Goglo

Privacy Policy

Effective: October 18, 2025 • Last updated: October 18, 2025

This Privacy Policy describes how Goglo ("we", "our", or "us") collects, uses, and protects your personal information when you use our websites, APIs, or related services. By continuing to use the Service, you agree to this Privacy Policy.

1. Introduction / Overview

This Policy explains what data we collect, why we collect it, how we use it, and the choices you have. It applies to all of our products, subdomains, and APIs. By using the Service, you consent to this Policy.

2. Information We Collect

a) Information you provide to us

  • Account details (email, username, password).
  • Billing details via payment processors (we do not store full card numbers).
  • Support requests, feedback, and communications.

b) Information collected automatically

  • IP address, device identifiers, browser and OS.
  • Usage logs (generation requests, API calls, errors, timestamps).
  • Cookies and analytics (e.g., session tokens, web analytics).

c) Information from third parties

  • OAuth providers (e.g., Google, GitHub) profile basics.
  • Payment providers (e.g., Stripe) settlement metadata.
  • Affiliates or partners where applicable.

3. How We Use the Information

  • Provide, maintain, and improve the Service.
  • Process payments, prevent fraud and abuse, and enforce terms.
  • Respond to support requests and communicate about updates.
  • Analyze anonymized usage to improve features and reliability.
  • For AI: we may analyze anonymized prompts, outputs, and logs to improve model routing and service quality. We do not use your private content for public training without consent.

4. How We Share Information

We share personal data only as necessary to provide the Service or comply with law. We do not sell personal data.

  • Payments: processors such as Stripe or Paddle.
  • Hosting & storage: providers such as Cloudflare and/or other cloud vendors.
  • Analytics: web analytics tools for aggregate usage insights.
  • Legal: disclosures required by law, regulation, or legal process.

5. Cookies & Tracking Technologies

We use cookies and similar technologies for session management, preferences, and analytics. You can set your browser to refuse or delete cookies; however, some features may not function properly.

6. Data Retention

  • Account data is retained while your account is active and for a limited period after deletion (typically 30–90 days), unless longer retention is required by law.
  • Logs and aggregate analytics may be retained for longer in an anonymized form.
  • Billing and invoices are retained per legal requirements (generally 5–7 years).

7. Your Rights

Depending on your jurisdiction (e.g., GDPR/CCPA/PIPL), you may have rights to access, correct, delete, export, or restrict processing of your personal data, and to withdraw consent where applicable. To exercise rights, contact us at [email protected].

8. Data Security

We employ industry-standard security measures, including HTTPS encryption, DDoS protections, access controls, and data minimization. No method of transmission or storage is 100% secure; use the Service at your own risk.

9. International Data Transfers

We may process and store data in the United States, the European Union, and other countries. Where required by law, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs).

10. Children’s Privacy

We do not knowingly collect personal information from children under 13 (or under the age required by your local law). If you believe a child provided us personal data, please contact us and we will take appropriate action.

11. Changes to This Policy

We may update this Policy from time to time. If material changes are made, we will post the updated Policy and update the "Last updated" date above. Your continued use of the Service after changes become effective constitutes acceptance.

12. Contact Us

For privacy inquiries, contact us at [email protected] or [email protected].

13. AI‑Specific Disclosures

  • AI Output Usage: We may store or analyze AI‑generated outputs and prompts to improve model performance and routing. We do not use your private content for public training without consent.
  • Sensitive Content Filtering: Our systems automatically detect and block prompts or outputs that may contain illegal, hateful, or explicit material.
  • Data Minimization for Logs: Prompt and generation logs are anonymized after 30 days; we retain only aggregated statistics for analytics.
  • Third‑Party Model Providers: Some generations may be processed by third‑party providers (e.g., OpenAI, Anthropic, Stability). Their privacy policies may apply to such processing.