1. What We Collect
We collect the information you provide directly (account details, billing info, content you create), usage data (pages visited, features used), and device/browser metadata for security and analytics.
2. How We Use Your Data
We use your data to operate the Service, personalize your experience, process payments, communicate with you, improve our AI models, and detect abuse. We never sell your personal data.
3. AI Training
By default, content you generate in Creato is not used to train our AI models. You can opt in to contribute anonymized data via your account settings.
4. Sharing & Disclosure
We share data only with trusted sub-processors (e.g. payment, hosting, analytics) under strict data protection agreements, or when required by law.
5. Data Retention
We retain account data while your account is active and for up to 30 days after deletion, unless longer retention is required for legal or security reasons.
6. Your Rights
You may access, correct, export, or delete your personal data at any time from your account settings, or by emailing privacy@mycreato.com. EU/UK and California residents have additional rights under GDPR and CCPA respectively.
7. Security
We use industry-standard encryption (TLS in transit, AES-256 at rest), access controls, and routine audits to protect your data.
8. Cookies
We use essential cookies for login and security, and optional analytics cookies you can disable in your preferences.
9. Children's Privacy
Creato is not directed to children under 13, and we do not knowingly collect data from them.
10. Changes to This Policy
We'll notify you by email or in-app of material changes at least 14 days before they take effect.
11. Contact
Questions? Reach our Data Protection Officer at privacy@mycreato.com.