Privacy Policy

1. Personal Information We Collect

Depending on how you use the Service, we may collect:

• Account and contact information: name, email address, login identifiers, workspace membership, profile settings, and authentication details.
• Billing information: subscription status, plan, credit balance, transaction identifiers, invoices, tax information, chargeback or dispute records, payment confirmation details, payment account status, and compliance or risk signals from payment providers. Payment cards are processed by payment platforms such as Whop and their financial partners; we do not store full card numbers.
• Workspace and creator content: prompts, persona settings, reference images, uploaded files, generated images, videos, dialogue, metadata, notes, rights confirmations, and related outputs.
• Usage and device information: pages viewed, feature events, generation activity, referral URLs, IP address, approximate location, browser and device information, cookies, pixels, and similar technologies.
• Communications: support requests, feedback, survey responses, emails, and messages you send to us.
• Information from third parties: authentication providers, payment processors, analytics providers, advertising platforms, fraud-prevention services, trust and safety providers, content moderation providers, and connected services you authorize.

Do not submit confidential, sensitive, biometric, medical, financial account, or government identification information unless a feature specifically asks for it.

2. How We Use Information

We use personal information to:

• Provide, operate, maintain, personalize, and secure the Service.
• Generate, store, display, export, and manage AI-assisted content and outputs.
• Process payments, subscriptions, credit purchases, cancellations, and disputes.
• Detect abuse, moderate content, enforce our terms, protect users, and prevent fraud or misuse.
• Comply with payment processor, Whop, AI provider, ad network, social platform, and other third-party platform requirements.
• Debug errors, measure performance, analyze usage, and improve features.
• Send service messages, security alerts, billing notices, support responses, and marketing communications where permitted.
• Comply with legal obligations and respond to lawful requests.
• Create aggregated, de-identified, or anonymized data for business purposes.

3. AI and Model Processing

Your prompts, files, settings, reference materials, and outputs may be processed by Clout and trusted AI infrastructure providers to generate results, provide previews, prevent abuse, improve reliability, investigate errors, and support the Service. AI outputs can contain personal information if your inputs include it.

We and our providers may use automated and manual safety review, moderation, abuse detection, and rights-review workflows for prompts, uploads, reference materials, generated outputs, account activity, payment activity, and support requests. These reviews help us prevent adult or sexual content, child-safety violations, non-consensual likeness use, impersonation, fraud, intellectual-property violations, prohibited business categories, and other misuse.

We use reasonable controls intended to limit unnecessary access to content, but no AI or cloud system can be guaranteed to be error-free, private against every risk, or capable of removing every trace from backups, logs, caches, or provider systems immediately.

4. Cookies, Analytics, and Ads

We and our providers may use cookies, pixels, SDKs, local storage, and similar technologies for authentication, security, remembering preferences, analytics, attribution, product improvement, advertising measurement, and marketing. Browser controls may allow you to block or delete cookies, but some Service features may stop working correctly.

We do not sell personal information for money. Some analytics or advertising activities may be considered a "sale" or "sharing" under certain privacy laws. Where required, you may contact us to request an opt-out.

5. How We Share Information

We may share personal information with:

• Service providers: hosting, storage, database, authentication, AI infrastructure, analytics, support, email delivery, security, error monitoring, and payment processing vendors.
• Payment processors: to process purchases, manage subscriptions, verify access, prevent fraud, handle disputes, support account-health reviews, and maintain tax and accounting records. This may include Whop, its financial partners, and other payment providers used for checkout or billing.
• Workspace members: information and content visible within shared workspaces according to roles and permissions.
• Advertising and analytics partners: for attribution, campaign measurement, product analytics, and marketing where permitted.
• Professional advisors: lawyers, accountants, auditors, insurers, and financial advisors.
• Authorities and safety parties: when needed to comply with law, enforce our terms, respond to legal process, investigate abuse, preserve evidence, or protect rights, safety, and security.
• Platform and compliance partners: payment platforms, AI providers, ad networks, social platforms, fraud-prevention vendors, and content-safety providers when needed to operate the Service, enforce policies, investigate prohibited activity, or satisfy their platform requirements.
• Business transferees: in connection with a merger, financing, acquisition, bankruptcy, reorganization, or sale of assets.

6. Retention

We retain personal information for as long as needed to provide the Service, maintain business records, resolve disputes, enforce agreements, prevent abuse, satisfy legal, tax, accounting, platform-compliance, payment-processing, trust and safety, or security obligations, and support backup and disaster recovery. Content, account, and payment records related to suspected fraud, prohibited content, disputes, chargebacks, policy violations, or legal requests may be retained longer where needed to protect users, Clout, payment partners, or the public. When information is no longer needed, we may delete, de-identify, aggregate, or isolate it from active use.

7. Your Choices and Rights

Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to certain processing of personal information. You may also have rights to opt out of certain targeted advertising, sale, or sharing activities.

You can update certain account information in the Service. To make a privacy request, email [email protected]. We may need to verify your identity and may decline or limit requests where permitted by law, including for security, legal, billing, fraud-prevention, or backup reasons.

8. California Privacy Notice

If California privacy law applies to your information, this section provides additional notice. We may collect the categories listed above, including identifiers, commercial information, internet or electronic network activity, approximate geolocation, audio/visual content you submit, inferences from usage, and sensitive personal information only where necessary to provide or secure the Service. We do not use sensitive personal information to infer characteristics.

California residents may request access, correction, deletion, portability, and opt-out of sale or sharing where applicable. We do not knowingly sell or share personal information of users under 16.

9. Notice to EEA and UK Users

Where GDPR or UK GDPR applies, Clout is generally the controller for account, billing, support, and Service usage information. Our legal bases may include performance of a contract, legitimate interests, consent, and compliance with legal obligations.

EEA and UK users may have rights to access, rectify, erase, restrict, port, or object to processing, and to lodge a complaint with a supervisory authority. You may withdraw consent where processing is based on consent.

10. International Transfers

We are based in the United States and may process information in the United States and other countries. Where required, we use appropriate safeguards for cross-border transfers, such as contractual protections.

11. Security

We use technical, organizational, and administrative safeguards designed to protect personal information. No method of transmission, processing, or storage is fully secure, so we cannot guarantee absolute security.

12. Children

The Service is not intended for anyone under 18. We do not knowingly collect personal information from children. If you believe a child provided personal information, email us at [email protected].

13. Third-Party Links

The Service may link to third-party websites, apps, platforms, and services. Their privacy practices are governed by their own policies, not this Privacy Policy.

14. Changes and Contact

We may update this Privacy Policy from time to time. Material changes will be posted here with a new last-updated date. Continued use of the Service after a policy update means you acknowledge the updated policy.

Questions or privacy requests can be sent to [email protected].