Privacy Policy

Effective: 2025-09-12

This Policy explains how {Your Company} (“we”, “us”) collects, uses, and protects information when you use authgen.ai.

1. Information We Collect

• Account data (email, org name, plan).
• Operational data (verification requests, webhook deliveries, logs, metrics).
• Content metadata required to verify assets (e.g., C2PA manifests). We do not persist original assets unless you explicitly upload for testing.

2. How We Use Data

• Provide and secure the Service (rate limiting, abuse prevention).
• Improve reliability and usability (analytics, debugging).
• Communicate about updates, security, and billing.

3. Retention

Verifications are retained for 90 days; webhook delivery logs for 30 days, unless you request earlier deletion or law requires longer retention.

4. Sharing

We use subprocessors (e.g., hosting, logging) under data-processing terms. We do not sell personal data.

5. Security

We use encryption in transit, scoped API keys, and least-privilege access. You are responsible for securing your keys and webhooks.

6. Your Rights

Depending on your region, you may request access, correction, export, or deletion. Contact us at {email}.

7. International Transfers

Data may be processed in the EU/US. We use appropriate safeguards for cross-border transfers.

8. Changes

We’ll post updates here and adjust the Effective date above.

9. Contact

Contact: {email}

This template is provided for convenience and is not legal advice.