Skip to main content
RG Content AI

Privacy Policy

Last updated: March 2026 · Effective: March 2026

1. Who We Are

RG Content AI ("we", "us", "our") is an AI-powered video creation platform operated by Ovidiu Robotin, based in Cluj-Napoca, Romania. Contact: ovidiu.robotin@gmail.com. For the purposes of the EU General Data Protection Regulation (GDPR), UK GDPR, and applicable data protection laws, we are the data controller responsible for your personal data.

2. Information We Collect

We collect the following categories of personal data: • Account Information: Email address, name, username (provided during registration via Clerk) • Payment Information: Processed securely by Stripe — we never store credit card numbers • Usage Data: Features used, videos generated, timestamps, session duration • Device Information: Browser type, operating system, screen resolution (for responsive design) • Content Data: Topics, scripts, and prompts you enter for video generation • Communication Data: Any emails or support messages you send us

3. Legal Basis for Processing (GDPR Art. 6)

We process your personal data on the following legal bases: • Contract Performance (Art. 6(1)(b)): To provide our service, process payments, and manage your account • Legitimate Interest (Art. 6(1)(f)): To improve our service, prevent fraud, and ensure security • Consent (Art. 6(1)(a)): For analytics cookies and optional marketing communications • Legal Obligation (Art. 6(1)(c)): To comply with tax, accounting, and legal requirements

4. How We Use Your Information

We use your data to provide and maintain RG Content AI, process subscription payments, generate AI content from your prompts, improve service quality, send important service notifications, prevent abuse and unauthorized access, and comply with legal obligations.

5. Data Sharing and Third Parties

We share data with OpenAI for text and voice generation, fal.ai for image and video generation, Clerk for authentication, Stripe for payment processing, Vercel for hosting, Supabase for database storage, and Railway for rendering. All providers are bound by data processing agreements. We do not sell, trade, or rent your personal information to any third party.

6. International Data Transfers

Your data may be transferred to and processed in the United States by our service providers. These transfers are protected by the EU-US Data Privacy Framework where applicable, Standard Contractual Clauses, and provider-specific certifications such as SOC 2 or ISO 27001.

7. Data Retention

We retain account data while your account is active and for up to 30 days after deletion, generated content until you delete it or 90 days after account deletion, payment records for 7 years where legally required, audit logs for 12 months, and analytics data for 12 months in aggregated form.

8. Your Rights (GDPR / UK GDPR)

You have the right to access, rectify, erase, export, restrict, object to processing, and withdraw consent. To exercise any of these rights, email ovidiu.robotin@gmail.com. We aim to respond within 30 days.

9. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the right to know what personal information we collect, request deletion, opt out of sale, and receive non-discriminatory treatment. We do not sell your personal information. To exercise your CCPA rights, email ovidiu.robotin@gmail.com with subject line "CCPA Request".

10. Children's Privacy

RG Content AI is not intended for children under 16 years of age, or under 13 in the United States where permitted by law. We do not knowingly collect personal data from children.

11. AI-Generated Content Disclosure

RG Content AI uses artificial intelligence to generate scripts, images, videos, and analysis. AI-generated content should be reviewed by you before publishing. We do not guarantee accuracy or suitability, and predictive scores are estimates rather than guarantees.

12. Security Measures

We implement HTTPS/TLS, encrypted storage where available, Clerk-based authentication, session timeouts, rate limiting, input sanitization, security headers, audit logging, and access controls to protect personal data.

13. Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours where required and notify affected users without undue delay when high risk exists.

14. Cookies

We use essential cookies for authentication and session management. For details, see our Cookie Policy at /cookies.

15. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated via email or in-app notification when appropriate. Continued use of the service after changes constitutes acceptance.

16. Supervisory Authority

If you are in the EU/EEA, you have the right to lodge a complaint with your local data protection authority. In Romania, this is ANSPDCP — https://www.dataprotection.ro.

17. Contact Us

For privacy-related questions or to exercise your rights, contact: ovidiu.robotin@gmail.com. Address: Cluj-Napoca, Cluj County, Romania.