Prama LLC (“we,” “us,” or “our”) operates backgrounderase.net (the “Site”) and provides services through the Background Erase Network (“BEN”). This Privacy Policy explains how we collect, use, and protect your personal information. By using the Site or our services, you agree to the practices outlined here.
1. Information We Collect
1.1 Personal Information
We collect personal data you provide, such as:
- Your name, email address, and payment details during account registration or subscription.
- Authentication data via Firebase, such as login credentials.
1.2 Automatically Collected Data
We collect information automatically when you interact with our services:
- IP address, browser type, operating system, and device type.
- Data on service usage, including API calls and images processed.
- Cookies and tracking technologies (see Section 7).
1.3 Image Data
When you upload images for background removal:
- By default, we retain and use images to improve our AI models.
- Users can opt out of data collection for model training via account settings.
2. How We Use Your Information
2.1 Providing Services
We use your information to:
- Process and deliver background removal results.
- Authenticate your account and manage subscriptions.
- Communicate updates, billing, or support-related information.
2.2 Improving Services
We analyze data to refine our algorithms and enhance the user experience.
2.3 Legal and Security Purposes
We may use your data to detect and prevent fraud or unauthorized activities and comply with applicable legal requirements.
3. How We Share Your Information
We do not sell your personal data. We may share it under the following circumstances:
3.1 Service Providers
- Stripe: For secure payment processing.
- Firebase: For authentication and data management.
- AWS: For hosting, API services, and AI processing.
3.2 Legal Obligations
We may disclose your information if required by law or to protect our rights, users, or third parties in cases of fraud or security breaches.
4. Your Choices and Controls
4.1 Opting Out of Data Collection
You can opt out of having your images used for training our AI models. This does not impact service availability but may reduce performance for specific use cases.
4.2 Managing Your Information
- Update account details via profile settings.
- Delete your account by contacting us at [email protected].
5. Data Retention
5.1 Personal Data
We retain your personal information, such as account details and payment records, for as long as your account remains active or as needed to provide our services. If you delete your account, we will remove your personal account data, including login credentials and subscription details, within 30 days. However, we may retain minimal data for tax, legal, or record-keeping purposes.
5.2 Image Data
Uploaded images are stored indefinitely unless you opt out of data collection or delete your account. Images used for model training are anonymized and stripped of any identifiable metadata. Once added to our training dataset, these images cannot be removed due to their integration into aggregate learning systems.
5.3 Operational Data
Usage logs, API call records, and other operational data are retained for troubleshooting, performance analysis, and fraud prevention. Such data may be kept for a minimum of 12 months and, in certain cases, indefinitely in anonymized or aggregated forms.
5.4 Legal Compliance
We may retain data for extended periods when necessary to comply with legal requirements, resolve disputes, or enforce our agreements. For example, tax records may be retained for up to seven years as required by law.
6. Security
6.1 Data Encryption
All images and personal information uploaded to our services are encrypted both in transit and at rest. We use industry-standard protocols such as HTTPS and AES-256 encryption for secure storage.
6.2 Secure Access
Access to sensitive data is restricted to authorized personnel and requires multi-factor authentication (MFA). Internal audits and monitoring systems regularly review access logs to detect and mitigate unauthorized access attempts.
6.3 System Monitoring
Our systems are continuously monitored for security threats using advanced tools. Any identified vulnerabilities are promptly addressed through updates and patches.
6.4 Limitations
While we implement best practices to secure your data, no method of storage or transmission is 100% secure. You acknowledge and accept that we cannot guarantee absolute security. In the event of a data breach, we will notify affected users as required by applicable laws.
6.5 User Responsibilities
You are responsible for safeguarding your account credentials, API keys, and any data you upload to our services. Do not share your account information with unauthorized parties, and notify us immediately if you suspect a breach of your account.
8. International Users
8.1 Data Transfers
By using our services, you acknowledge and consent to the transfer, storage, and processing of your data in the United States and other countries where our partners or service providers operate. These countries may not have the same level of data protection laws as your jurisdiction.
8.2 Legal Safeguards
To ensure your data is handled securely during cross-border transfers, we use standard contractual clauses (SCCs) approved by regulatory authorities and partner only with third-party providers who adhere to equivalent data protection standards.
8.3 Regional Compliance
We comply with data protection laws applicable to users in specific regions. For European Economic Area (EEA) users, we process your data in accordance with the General Data Protection Regulation (GDPR). California residents are entitled to specific rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, or opt out of the sale of your personal data.
8.4 Your Rights
If applicable, you may exercise your rights by contacting us at [email protected]. We will respond to data access or deletion requests within the timeframe required by local regulations (e.g., within 30 days for GDPR requests).
9. Children's Privacy
Protecting the privacy of children is a top priority. Our services are not intended for or directed at individuals under the age of 18.
9.1 No Collection of Children's Data
We do not knowingly collect, use, or store personal information from children under the age of 18. If we discover that a child under 18 has provided us with personal information, we will delete it promptly. Parents or legal guardians who believe their child has submitted data to us without consent should contact us at [email protected].
9.2 Age Restriction Policy
By using our services, you affirm that you are at least 18 years old or have reached the age of majority in your jurisdiction. If you are under the age of majority, you may not use our services under any circumstances.
9.3 Monitoring and Prevention
We take steps to ensure compliance with this policy by monitoring user accounts and any reported misuse of our services. Users found to be in violation of our age restriction policy may have their accounts suspended or terminated.
9.4 Educational Content
While we do not target or market our services to minors, some educational resources (e.g., blog articles or tutorials) may be accessible publicly. These resources do not involve data collection or require user accounts.
10. Changes to This Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or other operational considerations.
10.1 Notification of Changes
Significant changes to this Privacy Policy will be communicated to users via:
- Email notifications sent to the address associated with your account.
- A prominent notice displayed on our Site or within the services.
10.2 Review and Acceptance
It is your responsibility to review this Privacy Policy regularly. Continued use of our services after changes are published constitutes your acceptance of the updated terms.
10.3 Effective Date of Changes
Any modifications will take effect on the date specified in the updated Privacy Policy. Minor adjustments or clarifications that do not materially impact user rights may be implemented without prior notice.
10.4 Accessing Historical Versions
For transparency, we maintain an archive of previous versions of this Privacy Policy. Users may request a copy of earlier versions by contacting us at [email protected].
10.5 Feedback and Questions
We welcome feedback on this Privacy Policy. If you have any concerns or questions, please reach out to our support team.
11. Contact Us
We value your trust and are committed to addressing your concerns promptly. If you have any questions about this Privacy Policy, our data practices, or your rights, please contact us through the channels below:
11.1 Contact Information
- Email: [email protected]
- Postal Address: Prama LLC [Your Company Address Here] Kansas, USA
11.2 Support Hours
Our support team is available to assist you during regular business hours, Monday through Friday, from 9:00 AM to 5:00 PM CST. Response times may vary based on the volume of inquiries.
11.3 Reporting Concerns
If you believe your data has been misused or your privacy rights have been violated, please contact us immediately. We will investigate and take appropriate action to resolve the matter.
11.4 Regulatory Authorities
If you are unsatisfied with our response or believe we have not adhered to applicable privacy laws, you may file a complaint with your local data protection authority:
- European Union: Contact your local Data Protection Authority (DPA) for GDPR-related concerns.
- California Residents: Contact the California Attorney General's office for CCPA-related matters.