Privacy Policy for GenRaw AI LLC

Last Updated: December 1, 2025

1. Introduction

Welcome to GenRaw AI LLC ("we," "our," or "us"), an advanced AI-powered video generation platform that provides professional content creation services including text-to-video, image-to-video, motion transfer, and frame interpolation technologies. We are committed to protecting your privacy and handling your personal information with the utmost care and transparency.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you access or use our services, including future offerings such as AI image editing and image generation. By using GenRaw AI LLC, you consent to the data practices described in this policy.

We are committed to compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy regulations.

2. Information We Collect

We collect various types of information to provide, maintain, and improve our services. The information we collect includes:

2.1 Account Information

What We Collect:

• Full name or display name
• Email address
• Password (encrypted and hashed)
• Profile picture (if provided)
• Account creation and last login dates
• Authentication method (email/password, Google, or GitHub)
• User preferences and settings

Purpose: To create and manage your account, authenticate your identity, provide personalized services, and communicate important information about your account.

2.2 Usage Information

What We Collect:

• Video generation history and tasks
• Features accessed and usage frequency
• Content generation parameters (prompts, settings, preferences)
• Interaction logs with our platform
• Search queries and navigation patterns
• Time spent on different features
• Error logs and performance data

Purpose: To understand how you use our services, analyze user engagement, improve our AI models, optimize platform performance, and develop new features.

2.3 Device and Technical Information

What We Collect:

• Device type, model, and manufacturer
• Operating system and version
• Browser type and version
• IP address and geolocation data (country/region level)
• Screen resolution and display settings
• Network connection type
• Unique device identifiers
• Referral source

Purpose: To optimize our services for different devices and platforms, ensure compatibility, detect and prevent fraud, and provide technical support.

2.4 Cookies and Tracking Technologies

What We Collect:

• Session cookies for authentication
• Preference cookies for user settings
• Analytics cookies for usage statistics
• Security cookies for fraud prevention
• Third-party cookies from integrated services

Purpose: To maintain your logged-in state, remember your preferences, analyze platform usage, improve user experience, and enhance security. You can manage cookie preferences through your browser settings, though disabling certain cookies may limit functionality.

2.5 User-Generated Content

What We Collect:

• Images and videos uploaded to our platform
• Text prompts and descriptions
• Generated video outputs
• Feedback and comments
• Content metadata (upload time, file size, format, resolution)
• Generation parameters and settings used

Purpose: To process your content generation requests, provide our AI video generation services, store your creations, and improve our AI models. Your generated content is stored securely and privately.

2.6 Payment and Billing Information

What We Collect:

• Payment method information (processed by third-party payment processors)
• Transaction history and order records
• Billing address
• Purchase amounts and dates
• Credit and subscription usage records

Purpose: To process payments, maintain transaction records, prevent fraud, provide customer support, and manage subscriptions. We do not store complete credit card information; payment processing is handled by secure third-party payment processors (Stripe).

2.7 Communications

What We Collect:

• Email correspondence with our support team
• Customer service inquiries and responses
• Feedback and survey responses
• Verification codes sent to your email
• Marketing communication preferences

Purpose: To provide customer support, respond to inquiries, send verification codes, share important service updates, and (with your consent) send promotional communications.

2.8 Referral Information

What We Collect:

• Referral codes used or created
• Referral relationships and bonuses earned
• Referral invitation history

Purpose: To operate our referral program, track referral bonuses, and reward users for successful referrals.

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision and Operation

• Providing access to our AI video generation platform
• Processing your video generation requests
• Authenticating your identity and managing your account
• Enabling core features (text-to-video, image-to-video, motion transfer, first-last frame generation)
• Managing your credits, subscriptions, and purchases
• Delivering generated content to you
• Providing customer support and technical assistance

3.2 Service Improvement and Development

• Analyzing usage patterns to improve our services
• Developing new features and capabilities
• Optimizing platform performance and speed
• Conducting research and analysis
• Testing new technologies and approaches
• Fixing bugs and resolving technical issues

3.3 Personalization

• Customizing your user experience
• Recommending relevant features and content
• Remembering your preferences and settings
• Providing personalized content suggestions
• Adapting the interface to your usage patterns

