Legal

Privacy Policy

Last updated: April 11, 2025

1. Introduction

ViralKit (“we”, “our”, or “us”) is committed to protecting your personal information. This Privacy Policy explains what data we collect when you use ViralKit, how we use it, and your rights regarding that data.

By using our service you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

a) Account Information

When you create an account we collect your name, email address, and profile image — either directly or via OAuth providers such as Google.

b) Content You Create

We store the AI-generated videos, images, scripts, and captions you produce using our tools so they are accessible from your vault and can be published on your behalf.

c) Social Account Tokens

When you connect a social media account (YouTube, Instagram, TikTok, Twitter/X) we store OAuth access and refresh tokens encrypted in our database. These are used solely to publish content you schedule.

d) Usage & Analytics

We collect usage records (videos generated, images generated per billing period) to enforce plan limits and improve the product. We also collect aggregate analytics on published content performance when platforms provide this data.

e) Log & Device Data

Our servers automatically receive standard web server logs including IP addresses, browser user-agent, pages visited, and timestamps. This data is used for security, debugging, and abuse prevention.

f) Cookies & Local Storage

We use session cookies required for authentication and, with your consent, analytics cookies to understand how the product is used. See our Cookie Policy section below for details.

3. How We Use Your Information

  • Provide, operate, and improve the ViralKit service
  • Authenticate your identity and maintain your session
  • Publish scheduled content to connected social accounts
  • Track usage against your subscription plan limits
  • Send transactional emails (magic links, billing receipts, publish notifications)
  • Detect and prevent fraud, abuse, or security incidents
  • Comply with legal obligations

4. Sharing Your Information

We do not sell your personal data. We share data only in the following limited circumstances:

  • Service Providers — third-party processors that help us operate ViralKit (e.g., Neon/PostgreSQL for database hosting, fal.ai for AI generation, Paystack for billing). They process data only as instructed by us.
  • Social Platforms — when you publish content, the content and metadata you provide are sent to the relevant platform API.
  • Legal Requirements — if required by law, regulation, or valid legal process.
  • Business Transfers — in connection with a merger, acquisition, or sale of assets; you will be notified before your data is transferred and becomes subject to a different privacy policy.

5. Data Retention

We retain your account data for as long as your account is active. Generated content in your vault is retained until you delete it or close your account. Usage records are retained for 13 months for billing and compliance purposes. Server logs are retained for 90 days.

When you delete your account, we delete or anonymise all personally identifiable information within 30 days, except where we are required to retain it by law.

6. Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest for sensitive tokens, hashed credentials, and role-based access controls. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but we take commercially reasonable steps to protect your data.

7. Your Rights

Depending on your jurisdiction you may have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — correct inaccurate data
  • Erasure — request deletion of your data ("right to be forgotten")
  • Portability — receive your data in a structured, machine-readable format
  • Restriction — ask us to limit how we process your data
  • Object — object to processing based on legitimate interests
  • Withdraw consent — where processing is based on consent you may withdraw it at any time

To exercise any of these rights, email us at privacy@viralkit.app. We will respond within 30 days.

8. Cookie Policy

Cookies are small text files stored on your device. We use:

  • Essential cookies — required for authentication and security (e.g., next-auth session). Cannot be disabled.
  • Analytics cookies — help us understand usage patterns (e.g., page views). Only set with your consent.
  • Preference cookies — remember UI preferences such as theme. Only set with your consent.

You can manage your cookie preferences via the consent banner shown on your first visit, or by clearing cookies in your browser settings. Note that disabling essential cookies will prevent you from signing in.

9. Children's Privacy

ViralKit is not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately and we will delete it.

10. International Transfers

ViralKit is operated from and data is stored within cloud infrastructure that may be located in the United States or European Union. If you are accessing the service from another region, your data may be transferred to and processed in a jurisdiction with different data protection laws. We apply appropriate safeguards (e.g., Standard Contractual Clauses) for cross-border transfers.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or a prominent in-app notice at least 14 days before the change takes effect. Continued use after the effective date constitutes acceptance of the updated policy.

12. Contact Us

Questions or concerns about this policy? Contact us at:

ViralKit

Email: privacy@viralkit.app

Website: viral.langtangihub.org

Terms of ServicePrivacy PolicyBack to ViralKit