Privacy Policy

Last updated: March 2026

1. Introduction

This Privacy Policy explains how Emvee Ventures ("we", "us", "our"), operating SynthrAI at synthrai.app, collects, uses, stores, and protects your personal data when you use our platform and services.

Emvee Ventures is a company based in Switzerland. We are committed to protecting your privacy and complying with the Swiss Federal Act on Data Protection (FADP) and the European General Data Protection Regulation (GDPR) where applicable.

2. Data We Collect

We collect the following categories of data:

  • Account Information: Email address, name, and hashed password when you create an account.
  • Generated Content Metadata: Information about personas you create, content you generate (prompts, parameters, timestamps), and publishing activity.
  • Payment Information: Processed securely via Stripe. We do not store your credit card numbers, CVV, or full payment details on our servers. We retain your Stripe customer ID and subscription status.
  • Usage Data: Feature usage, credit consumption, generation counts, and general interaction patterns with the platform.
  • Cookies and Local Storage: We use essential cookies and browser local storage for authentication tokens and session management. See Section 9 for details.
  • Social Platform Data: When you connect social media accounts, we store encrypted OAuth tokens and platform user identifiers necessary to post content on your behalf.

3. How We Use Data

We use your data for the following purposes:

  • Provide the Service: Create and manage your account, generate AI content, manage personas, and publish to social platforms.
  • Process Payments: Handle subscriptions, credit pack purchases, and billing through Stripe.
  • Send Communications: Transactional emails (account verification, password resets, billing receipts) and, with your consent, product updates. You may opt out of non-essential emails at any time.
  • Improve the Platform: Analyze aggregated, anonymized usage patterns to improve features, performance, and user experience.
  • Security and Fraud Prevention: Monitor for suspicious activity, prevent abuse, and protect the integrity of the Service.

4. AI Processing

SynthrAI uses third-party AI services to generate content. When you use our generation features:

  • Image Generation: Prompts and persona data are sent to Google Gemini for AI image generation. Google's data processing terms apply.
  • Video Generation: Images and motion prompts are sent to Kling AI and/or fal.ai for video generation. Their respective data processing terms apply.
  • Text Generation: Persona personality data and context are sent to Anthropic Claude for caption generation and engagement AI responses.
  • Face Swap: Reference face images and target videos are sent to Akool for face swap processing.

Important: None of these AI providers use your data to train their models. Your prompts and generated content are processed solely to fulfill your requests and are not retained by these providers beyond their standard processing windows.

5. Data Storage

Your data is stored in the following locations:

  • Database: PostgreSQL hosted on Hetzner servers in Germany (EU). Contains account data, persona configurations, content metadata, and encrypted platform tokens.
  • Generated Media: Images and videos are stored on Cloudflare R2 with data residency in the EU.
  • Application Servers: Hosted on Hetzner in Germany (EU).

All data in transit is encrypted via TLS. Social platform OAuth tokens are encrypted at rest using Fernet symmetric encryption.

6. Third-Party Services

We use the following third-party services that may process your data:

StripePayment processing (PCI DSS compliant)
ResendTransactional email delivery
GoogleGemini AI for image generation and content curation
Kling AI / fal.aiVideo generation
AkoolFace swap processing
AnthropicClaude AI for text generation
CloudflareR2 object storage (EU) for generated media
HetznerServer hosting (Germany, EU)
Social PlatformsInstagram, TikTok, X, YouTube for content publishing

7. Data Retention

  • Active Accounts: Account data and generated content are retained for as long as your account remains active.
  • Account Deletion: When you delete your account, all personal data, personas, generated content, and associated metadata will be permanently deleted within 30 days.
  • Generated Content: All generated images, videos, and captions are deleted when your account is deleted. We do not retain copies.
  • Billing Records: Transaction records may be retained for up to 10 years as required by Swiss tax and accounting regulations.
  • Anonymized Data: Aggregated, anonymized usage statistics that cannot be linked to any individual may be retained indefinitely for analytics purposes.

8. Your Rights (GDPR)

Under the GDPR and Swiss data protection law, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete personal data.
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to Data Portability: Request your data in a structured, machine-readable format.
  • Right to Restriction: Request that we limit the processing of your personal data under certain circumstances.
  • Right to Object: Object to the processing of your personal data for certain purposes, including direct marketing.

To exercise any of these rights, please contact us at privacy@synthrai.app. We will respond to your request within 30 days.

9. Cookies

SynthrAI uses only essential cookies and browser local storage required for the platform to function:

  • Authentication Token: Stored in localStorage to maintain your login session.
  • Session Preferences: UI preferences such as sidebar state or theme settings.

We do not use tracking cookies, advertising cookies, or any third-party analytics cookies. We do not use Google Analytics or similar tracking services.

10. International Transfers

Your data is primarily stored and processed within the European Union (Germany) on Hetzner servers. However, some data may be transferred to and processed in other jurisdictions through our third-party service providers (e.g., AI processing services based in the US).

Where data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, or reliance on adequacy decisions where applicable.

11. Children

SynthrAI is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a person under 18, we will take steps to delete that information promptly. If you believe a minor has provided us with personal data, please contact us at privacy@synthrai.app.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. For material changes that significantly affect how we process your personal data, we will notify you via email at least 30 days before the changes take effect.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.

13. Contact

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Emvee Ventures

Switzerland

Privacy inquiries: privacy@synthrai.app

General support: support@synthrai.app