Privacy Policy

The controller responsible for processing personal data on this website is the operator listed in our Imprint. For privacy-related questions, contact us at: privacy@viralsendr.com.

Account data: email address and hashed password when you register. Optional profile data (name, company) if provided. Usage data: Features accessed, content generated, platforms targeted, and session duration — used to improve the service. Technical data: IP addresses, browser type, OS, access logs — collected for security and operations. Payment data: Billing name, address, and payment method details processed by our payment provider. We do not store card numbers. AI inputs: Social media prompts and topics you submit. We do not use your inputs to train our models without explicit consent. Communication data: Messages you send via email or the contact form.

Contract performance (Art. 6(1)(b) GDPR): Processing is necessary to provide the service — account management, content generation, subscription processing. Legitimate interests (Art. 6(1)(f) GDPR): Technical and usage data for platform security, fraud prevention, and service improvement. Consent (Art. 6(1)(a) GDPR): Optional analytics cookies or marketing communications. Consent may be withdrawn at any time. Legal obligation (Art. 6(1)(c) GDPR): Billing records retained as required by commercial and tax law.

AI Processing: Content generation uses large language model APIs (e.g. OpenAI). Your prompts are transmitted to these APIs. See the provider's privacy policy for details. Payment Processing: Subscriptions handled by a PCI-DSS-certified provider (e.g. Stripe). Full card details are not stored by us. Email Delivery: Transactional emails sent via a third-party email service provider. Hosting & Infrastructure: Servers hosted on cloud infrastructure. Data may be stored in EU or non-EU data centers. All processors are bound by GDPR-compliant data processing agreements (Art. 28 GDPR).

Where personal data is transferred outside the EEA, we ensure adequate protection through Standard Contractual Clauses (SCCs) approved by the European Commission, or other appropriate safeguards under Art. 46 GDPR. You may request details of these safeguards.

Essential cookies: Required for authentication, CSRF protection, and user preferences. Cannot be disabled without breaking the service. Analytics cookies (optional): With your consent, we may use cookies to understand how visitors use our website. Manage preferences via our cookie banner. Browser settings can be used to manage cookies. Blocking essential cookies may prevent use of certain features.

Account data: Retained while your account is active; deleted within 30 days of account deletion. Usage and technical logs: Typically 90 days. Billing records: 7–10 years as required by law. AI-generated content: Stored while your account is active. Support communications: Up to 3 years.

If you are in the EEA, you have rights to: access your data (Art. 15), rectify inaccurate data (Art. 16), request erasure (Art. 17), restrict processing (Art. 18), data portability (Art. 20), object to processing (Art. 21), and withdraw consent (Art. 7(3)). Contact privacy@viralsendr.com to exercise these rights. We respond within 30 days. You may also lodge a complaint with your national supervisory authority.

We implement appropriate technical and organizational measures including: TLS/SSL encryption in transit, bcrypt password hashing, access controls, regular security audits, and incident response procedures. No system is 100% secure, but we continuously improve our safeguards.

The Service is not directed to individuals under 16. We do not knowingly collect data from children. If you believe a child has provided data, contact us and we will delete it promptly.

We may update this policy to reflect changes in practices, technology, or legal requirements. Material changes will be communicated by email or prominent website notice.

Privacy-related inquiries: privacy@viralsendr.com. Full contact details in our Imprint.