faceless Shorts aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your personal data.

If you wish to be informed what personal information we hold about you and if you want it to be removed from our systems, please contact us. In certain circumstances, you have the following data protection rights:

  • The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your personal information directly within your account settings section.
  • The right to rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
  • The right to object. You have the right to object to our processing of your personal data.
  • The right to restriction. You have the right to request that we restrict the processing of your personal information.
  • The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable format.
  • The right to withdraw consent. You have the right to withdraw consent at any time where we relied on your consent to process your personal information.

Please note that we may ask you to verify your identity before responding to such requests. For GDPR requests, we will respond within one month of receipt.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Email: Contact us through our customer support system
  • Website: Through the contact form on our website
  • Data Protection Officer (GDPR): Contact us at the above information with "GDPR Request" in the subject line

For users in the European Union, you have the right to lodge a complaint with your local data protection supervisory authority. We will cooperate with your designated authority to address any concerns.

16. Consent to Processing

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, processing, and use of your personal information as described herein. If you do not agree with this policy, please do not use our services.

Faceless Shorts
Copyright © 2026 Faceless Shorts
All rights reserved
Subscribe to Newsletter
PricingBlogContact
Terms of ServicePrivacy PolicyCookie PolicyRefund Policy