Podcads

Privacy Policy

Last updated: April 16, 2026

1. Information We Collect

You provide: name, email address, password (hashed), and — when you sign in with Google — the basic profile fields Google returns (name, email, avatar). When you subscribe, you provide payment details directly to Stripe; we do not see or store card numbers. You also provide the product images, copy, voiceover scripts, and other content you upload to generate ads.

We collect automatically: session tokens, IP address, browser and device information, pages visited, clicks and interactions, referral source, and generation/credit-usage events. Error and diagnostic logs may incidentally include request metadata.

2. How We Use Your Information

  • Operate the Service, authenticate you, and maintain your account.
  • Process your uploads and generate podcast-style ads, voices, music mixes, and short-form cuts.
  • Process subscriptions, credits, and payments via Stripe.
  • Send transactional email (verification, receipts, account notices) via Loops.
  • Provide customer support, including via the Crisp in-app chat widget.
  • Measure product usage and improve the Service.
  • Detect, investigate, and prevent fraud, abuse, or terms violations.
  • Comply with legal obligations.

3. AI Processing of Your Uploads

To generate ads, your uploads and prompts are sent to third-party AI providers, including OpenRouter (text), Google (image and speech), and Pixlab (image processing). These providers process your content as subprocessors on our behalf under their own contractual terms. We do not permit them to use your uploads to train their foundation models, and we do not use your uploads to train ours. Firecrawl may be used to retrieve public web content when you explicitly provide a URL as a product source.

4. Third-Party Services

We rely on the following vendors to operate the platform:

  • Stripe — subscription billing and payment processing.
  • Google — OAuth sign-in; image and speech generation.
  • OpenRouter — routing to large language models.
  • Pixlab — image analysis and processing.
  • Firecrawl — on-demand web scraping when you provide a URL.
  • Loops — transactional email delivery.
  • Crisp — customer support chat.
  • Datafast — privacy-focused product analytics.
  • Cloud infrastructure and object storage providers used to host the Service.

Each vendor processes data subject to its own privacy terms. We do not sell your personal information.

5. Data Storage & Security

Account and usage data is stored in managed Postgres. Uploads and generated media are stored in object storage (MinIO / S3-compatible). Data is encrypted in transit (TLS) and at rest. Passwords are stored as bcrypt hashes; we never see your plaintext password. Payment details are stored by Stripe, not by us.

6. Cookies & Local Storage

We use cookies and browser local storage to keep you signed in, remember preferences (for example, your last email on the sign-in screen), and measure aggregated usage. Some third-party scripts (Crisp, Datafast) may set their own cookies. You can clear or block cookies in your browser, though some features will not work without them.

7. Your Rights

Depending on where you live, you may have rights to access, correct, delete, export, or restrict processing of your personal data, and to object to certain processing. Residents of the United Arab Emirates have rights under the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021), including the right of access, correction, erasure, restriction, portability, and to object to processing. Residents of the European Economic Area, United Kingdom, and Switzerland have equivalent rights under the GDPR / UK GDPR. California residents have rights under the CCPA/CPRA, including the right to know, the right to delete, and the right to opt out of the "sale" or "sharing" of personal information (we do not sell personal information). To exercise any of these rights, email hello@podcads.ai. We will verify the request and respond within the timeframes required by applicable law.

8. Data Retention

We retain account data, uploads, and generated Output for as long as your account is active. If you delete your account, we delete your personal data and uploaded content within 30 days, except for records we must keep for legal, tax, or anti-fraud purposes (for example, invoices retained for up to seven years). Anonymized, aggregated metrics may be retained indefinitely.

9. International Transfers

Podcads is operated from the United Arab Emirates. Several of our subprocessors (including Stripe, Google, OpenRouter, Pixlab, Firecrawl, Loops, Crisp, and Datafast) are based in the United States, the European Union, or other jurisdictions. By using the Service, you acknowledge that your personal data will be transferred to and processed in these countries. Where required by the UAE PDPL, GDPR, or other applicable law, we rely on adequacy decisions, Standard Contractual Clauses, or equivalent safeguards for cross-border transfers.

10. Children's Privacy

The Service is not intended for users under 18. We do not knowingly collect personal information from children. If we learn that a child has provided data, we will delete it promptly.

11. Changes to This Policy

We may update this policy from time to time. We will post the updated policy on this page and revise the "Last updated" date; material changes will be announced via in-app notice or email. Continued use of the Service after changes take effect constitutes acceptance.

12. Contact

For privacy questions or to exercise your rights, contact us at hello@podcads.ai.