3.4 Communication

• Sending account-related notifications
• Providing service updates and announcements
• Sending verification codes for security purposes
• Responding to your inquiries and support requests
• Sending promotional communications (with your consent)
• Notifying you of policy changes

3.5 Security and Fraud Prevention

• Detecting and preventing fraudulent activities
• Protecting against unauthorized access
• Monitoring for suspicious behavior
• Enforcing our Terms of Service
• Investigating security incidents
• Complying with legal obligations

3.6 Legal Compliance

• Complying with applicable laws and regulations
• Responding to legal requests and court orders
• Protecting our legal rights and interests
• Enforcing our agreements and policies
• Preventing illegal activities

3.7 Business Operations

• Processing payments and managing billing
• Maintaining business records
• Conducting internal audits
• Managing our referral program
• Analyzing business performance
• Planning business strategies

4. Information Sharing and Disclosure

We respect your privacy and do not sell, rent, or trade your personal information to third parties for their marketing purposes. However, we may share your information in the following circumstances:

4.1 Service Providers

We work with trusted third-party service providers who assist us in operating our platform and providing services. These providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information. Our service providers include:

• Cloud hosting providers (for data storage and processing)
• Payment processors (Stripe for payment processing)
• Email service providers (for sending transactional and marketing emails)
• Analytics providers (Google Analytics, OpenPanel for usage analytics)
• Authentication services (Google OAuth, GitHub OAuth)
• Content delivery networks (for fast and secure content delivery)
• AI model providers (for video generation processing)

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal processes (subpoenas, court orders, search warrants)
• Requests from law enforcement or government agencies
• Legal obligations under applicable laws
• National security or public safety requirements

4.3 Business Transfers

If we are involved in a merger, acquisition, asset sale, bankruptcy, or similar business transaction, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website of any change in ownership or use of your personal information.

4.4 Protection of Rights

We may disclose your information when we believe it is necessary to:

• Protect our rights, property, or safety
• Protect the rights, property, or safety of our users
• Prevent fraud or illegal activities
• Enforce our Terms of Service or other agreements
• Investigate potential violations of our policies

4.5 With Your Consent

We may share your information with third parties when we have your explicit consent to do so, such as when you choose to share your generated content publicly or participate in collaborative features.

4.6 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you. This may include statistical data about platform usage, trends, and demographics.

5. Data Storage and Security

5.1 Data Storage

Your information is stored on secure servers provided by reputable cloud service providers. We implement industry-standard security measures to protect your data, including:

• Data at rest: All stored data is encrypted using AES-256 encryption or equivalent
• Data in transit: All data transmission is encrypted using TLS 1.2 or higher
• Database security: Databases are protected with encryption, access controls, and regular backups
• Storage location: Data is primarily stored in secure data centers with redundancy and disaster recovery capabilities

5.2 Storage Duration

We retain your information for different periods depending on the type of data:

• Account information: Retained for as long as your account is active, plus 90 days after account deletion
• Generated content: Retained according to your storage preference settings (7 days, 30 days, or unlimited for premium subscribers)
• Transaction records: Retained for 7 years to comply with financial regulations
• Usage logs: Retained for up to 2 years for analytics and security purposes
• Communication records: Retained for 3 years for customer service purposes
• Legal hold data: Retained as required by law or ongoing legal processes

You can configure your content storage preferences in your account settings.

5.3 Security Measures

We implement comprehensive security measures to protect your information:

Technical Safeguards:

• End-to-end encryption for sensitive data
• Secure authentication protocols
• Regular security patches and updates
• Intrusion detection and prevention systems
• Automated vulnerability scanning
• Secure coding practices
• Regular security audits and penetration testing

Organizational Safeguards:

• Strict access controls based on the principle of least privilege
• Employee training on data protection and security
• Background checks for employees with data access
• Confidentiality agreements with employees and contractors
• Data breach response procedures
• Incident management protocols

Physical Safeguards:

• Secure data centers with 24/7 monitoring
• Biometric access controls
• Video surveillance
• Environmental controls (fire suppression, climate control)
• Redundant power and network infrastructure

5.4 Limitations of Security

While we take extensive measures to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continually work to improve our security practices and promptly address any identified vulnerabilities.

