Privacy Policy

Last updated: 10 Nov 2025

Reelcutr (“we”, “us”) provides tools to create short-form clips from your videos. This policy explains what we collect, why, and how you can control it.

Information we collect

• Account data: name, email (from Google sign-in).
• Usage & telemetry: basic app events (e.g., job submit/success/fail), timestamps, IP country/region.
• Content you upload: media files and outputs, stored in AWS S3 with lifecycle rules.
• Billing: handled by Stripe. We receive plan and payment status, not full card data.

How we use data

• Authenticate you and provide the service.
• Enforce plan limits (credits, duration caps, concurrency) and prevent abuse.
• Improve reliability and UX via aggregated metrics and error logs.
• Process payments and manage subscriptions via Stripe.

Cookies & tracking

We use a minimal set of cookies: the asf_auth session cookie keeps you logged in, and optional analytics cookies (Google Analytics with IP anonymization) help us understand usage trends. You can block analytics cookies in your browser without losing core functionality.

Your rights (GDPR/CCPA)

• Access and portability – request a copy of your personal data or exports.
• Correction – update profile information from your account or by emailing us.
• Deletion – ask for account deletion and we will remove non-essential data after legal retention obligations expire.
• Opt-out – unsubscribe from product email or contact us to opt out of analytics.

Submit requests to [email protected]. We respond within 30 days (or faster for CCPA requests).

Retention

Preview files are stored on AWS S3/Cloudflare CDN for 7 days, and final exports stay available for 30 days before automatic deletion (applies to every plan until tier-specific TTLs launch). Account and billing records are kept as required for operations and compliance.

Sharing

We don’t sell personal information. We rely on subprocessors that help us run Reelcutr:

• AWS (S3, EC2) – video storage and processing infrastructure.
• Cloudflare – CDN and security layer for fast downloads.
• Stripe – subscription billing and invoicing.
• Supabase – optional passwordless authentication/magic links.

Each provider is bound by a data processing agreement and complies with GDPR/CCPA-ready controls.

International transfers

Your data may be processed in the regions where our providers operate (primarily the United States, EU, and Australia). Transfers rely on contractual safeguards like Standard Contractual Clauses and strong encryption in transit and at rest.

Your choices

• Access/update: email [email protected]
• Deletion: request account deletion; we’ll remove non-required data.
• Analytics: we use basic GA with IP anonymization.

Data Protection Contact

Email: [email protected] (Attn: Data Protection). Postal requests can be arranged on request.

Questions?

Email us anytime at [email protected].