Back to HomeTIO

Privacy Policy

Last updated: April 23, 2026 — placeholder draft

1. What we collect

Account data: email, name, and authentication credentials handled by Clerk. Project data: the audio, style inputs, shotlists, and generated outputs you create. Usage data: credit consumption and job history so we can bill accurately and debug failures. We do not collect browsing history outside TIO.

2. Where it lives

Accounts: Clerk (SOC 2 Type II). Project metadata: Neon Postgres (US-East). Project files: Cloudflare R2, scoped by user ID. Queue state: Upstash Redis. API keys you provide (OpenAI, KIE, PoYo) are encrypted at rest with a platform secret — we can't read them without decrypting them at use time.

3. Who we share it with

Only the third parties required to run a generation you requested: OpenAI and Anthropic for transcription and text; KIE.ai and PoYo (which themselves route to OpenAI, Google, ByteDance, Runway, Kling, MiniMax, Alibaba, and xAI image and video models) for image and video generation; Stripe for payments. We do not sell your data, and we do not train our own models on it.

4. How long we keep it

Project files stay in R2 until you delete the project or close your account. Account metadata persists while your account is active. After deletion we purge within 30 days, with the normal carve-outs for audit logs and billing history.

5. Your rights

You can export your project data, delete a single project, or delete your entire account at any time from the dashboard. For broader data requests (GDPR, CCPA), email privacy@tio.example.