In the event of a data breach that affects your personal information, we will notify you in accordance with applicable law within 72 hours of discovery.

6. Your Rights and Choices

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

6.1 Access Rights

You have the right to:

• Access your personal information we hold about you
• Request a copy of your data in a portable format (JSON, CSV)
• Review what information we have collected and how we use it

How to exercise: Log in to your account and visit the Settings page, or contact us at [email protected].

6.2 Correction Rights

You have the right to:

• Update or correct inaccurate personal information
• Complete incomplete information
• Modify your profile and preferences

How to exercise: You can update most information directly in your account settings.

6.3 Deletion Rights (Right to be Forgotten)

You have the right to:

• Request deletion of your personal information
• Close your account and have your data removed
• Have your generated content deleted

How to exercise: Contact us at [email protected] with a deletion request. Please note that some information may be retained for legal compliance purposes.

Limitations: We may retain certain information when required by law, for legal disputes, to prevent fraud, or for legitimate business purposes.

6.4 Restriction Rights

You have the right to:

• Restrict how we process your personal information
• Limit the purposes for which we use your data
• Object to certain processing activities

How to exercise: Contact us at [email protected] with your specific restrictions.

6.5 Data Portability Rights

You have the right to:

• Receive your personal data in a structured, commonly used format
• Transfer your data to another service provider
• Request data export of your account information and generated content

How to exercise: Contact us at [email protected] to request a data export.

6.6 Objection Rights

You have the right to:

• Object to processing based on legitimate interests
• Opt out of marketing communications
• Disable certain cookies and tracking technologies
• Withdraw consent for optional data processing

How to exercise: Use the unsubscribe link in marketing emails, adjust cookie settings in your browser, or contact us at [email protected].

6.7 Automated Decision-Making

We do not use your personal information for automated decision-making that produces legal effects or similarly significant impacts on you without human oversight.

6.8 Complaint Rights

You have the right to:

• File a complaint with us about our data practices
• Lodge a complaint with your local data protection authority
• Seek remedies through legal channels

How to exercise: Contact us at [email protected] or reach out to your local data protection supervisory authority.

6.9 California Residents (CCPA Rights)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to Know: Request information about the categories and specific pieces of personal information we have collected about you in the past 12 months
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out: We do not sell your personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

To exercise these rights, contact us at [email protected]. We will respond to your request within 45 days.

6.10 European Economic Area (EEA) Residents (GDPR Rights)

If you are located in the EEA, you have rights under the General Data Protection Regulation:

• Legal basis for processing: We process your data based on consent, contractual necessity, legal obligations, and legitimate interests
• Data protection officer: You may contact our data protection officer at [email protected]
• Supervisory authority: You may file a complaint with your local data protection supervisory authority

7. Children's Privacy

GenRaw AI LLC is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age.

If we become aware that we have collected personal information from a child under 18 without verification of parental consent, we will take steps to delete that information immediately.

If you believe we have collected information from a child under 18, please contact us immediately at [email protected] so we can take appropriate action.

8. International Data Transfers

GenRaw AI LLC operates globally and may transfer your personal information to countries outside your country of residence, including countries that may not have the same data protection laws as your jurisdiction.

When we transfer your data internationally, we implement appropriate safeguards to protect your information:

• Standard Contractual Clauses: We use Standard Contractual Clauses approved by the European Commission for transfers from the EEA
• Adequacy decisions: We transfer data to countries recognized as providing adequate protection
• Additional safeguards: We implement technical and organizational measures to ensure data security during international transfers

By using our services, you consent to the transfer of your information to the United States and other countries where we or our service providers operate.

9. Cookies and Tracking Technologies

9.1 Types of Cookies We Use

We use several types of cookies and similar tracking technologies:

Essential Cookies:

• Authentication and security cookies
• Session management cookies
• Load balancing cookies
• These cookies are necessary for the platform to function and cannot be disabled

Functional Cookies:

• User preference cookies (theme, language)
• Feature setting cookies
• These cookies enhance functionality but are not strictly necessary

Analytics Cookies:

• Google Analytics (with IP anonymization)
• OpenPanel analytics
• Performance monitoring cookies
• These cookies help us understand how users interact with our platform

Third-Party Cookies:

