Privacy Policy

Information You Provide Directly:

• Account Information: When you create an account, we collect your name, email address, password, and billing information.
• Payment Information: When you subscribe, we collect payment details through our payment processor (credit card number, billing address, etc.). Payment data is processed and securely stored by our third-party payment processor; we do not directly store full payment card details.
• Profile Information: Any information you voluntarily provide in your account profile.
• Communications: When you contact us for support or feedback, we collect the content of your message and contact information.

Information Collected Automatically:

• Authentication Data: Our authentication service collects session information, login timestamps, and device identifiers to verify your identity and maintain your secure session.
• Website Activity: We collect information about your interactions with the Service, including pages visited, content accessed, time spent, clicks, and scroll behavior.
• Device Information: Operating system, browser type, IP address, and device type.
• Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to track your activity, personalize your experience, and measure analytics. See Section 5 (Cookies) for details.

YouTube Embedded Videos:

• YouTube/Google may collect data about your viewing behavior, device information, and IP address through embedded videos.
• Privacy-Enhanced Mode: We use YouTube's privacy-enhanced mode (youtube-nocookie.com) where possible to reduce data collection. However, YouTube still collects essential technical data for video playback and analytics.
• Google Fonts: YouTube embeds may use Google Fonts, which involves data transmission to Google's servers.
• Recommendation: If you prefer not to have YouTube process your data, you may disable video playback, but this limits your access to content.

X (Twitter/Twitter) Embedded Posts:

• When you view embedded X posts on dMedia.ai, X may track your interaction with the embedded content.
• X uses this data for analytics, personalization, and targeted advertising on their platform and across the web.
• X's data collection is governed by X's privacy policy (available at twitter.com/privacy).
• Note: If you are logged into X in another browser tab, X may associate the embedded content view with your X account.

Service Provision:

• Process subscription payments and manage your account.
• Deliver journalism content and features you've subscribed to.
• Authenticate your identity and maintain secure sessions.
• Provide customer support and respond to inquiries.

Improvement and Analytics:

• Analyze usage patterns to improve our Service.
• Monitor Service performance and troubleshoot technical issues.
• Conduct research and analytics to understand user preferences.
• Personalize content recommendations based on your reading history and interests.

Communications:

• Send you subscription confirmations, receipts, and billing notifications.
• Notify you of material changes to our Terms of Service, Privacy Policy, or pricing.
• Send you transactional emails related to your account.
• Newsletter and Marketing: With your consent, we may send you periodic newsletters, journalism recommendations, or promotional emails. You may opt out at any time.

Types of Cookies We Use:

• Essential Cookies: Required for core functionality (authentication, session management, security).
• Analytics Cookies: Measure website performance, user behavior, and engagement through Google Analytics or similar services.
• Preference Cookies: Remember your settings and preferences (e.g., font size, reading history).
• Third-Party Cookies: YouTube, X, and our payment processor may set cookies to track your interactions with their services.

Cookie Consent:

• We do not require cookie consent for essential functional cookies (required for the Service to operate).
• For non-essential cookies (analytics, tracking), when used, we obtain your consent through a cookie banner on first visit.
• By continuing to use the Service after dismissing the cookie notice, you consent to non-essential cookies.

Service Providers:

• Payment Processor (Stripe): We share payment and billing information to process subscriptions. Stripe acts as a data processor and does not use your data for their own marketing.
• Authentication Provider (Clerk): We share account credentials and identity information for authentication and session management.
• Analytics Services: We share anonymized usage data with analytics providers (e.g., Google Analytics) to measure performance.
• Hosting and Infrastructure: We may share data with hosting providers to maintain Website infrastructure.

Legal Requirements:

• We may disclose your information if required by law, court order, subpoena, or government request.
• We may disclose information to enforce our Terms of Service, protect our rights, or prevent harm.
• We may disclose information to comply with CCPA, GDPR, or other privacy regulations.

Business Transfers:

If dMedia.ai is acquired, merged, or sold, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have.

Aggregate and Anonymized Data:

We may share aggregated or anonymized data that cannot identify you personally (e.g., "X% of users prefer this content topic").

Security Practices:

• Encryption: We use HTTPS/TLS encryption for data in transit.
• Access Controls: We limit access to personal information to authorized personnel only.
• Payment Security: Payment processing complies with PCI DSS (Payment Card Industry Data Security Standard).
• Authentication: We use secure password storage and multi-factor authentication options.
• Audit Trails: We maintain logs of data access and modifications for security monitoring.

Security Limitations:

• No security system is 100% secure. We cannot guarantee absolute security of information transmitted over the internet.
• You are responsible for maintaining the confidentiality of your account credentials.
• Notify us immediately if you suspect unauthorized access to your account.

Access Your Information:

• You have the right to request a copy of the personal information we hold about you.
• Submit a request to privacy@dmedia.ai with "Data Access Request" in the subject line.
• We will respond within 30 days.

Correct Your Information:

• You may update, correct, or modify your account information through your account dashboard.
• For changes we cannot make, contact us and we will assist.

Delete Your Information:

• You may request deletion of your account and personal information.
• Submit a request to privacy@dmedia.ai with "Data Deletion Request" in the subject line.
• We will respond within 30 days, subject to legal retention requirements.

Opt Out of Communications:

• You may opt out of promotional emails by clicking "Unsubscribe" at the bottom of any email.
• You may opt out of non-essential cookies through our cookie management tool.

California Consumer Privacy Act (CCPA) Rights:

If you are a California resident, you have the following rights under CCPA:

• Right to Know: Request what personal information we collect, use, or sell.
• Right to Delete: Request deletion of personal information (with limited exceptions).
• Right to Opt-Out: Request that we do not sell or share your personal information.
• Right to Correction: Request correction of inaccurate personal information.
• Right to Limit: Request that we limit our use of sensitive personal information.

GDPR Rights (EU Residents):

If you are located in the EU, you have rights under GDPR:

• Right of access, rectification, erasure, restriction of processing, data portability, and objection to processing.
• Contact us at privacy@dmedia.ai for privacy inquiries.

Notification of Changes:

• Material changes will be communicated to you via email to your registered email address.
• We will post the updated policy on the Website with an updated "Last Updated" date.
• Your continued use of dMedia.ai after updates constitute your acceptance of the revised Privacy Policy.
• For significant changes, we may request your affirmative consent before the changes take effect.

Response Time:

We will respond to privacy inquiries within 30 days.