S
SCENRABack to Home
Version 1.0

Privacy Policy

Effective Date: January 3, 2025

1. Introduction

Scenra ("Company," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered video prompt generation platform at scenra.io (the "Service").

This policy applies to users worldwide, including those in the European Union (EU), European Economic Area (EEA), United Kingdom (UK), California, and other jurisdictions with specific data protection laws.

By using our Service, you consent to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide, including:

  • Account Information: Name, email address, password (encrypted), and profile details
  • User Content: Video prompts, project titles, descriptions, and creative materials you create
  • Payment Information: Billing details processed through our payment providers (we do not store credit card numbers)
  • Communications: Messages you send us for support or feedback
  • API Keys: If you use our BYOK (Bring Your Own Key) feature, your encrypted API keys

2.2 Information Collected Automatically

When you use our Service, we automatically collect:

  • Device Information: Browser type, operating system, device identifiers
  • Usage Data: Pages viewed, features used, time spent on the Service
  • Log Data: IP address, access times, referring URLs
  • Cookies: Session cookies and analytics cookies (see our Cookie Policy)

2.3 Information from Third Parties

We may receive information from:

  • OAuth Providers: If you sign in with Google or GitHub, we receive your public profile information
  • Analytics Services: Aggregated usage statistics from our analytics providers

3. How We Use Your Information

We use your information to:

  • Provide the Service: Process your prompts, generate AI content, and deliver the core functionality
  • Personalize Experience: Remember your preferences and settings
  • Improve the Service: Analyze usage patterns to enhance features and performance
  • Communicate: Send service updates, security alerts, and support messages
  • Process Payments: Handle subscription billing and invoicing
  • Ensure Security: Detect and prevent fraud, abuse, and unauthorized access
  • Comply with Law: Meet legal obligations and respond to lawful requests

3.1 AI Processing

Important: When you use our AI features, your prompts are sent to third-party AI providers (such as OpenAI) for processing. These providers may retain data according to their own policies. We recommend reviewing:

We do not use your prompts or content to train our own AI models.

4. Legal Basis for Processing (GDPR)

For users in the EU/EEA/UK, we process your data under these legal bases:

  • Contract Performance: To provide the Service you've requested
  • Consent: Where you've given explicit consent (e.g., marketing emails)
  • Legitimate Interests: For service improvement, security, and fraud prevention
  • Legal Obligation: To comply with applicable laws

5. Information Sharing and Disclosure

We may share your information with:

5.1 Service Providers

  • OpenAI: AI content generation
  • Supabase: Authentication and database services
  • Vercel: Hosting and content delivery
  • Payment Processors: Subscription billing
  • Analytics Providers: Usage analytics

5.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal requests from public authorities.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

5.4 What We Never Do

We do NOT sell your personal information to third parties. We do NOT share your data for advertising purposes.

6. Data Retention

We retain your information for as long as necessary to:

  • Provide the Service to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal purposes.

AI-generated content and prompts are retained according to our data retention schedule unless you explicitly request deletion.

7. Your Rights

7.1 Rights for All Users

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate data
  • Deletion: Request deletion of your data
  • Export: Receive your data in a portable format

7.2 Additional Rights for EU/EEA/UK Users (GDPR)

  • Restriction: Request restriction of processing
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time
  • Lodge Complaint: File a complaint with your supervisory authority

7.3 California Residents (CCPA/CPRA)

California residents have additional rights:

  • Right to Know: Request information about data collection practices
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt out of sale or sharing of personal information (note: we do not sell your data)
  • Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise any of these rights, contact us at privacy@scenra.io.

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Secure authentication with password hashing
  • Regular security assessments and updates
  • Access controls limiting data access to authorized personnel
  • AES-256 encryption for sensitive data like API keys

While we strive to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Data Processing Agreements with our service providers
  • Compliance with applicable data transfer regulations

10. Children's Privacy

Our Service is not intended for children under 13 years of age (or 16 in the EU). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at privacy@scenra.io.

11. Cookies and Tracking

We use cookies and similar tracking technologies to improve your experience. For detailed information about our cookie practices, please see our Cookie Policy.

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of the Service.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the "Effective Date" at the top
  • Sending an email notification for significant changes

We encourage you to review this policy periodically. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

For EU/EEA users: If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

Version History

  • v1.0 (January 3, 2025) - Initial release