gramaticby Valeon

Privacy Policy

Last updated: 17 June 2026

This Privacy Policy explains what personal data gramatic (operated by Valeon) collects, how we use it, and who we share it with. We aim to collect only what we need to run the service.

Information we collect

  • Account data — your email address, name, and authentication details, managed through our auth provider, Clerk.
  • Generation data — the prompts you submit, generation parameters, any reference images you upload, and the images you generate.
  • Billing data — credit balance and transaction history. Card details are handled by Stripe; we do not store your full payment card numbers.
  • Usage and technical data — basic logs and analytics needed to operate, secure, and improve the service.

How we use your data

  • To provide image generation and deliver results to you.
  • To maintain your gallery, usage ledger, and account settings.
  • To process payments and prevent fraud and abuse.
  • To send service communications, including optional generation-complete emails you can turn off in settings.
  • To comply with legal obligations and enforce our terms.

Sub-processors and sharing

We share data with service providers strictly to operate gramatic:

  • Replicate — runs the AI models; receives your prompt and parameters to generate images.
  • Clerk — authentication and account management.
  • Convex — application database and backend.
  • Cloudflare R2 — stores generated and uploaded images.
  • Stripe — payment processing for credit top-ups.
  • Resend — transactional and contact email delivery.
  • Google reCAPTCHA — spam and abuse protection on our contact form. Its use is subject to Google's Privacy Policy and Terms of Service.

We do not sell your personal data. We may disclose data where required by law or to protect our rights and users.

Data retention

We retain account, generation, and billing data for as long as your account is active or as needed to provide the service and meet legal obligations. When you delete your account, we delete or anonymise your associated generations, uploaded images, and API keys, subject to limited records we must keep (for example, for tax or fraud-prevention purposes).

Your rights

Depending on your location, you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can delete your account at any time from your settings, or contact us to exercise these rights.

Security

We use industry-standard measures to protect your data, including encryption in transit and storage of secrets within our backend. No method of transmission or storage is completely secure, but we work to protect your information and limit access to it.

Children

gramatic is not directed to children and is intended for users 18 and over. We do not knowingly collect personal data from children.

Changes and contact

We may update this policy and will revise the “Last updated” date above. For privacy questions or requests, contact support@gramati.cc. See also our Terms of Service.