• OAuth authentication cookies (Google, GitHub)
• Payment processor cookies (Stripe)
• These cookies are set by third-party services we integrate with

9.2 Managing Cookies

You can control cookies through your browser settings:

• Most browsers allow you to block or delete cookies
• You can set your browser to notify you when cookies are placed
• Disabling cookies may limit some platform functionality

To manage cookies:

• Chrome: Settings > Privacy and Security > Cookies
• Firefox: Preferences > Privacy & Security > Cookies
• Safari: Preferences > Privacy > Cookies
• Edge: Settings > Privacy > Cookies

9.3 Do Not Track Signals

Some browsers have a "Do Not Track" feature. Because there is no industry standard for how to respond to these signals, we do not currently respond to Do Not Track browser signals. We continue to monitor developments in this area.

9.4 Analytics and Third-Party Tools

We use analytics services to understand platform usage:

Google Analytics: We use Google Analytics with IP anonymization to analyze platform usage. You can opt out using the Google Analytics Opt-out Browser Add-on.

OpenPanel: We use OpenPanel for additional usage analytics and performance monitoring.

These services may set their own cookies and collect information about your use of our platform. Please refer to their privacy policies for more information.

10. Third-Party Services and Links

10.1 Third-Party Services

Our platform integrates with several third-party services:

Authentication:

• Google OAuth (governed by Google's Privacy Policy)
• GitHub OAuth (governed by GitHub's Privacy Policy)

Payment Processing:

• Stripe (governed by Stripe's Privacy Policy)

AI Processing:

• Third-party AI model providers for video generation (data processed securely and confidentially)

We carefully select third-party services that maintain strong privacy and security standards. However, we are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

10.2 External Links

Our platform may contain links to external websites or services. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any external sites you visit.

11. AI-Generated Content and Data Usage

11.1 Your Generated Content

Ownership: You retain all ownership rights to content you create using our platform, including AI-generated videos.

Privacy: Your generated content is private by default and is not shared with others unless you explicitly choose to share it (e.g., through public gallery sharing settings).

11.2 AI Model Training

No Data Usage for Training: We do not use your prompts, generated content, uploaded images, or any other user data to train, fine-tune, or improve our AI models. Your content remains private and is never used for model training purposes.

Quality Improvements: We may use aggregated, anonymized usage statistics (without your actual content) to improve platform performance and user experience. These statistics do not include any personal information or content.

11.3 Content Moderation

We may scan generated content for:

• Illegal content (child exploitation material, extreme violence, etc.)
• Content that violates our Terms of Service
• Security threats or malware

This scanning is automated and minimal personal data is processed. Content flagged by automated systems may be reviewed by human moderators for safety and compliance purposes.

12. Marketing Communications

12.1 Types of Communications

We may send you the following types of communications:

Transactional Emails (Cannot Opt Out):

• Account verification emails
• Password reset emails
• Payment confirmations
• Important service updates
• Security alerts

Marketing Emails (Can Opt Out):

• Product updates and new features
• Special offers and promotions
• Tips and best practices
• Platform news and announcements

12.2 Communication Preferences

You can manage your email notification preferences in your account settings under Interface Settings.

To opt out of marketing emails, you can:

• Click the "unsubscribe" link in any marketing email
• Update your preferences in account settings
• Contact us at [email protected]

Please note that even if you opt out of marketing communications, we will still send you essential transactional emails related to your account and services.

13. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

1. Investigate the breach promptly to determine the scope and impact
2. Contain the breach and mitigate any potential harm
3. Notify affected users within 72 hours of discovery, as required by applicable law
4. Report to relevant data protection authorities as required
5. Take corrective action to prevent future breaches

Our notification will include:

• The nature of the breach
• The types of information affected
• Steps we are taking to address the breach
• Recommendations for protecting your information
• Contact information for questions

14. Payment Information Security

14.1 Credit Card Payments

We use Stripe for credit card payment processing. We do not store complete credit card information on our servers. Stripe is PCI-DSS Level 1 certified, the highest level of security certification in the payments industry.

