Privacy Policy

• Account profile. Email, display name, optional avatar, language preference.
• Content you create. Prompts, uploaded references, generated outputs, library assets, projects, comments.
• Billing. Plan, credit balance, transaction history. Card numbers are handled by Stripe and never reach our servers.
• Usage telemetry. Which models you used and how many credits each request consumed — needed for quotas and quality monitoring.
• Device data. IP address, browser, and basic security signals to detect abuse.

• Deliver the studio (auth, generation, library, sharing).
• Bill you and prevent fraud.
• Send service emails (receipts, security alerts, password resets). Marketing email is opt-in only.
• Improve the product through aggregated, anonymized analytics.
• Respond to legal requests when valid and required.

We do not use your prompts or generations to train models. We do not sell your data to advertisers or data brokers.

Generation requests are forwarded to the model provider you selected. Stripe handles payments. A full live list is on our Sub-processors page.

• Account data: until you delete your account.
• Generations & library: until you delete them, or 30 days after account deletion.
• Billing records: 7 years (legal retention requirement).
• Security logs: 90 days.

You can access, export, correct, or delete your data at any time from Settings → Account. EEA, UK and Swiss users have additional rights detailed on our GDPR page.

OmniVAI is not directed at children under 16. If we learn we have collected personal data from a child without parental consent, we delete it.

We notify active users by email at least 30 days before any material change.