Privacy Policy

Last updated: 5 March 2026

1. Introduction

Realtime Comms Ltd ("we", "us", or "our"), a company incorporated in England and Wales, operates UGC Studio. This Privacy Policy explains how we collect, use, and protect your personal information.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address
• Name (if provided)
• Profile information from OAuth providers (Google)

2.2 Payment Information

Payment processing is handled by Stripe. We do not store your full credit card details. We retain transaction records including purchase amounts and dates.

2.3 Usage Data

We collect information about how you use the Service:

• Content generation requests and prompts
• Credit usage and transaction history
• Uploaded images (temporarily stored for processing)
• Generated content (stored temporarily)

2.4 Technical Data

• IP address
• Browser type and version
• Device information
• Access times and dates

3. How We Use Your Information

We use your information to:

• Provide and maintain the Service
• Process payments and manage credits
• Send service-related communications
• Improve and optimize the Service
• Detect and prevent fraud or abuse
• Comply with legal obligations

4. Data Retention

• Account data: Retained while your account is active and for a reasonable period thereafter.
• Uploaded files: Automatically deleted after 7 days.
• Generated content: Automatically deleted after 7 days.
• Transaction records: Retained for 7 years for accounting and legal purposes.

5. Data Sharing

We may share your information with:

• AI Service Providers: Your prompts and images are sent to third-party AI providers (Google, OpenAI, Fal.ai) to generate content.
• Payment Processors: Stripe processes all payments.
• Legal Requirements: When required by law or to protect our rights.

We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (HTTPS) and secure authentication. However, no system is completely secure.

7. Your Rights (UK GDPR)

Under UK data protection law, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data
• Portability: Receive your data in a portable format
• Object: Object to certain processing
• Withdraw consent: Where processing is based on consent

To exercise these rights, contact us at the address below.

8. Cookies

We use essential cookies for authentication and session management. These are necessary for the Service to function and cannot be disabled.

9. International Transfers

Your data may be processed outside the UK by our AI service providers. We ensure appropriate safeguards are in place for such transfers.

10. Children

The Service is not intended for users under 18 years of age. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on the Service.

12. Contact Us

For privacy-related inquiries or to exercise your rights, please contact us at: support@realtimecomms.co.uk

13. Supervisory Authority

You have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data protection rights have been violated: ico.org.uk