Privacy Policy

Last updated: February 2026

1. Information We Collect

Account Information

When you create an account, we collect your email address, username, and password (stored as a bcrypt hash). We never store your plaintext password.

Usage Data

We collect information about how you use the Service, including:

  • AI generation prompts and parameters
  • Pages visited and features used
  • IP address and browser user agent
  • Credit transactions and payment history

Payment Information

Payments are processed by Stripe. We do not store your credit card details. Stripe handles all payment data under their own Privacy Policy.

Contact Information

If you contact us, we collect your name, email, and message content to respond to your inquiry.

2. How We Use Your Information

  • To provide and maintain the Service
  • To process payments and manage credits
  • To improve AI generation quality
  • To communicate with you about your account
  • To enforce our Terms of Service and Content Policy
  • To detect and prevent fraud or abuse

3. Analytics

We use Matomo (self-hosted) for website analytics. Matomo runs on our own servers, meaning your analytics data is not shared with third parties. You can opt out of tracking via your browser's Do Not Track setting.

4. Cookies

We use essential cookies for session management and optional cookies for analytics and theme preferences. See our Cookie Policy for details.

5. Data Sharing

We do not sell your personal data. We share data only with:

  • Stripe — for payment processing
  • AI providers — prompts are sent to AI services for story generation (without personally identifiable information)
  • Law enforcement — when required by law

6. Data Retention

We retain your account data for as long as your account is active. AI generation logs are retained for 12 months. Payment records are retained as required by applicable tax laws. You may request deletion of your account by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access, correct, or delete your personal data
  • Export your data in a portable format
  • Object to processing or withdraw consent
  • File a complaint with your local data protection authority

8. Security

We implement industry-standard security measures including encrypted connections (HTTPS), hashed passwords, CSRF protection, and secure session management. However, no system is 100% secure.

9. Children

The Service is not intended for anyone under 18. We do not knowingly collect data from minors. If we learn that a minor has created an account, we will terminate it immediately.

10. Changes

We may update this Privacy Policy at any time. We will notify users of material changes via email or a prominent notice on the website.

11. Contact

For privacy-related questions, contact us at info@abcerotica.com.