Privacy Policy

This Privacy Policy explains what data the Vizmo Service processes and how it is used. This document is a template and should be reviewed for your deployment.

Data We Process

• Account: email address and authentication/session data (email login codes, session cookies).
• Billing: Stripe customer/subscription identifiers and subscription status (no full card details are stored by the app).
• BYOK provider keys: stored encrypted at rest, used only to perform requests you initiate.
• Projects and media: scripts, prompts, job logs/events, and generated audio/video artifacts stored on disk for your account.

How We Use Data

• To authenticate you and maintain sessions.
• To provision and gate access based on an active subscription.
• To generate content using your configured providers and your own API keys.
• To provide app functionality (resume jobs, download assets, show history).

Retention and Deletion

• You can delete stored provider keys from Settings at any time (even if your subscription is inactive).
• Projects use soft delete, and may be permanently purged after a retention window.

Security

• Provider keys are encrypted at rest in the database.
• Sensitive API endpoints are rate limited, and cookie-based requests require CSRF tokens.
• Media downloads are restricted and protected (signed URLs and path validation).

Third Parties

The Service integrates with Stripe for billing and with external AI providers that you configure (e.g. LLM/TTS/video/image providers). Your usage of those providers is governed by their policies and terms.

Contact

For privacy questions, contact the operator of your deployment (e.g. privacy@your-domain).