When you make a payment:

• Your payment information is transmitted directly to Stripe using secure encryption
• We receive only limited information (last 4 digits, card type, expiration date) for display purposes
• Full card details are never stored on our servers

14.2 Transaction Records

We retain transaction records for:

• Providing customer support
• Processing refunds or disputes
• Complying with tax and financial regulations
• Preventing fraud
• Internal accounting and auditing

Transaction records include: order number, amount, date, payment method type (but not complete payment details), and purchase description.

15. Account Deletion and Data Retention

15.1 Deleting Your Account

You can request account deletion at any time by contacting us at [email protected].

When you delete your account:

• Your account will be deactivated immediately
• Your personal information will be deleted within 90 days
• Your generated content will be deleted according to your storage settings or within 30 days, whichever is shorter
• Some information may be retained longer as required by law or for legitimate business purposes

15.2 Data Retained After Deletion

Even after account deletion, we may retain certain information:

Retained for Legal Compliance:

• Transaction records (7 years for financial regulations)
• Tax-related information
• Information subject to legal holds

Retained for Legitimate Business Purposes:

• Aggregated, anonymized usage statistics
• Security incident logs related to your account
• Records of Terms of Service violations
• Information necessary for legal disputes

Retained for Technical Reasons:

• Backup systems may retain data for up to 90 days
• Cached data may persist temporarily

15.3 Content Deletion

You can delete individual generated videos at any time through your account dashboard. Deleted content is removed from our systems within 30 days, though backup copies may persist for up to 90 days.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or platform features.

16.1 Notification of Changes

When we make changes to this Privacy Policy:

• Material changes: We will notify you via email and/or prominent notice on our platform at least 30 days before the changes take effect
• Minor changes: We will update the "Last Updated" date at the top of this policy
• Continued use: Your continued use of our services after changes take effect constitutes acceptance of the updated policy

16.2 Reviewing Changes

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. You can find the current version at any time at genrawai.com/privacy-policy.

16.3 Version History

We maintain a version history of significant policy changes. You can request access to previous versions by contacting us at [email protected].

17. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

GenRaw AI LLC

• Email: [email protected]
• Data Protection Officer: [email protected]
• Privacy Inquiries: [email protected]

Response Time: We aim to respond to all privacy-related inquiries within 5 business days and to complete data requests within 30 days, as required by applicable law.

Mailing Address:
GenRaw AI LLC
Privacy Department
[Physical address to be added]

18. Legal Compliance and Jurisdiction

18.1 Applicable Laws

This Privacy Policy and our data practices are governed by:

• General Data Protection Regulation (GDPR) for EEA residents
• California Consumer Privacy Act (CCPA) for California residents
• Other applicable state, federal, and international privacy laws

18.2 Jurisdiction

For disputes related to this Privacy Policy:

• EEA residents may file complaints with their local data protection authority
• California residents may file complaints with the California Attorney General
• Other residents are subject to the jurisdiction specified in our Terms of Service

18.3 Conflict of Laws

In the event of a conflict between this Privacy Policy and applicable law, the requirements of applicable law will prevail.

19. Additional Information for Specific Regions

19.1 European Economic Area (EEA)

Data Controller: GenRaw AI LLC is the data controller for your personal information.

Legal Bases for Processing:

• Consent: For optional features and marketing communications
• Contractual Necessity: For providing our services to you
• Legal Obligation: For compliance with laws and regulations
• Legitimate Interests: For security, fraud prevention, and service improvement

Data Protection Officer: Contact our DPO at [email protected]

Supervisory Authority: You have the right to lodge a complaint with your local supervisory authority.

19.2 California

California Shine the Light: California residents may request information about our disclosure of personal information to third parties for their direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

CCPA Metrics: We will publish annual CCPA compliance metrics, including the number of requests received and processed.

19.3 Other US States

Residents of other US states with privacy laws (Virginia, Colorado, Connecticut, Utah, etc.) have similar rights to those described in the CCPA section. Please contact us to exercise your rights.

20. Conclusion

At GenRaw AI LLC, we are committed to protecting your privacy and handling your personal information responsibly. We believe in transparency, security, and putting you in control of your data.

By using GenRaw AI LLC, you consent to this Privacy Policy and agree to its terms. Thank you for trusting us with your information and choosing GenRaw AI LLC for your creative video generation needs.

This Privacy Policy is effective as of December 1, 2025.

---

For questions or concerns about this Privacy Policy, please contact us at [email protected].