Privacy Policy

Introduction

Welcome to SparkIcon AI. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we look after your personal data when you visit our website (sparkiconai.com) and tell you about your privacy rights and how the law protects you.

This policy applies to all users of our AI icon generation service and describes how we collect, use, store, and protect your information.

The Data We Collect

When you use SparkIcon AI, we collect and process the following types of information:

Essential Information

Account Information: Email address, username, and profile information
Authentication Data: Login credentials and session information
Payment Information: Billing details processed securely through Stripe
Generated Icons: Individual icons you create and their associated metadata
Credit Usage: Records of credit consumption and purchase history

Usage Information

Technical Data: Browser type and version, IP address, device information
Location Data: Time zone setting and general location (country/region)
Platform Data: Operating system, browser plug-ins, and screen resolution
Usage Patterns: Feature usage, session duration, and interaction patterns
Performance Data: Service response times and error logs

Generated Content

Individual Icons: Icons you create using our AI generation service
Generation Parameters: Prompts, style selections, size preferences, and format choices
Customization Settings: Color preferences, background options, and export settings
Icon Variations: Different versions and modifications of your generated icons
Version History: Records of icon iterations and modifications

How We Use Your Data

We use your data for the following purposes:

1. Service Provision

AI Icon Generation: To provide our core AI-powered icon creation service
Payment Processing: To handle transactions and manage your credit balance
Account Management: To maintain your user account and preferences
Content Storage: To store your generated icons and maintain access
Format Export: To provide icons in various formats (PNG, SVG, ICO, WebP)

2. Service Improvement

AI Model Enhancement: To improve our icon generation algorithms and quality
Usage Analytics: To analyze service usage patterns and optimize performance
Feature Development: To develop new features and improve user experience
Quality Assurance: To monitor service quality and identify issues
Performance Optimization: To enhance service speed and reliability

3. Communication

Service Updates: To notify you of important service changes or updates
Customer Support: To provide technical assistance and resolve issues
Marketing Communications: To send newsletters and promotional content (with consent)
Security Notifications: To alert you of security-related account activities
Billing Communications: To send payment confirmations and billing information

Data Storage and Security

Storage Infrastructure

Secure Servers: All data is stored on secure, encrypted servers
Cloud Storage: We use reputable cloud storage providers with enterprise-grade security
Geographic Distribution: Data may be stored in multiple secure locations for redundancy
Backup Systems: Regular automated backups ensure data protection and recovery

Security Measures

Encryption: Industry-standard encryption for data transmission (TLS/SSL) and storage (AES-256)
Access Controls: Strict access controls and authentication for our systems
Payment Security: Payment data is handled exclusively by PCI-compliant processors (Stripe)
Regular Audits: Periodic security assessments and vulnerability testing
Employee Training: Staff training on data protection and security best practices

Your Rights

Under applicable data protection laws, you have the following rights:

Access and Control

Data Access: Request a copy of all personal data we hold about you
Data Correction: Request correction of inaccurate or incomplete data
Data Deletion: Request deletion of your personal data (subject to legal requirements)
Data Export: Download your generated icons and account data
Processing Restriction: Request limitation of how we process your data

Consent and Objection

Consent Withdrawal: Withdraw consent for data processing where applicable
Marketing Opt-out: Unsubscribe from marketing communications at any time
Processing Objection: Object to certain types of data processing
Automated Decision-Making: Request human review of automated decisions

Cookie Policy

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Authentication: Keep you signed in to your account
Security: Protect against fraudulent activities and security threats
Functionality: Remember your preferences and settings
Session Management: Maintain your session state across page visits

Analytics Cookies

Usage Analytics: Understand how users interact with our service
Performance Monitoring: Track service performance and identify issues
Feature Usage: Analyze which features are most popular and useful
Error Tracking: Identify and resolve technical problems

You can control cookie preferences through your browser settings, though some functionality may be limited if essential cookies are disabled.

Third-Party Services

We work with trusted third-party services to provide our platform:

Core Service Providers

Replicate API: AI model hosting and processing for icon generation
Stripe: Secure payment processing and billing management
Vercel: Website hosting and content delivery
Supabase: Database services and user authentication

Analytics and Monitoring

Analytics Providers: Service usage analysis and user behavior insights
Performance Monitoring: Service uptime and performance tracking
Error Reporting: Technical issue identification and resolution

Communication Services

Email Services: Transactional and marketing email delivery
Customer Support: Help desk and support ticket management

All third-party services are carefully vetted and required to maintain appropriate data protection standards.

Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately so we can delete such information.

Data Retention

We retain your data according to the following schedule:

Active Accounts

Account Data: Retained while your account remains active
Generated Icons: Stored indefinitely while your account is active
Usage Logs: Retained for up to 90 days for service optimization
Payment Records: Retained as required by law and for tax purposes

Inactive and Deleted Accounts

Account Deletion: Data deleted within 30 days of account closure
Icon Retention: Generated icons deleted with account closure
Legal Requirements: Some data may be retained longer if required by law
Backup Systems: Data may persist in backups for up to 90 days after deletion

International Data Transfers

We may transfer your data to servers and service providers located outside your country of residence. When we do so, we ensure appropriate safeguards are in place:

Adequacy Decisions: Transfers to countries with adequate data protection laws
Standard Contractual Clauses: Legal frameworks for secure international transfers
Certification Programs: Service providers with recognized data protection certifications
Binding Corporate Rules: Internal policies ensuring consistent data protection

Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes through:

Notification Methods

Website Notice: Prominent notice on our website homepage
Email Notification: Direct email to your registered email address
Account Dashboard: Notice displayed when you log into your account
Version History: Maintained record of policy changes and effective dates

Your Options

Review Period: 30 days to review changes before they take effect
Continued Use: Continued use of the service constitutes acceptance of changes
Account Closure: Option to close your account if you disagree with changes

Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

Email: philex@sparkiconai.com
Website: sparkiconai.com
Response Time: We aim to respond to privacy inquiries within 72 hours

For data protection officer inquiries or formal complaints, please use the email above with "Privacy Officer" in the subject line.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

Contract Performance

Service Delivery: Processing necessary to provide our AI icon generation service
Payment Processing: Handling transactions and managing your account
Customer Support: Providing assistance and resolving service issues

Legitimate Interests

Service Improvement: Analyzing usage to enhance our platform
Security: Protecting our service and users from fraud and abuse
Marketing: Promoting our services to existing customers (with opt-out options)

Legal Compliance

Regulatory Requirements: Compliance with applicable laws and regulations
Tax Obligations: Maintaining records for tax and accounting purposes
Law Enforcement: Responding to valid legal requests when required

Consent

Marketing Communications: Sending promotional emails and newsletters
Optional Features: Providing enhanced features that require additional data processing
Cookies: Non-essential cookies and tracking technologies

Data Protection Rights (GDPR/CCPA)

Under applicable data protection laws, including GDPR and CCPA, you have specific rights:

GDPR Rights (EU Residents)

Right to Access: Obtain confirmation of processing and access to your data
Right to Rectification: Correct inaccurate or incomplete personal data
Right to Erasure: Request deletion of your personal data
Right to Restrict Processing: Limit how we process your data
Right to Data Portability: Receive your data in a structured, machine-readable format
Right to Object: Object to processing based on legitimate interests

CCPA Rights (California Residents)

Right to Know: Information about data collection and use practices
Right to Delete: Request deletion of personal information
Right to Opt-Out: Opt-out of the sale of personal information (we do not sell data)
Right to Non-Discrimination: Equal service regardless of privacy choices

Security Measures

We implement comprehensive security measures to protect your data:

Technical Safeguards

Encryption: End-to-end encryption for data transmission and storage
Access Controls: Multi-factor authentication and role-based access
Network Security: Firewalls, intrusion detection, and monitoring systems
Regular Updates: Timely security patches and system updates

Organizational Measures

Staff Training: Regular privacy and security training for all employees
Data Minimization: Collecting only necessary data for service provision
Incident Response: Established procedures for security breach response
Vendor Management: Due diligence and contracts with third-party providers

Monitoring and Auditing

Continuous Monitoring: Real-time security monitoring and threat detection
Regular Audits: Periodic security assessments and compliance reviews
Penetration Testing: Regular testing to identify and address vulnerabilities
Compliance Verification: Ongoing verification of data protection compliance

Last updated: December 2024

By using SparkIcon AI, you acknowledge that you have read, understood, and agree to this privacy policy. If you disagree with any part of this policy, please do not use our service.