Privacy Policy

Last updated: May 7, 2026

1. What we collect

Account: email address and (optionally) username via Clerk.
Billing: subscription state via CCBill; we do not store card numbers.
Usage: chat messages, generated media, rolling memory summaries, and ledger entries.
Technical: IP address, user agent, and timestamps for age-gate and fraud prevention.

2. How we use data

Operating ImagenHer, personalizing companions, billing, preventing fraud and abuse, detecting prohibited content, and complying with legal requests.

3. Sharing

Your prompts are sent to our model providers (OpenRouter, Replicate, ElevenLabs) subject to their terms. We do not sell personal information.

4. Retention

Chat messages and generated media are retained while your account is active. When you request account deletion, we enter a 30-day grace window during which your account remains intact and you can sign in to cancel the deletion. After the grace window expires, all chats, generated media, owned companions, and your sign-in identity are permanently and irreversibly purged.

A small set of records may be retained beyond deletion for the minimum period required by law: payment-card transaction records (PCI-DSS, ~13 months), CSAM moderation audit entries (18 USC §2258A), and chargeback/abuse evidence. None of these contain usable account or chat content.

5. Your rights

You can self-serve every right below from your account page:

Access & portability (GDPR Art. 15 / 20, CCPA):the “Export my data” button delivers a JSON archive of every chat, generation, owned companion, subscription, gift, and consent record we hold.
Erasure (GDPR Art. 17, CPRA §1798.105):the “Delete my account” button starts the 30-day grace window described above.
Rectification: update your email or display name through your authentication provider (Clerk).
Restriction of processing:opt out of non-transactional emails (product nudges, marketing) under “Email notifications”. Receipts and deletion-lifecycle confirmations cannot be opted out — these are legally required.

If you cannot sign in (account locked, lost auth factor) and need a human-mediated export or deletion, contact support. We'll verify your identity out-of-band before acting on the request.

6. Cookies

We use strictly necessary cookies for authentication and the age gate, plus optional analytics. See our cookie banner for consent options.