Privacy Policy

1. Information We Collect

• Account Information: name, email address, password, and profile details you choose to share.
• Payment Information: billing address, payment method, and transaction history processed via secure payment providers (e.g., Stripe). We do not store raw card numbers.
• Content & Usage: Scripts and prompts; media uploads (images, audio, video clips); generated outputs (including shots, captions, and videos); your actions in the Service; error logs and basic usage analytics. Aggregated and anonymized statistics may be used to improve performance and security.
• Device & Technical Data: IP address, browser type, device identifiers, and usage analytics captured through cookies or similar technologies.

2. How We Use Information

We process information to:

• Provide, maintain, and improve the Service and its features.
• Authenticate users, process subscriptions and transactions, and deliver customer support.
• We do not use your personal content to train third-party foundation models; it is used only to provide the Service (e.g., generate voiceovers, images, and videos) and to improve workflow logic (e.g., troubleshooting and performance). Aggregated and anonymized metrics may be used for quality and safety analysis.
• When you use BYOK and connect your own third-party API accounts, usage fees are charged directly by providers such as ElevenLabs, fal.ai, and Replicate. Diny does not receive your full payment card number and is not responsible for third-party billing amounts.
• Comply with legal obligations and protect the rights, property, and safety of us or others.
• Send service-related communications, updates, and marketing (you may opt out of marketing emails).

3. Sharing & Disclosure

We do not sell personal information. We may share information with:

• Service Providers: Service providers for hosting, storage, analytics, customer support, payment processing, and AI inference (e.g., Supabase, ElevenLabs, fal.ai, Replicate, and other model providers we may use from time to time) under contractual confidentiality obligations.
• Business Transfers: In connection with a merger, acquisition, financing, or sale of assets, your information may be transferred as part of the business assets.
• Legal Requirements: When we believe disclosure is necessary or appropriate to comply with laws, regulations, or legal process, enforce agreements, or protect the rights, property, or safety of users, the public, or Diny.

4. Security & API Keys (BYOK)

If you connect your own third-party API keys (e.g., ElevenLabs, fal.ai, Replicate) to use BYOK, keys are encrypted (e.g., AES-256) before storage. We do not log plaintext keys or return them in API responses; keys are used only to make requests on your behalf to those providers. You can delete or rotate keys at any time in your account settings. Usage charges for BYOK are billed directly by the third-party providers; we do not receive your full payment card details and are not responsible for third-party billing amounts.

5. Your Choices & Rights

• Access, update, or delete certain account information in the application settings.
• Manage marketing email preferences via unsubscribe links.
• Request deletion of your account and associated personal information by contacting diny.app.help@gmail.com. Some data may be retained where required by law or for legitimate business purposes.
• If you reside in a jurisdiction with specific privacy rights (e.g., GDPR, CCPA), you may have additional rights regarding access, portability, or objection to processing. We will respond to verified requests in accordance with applicable law.

6. International Transfers

We operate primarily from the United States and may process information in other countries where we or our service providers operate. We use contractual safeguards and industry-standard protections when transferring personal information across borders.

7. Security

We use administrative, technical, and physical safeguards to protect personal information, including encrypted transport, access controls, audit logging, and regular security reviews. No system is perfectly secure; please notify us promptly if you believe your account or data has been compromised. After you delete your account, we will delete or anonymize associated identifiable information within a reasonable time, except where retention is required by law.

8. Children's Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child under 13 has provided us information, contact us so we can delete it.

9. Updates to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with a revised "Last updated" date. Material updates may also be communicated via email or in-product notice. Continued use of the Service after revisions take effect signifies your acceptance of the updated policy.

10. Contact Us

For questions or requests regarding this Privacy Policy, email diny.app.help@gmail.com.