Privacy Policy

The data controller is Tamo Design sp. z o.o., Al. Zwycięstwa 220, 81-547 Gdynia, Poland. You can reach our privacy team at [email protected].

We collect: (a) account data — name, email, password hash, billing country; (b) billing data — masked card details processed by our PSP, invoices, VAT identifiers; (c) content data — URLs you submit, generated ads, prompts, uploads; (d) usage data — IP address, device, browser, pages viewed, feature events; (e) communications — support tickets, chat transcripts, surveys.

We process data to (i) provide the service (contract performance), (ii) bill, prevent fraud and comply with tax law (legal obligation), (iii) improve and secure the product, send service messages, and market similar features to existing customers (legitimate interests), and (iv) send marketing to prospects and place non-essential cookies (consent).

Account and content data are kept while your account is active and for up to 90 days after deletion. Invoices are kept 5 years for tax compliance. Server logs are kept up to 12 months. Marketing data is kept until you unsubscribe.

We share data with processors that help us run the service: cloud hosting, payment processors, email delivery, analytics, AI inference providers, and customer support tooling. A current list is available on request. All sub-processors are bound by data-processing agreements and, where applicable, EU Standard Contractual Clauses.

Some sub-processors are located outside the EEA. We rely on adequacy decisions, EU Standard Contractual Clauses and supplementary safeguards to protect your data when it leaves the EEA.

You have the right to access, rectify, erase, restrict or port your personal data, to object to processing based on legitimate interests, and to withdraw consent at any time. You can exercise these rights by emailing [email protected]. You also have the right to lodge a complaint with the Polish Personal Data Protection Office (UODO).

We protect your data with TLS in transit, encryption at rest, role-based access, audit logging, and regular security reviews. No system is perfectly secure — please use a strong, unique password and enable any available account-security features.

The service is not intended for users under 16. We do not knowingly collect data from children.

We may update this policy from time to time. We will notify you of material changes by email or in-app notice at least 14 days before they take effect.