MIRTO AI PRIVACY POLICY

Last Updated: May 6, 2025

1. INTRODUCTION

Mirto AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our text-to-video, image-to-video, and video-to-video generation services (collectively, the "Services").

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2. INFORMATION WE COLLECT

We collect several types of information from and about users of our Services:

2.1 Personal Data

Personal Data refers to information that can be used to identify you as an individual. We collect the following Personal Data:

Account Information: Email address and username when you create an account
Payment Information: When you subscribe to our Services, your payment details are processed by our third-party payment processor, Stripe, which collects and processes your payment information according to its own privacy policy
Communications: If you contact us directly, we may receive additional information about you, such as your name, email address, the contents of your message, and any other information you choose to provide

2.2 Usage Data

We automatically collect information about your use of our Services, including:

Log Data: Information your browser sends whenever you visit our website or use our Services, including your IP address, browser type and version, the pages you visit, time and date of your visit, time spent on those pages, and other statistics
Analytics Data: Information collected through Google Analytics regarding your interaction with our Services
Device Information: Information about your computer or mobile device, including device type, operating system, unique device identifiers, and mobile network information

2.3 User Content

We collect and store the content you upload to our Services ("Uploaded Content") and the content that is generated through your use of our Services ("Generated Content"):

Uploaded Content: Any text, images, or videos you upload to our Services
Generated Content: Videos and other content created using our Services based on your inputs

3. HOW WE COLLECT YOUR INFORMATION

We collect information through:

3.1 Direct Interactions

When you:

Create an account
Subscribe to our Services
Use our Services to generate content
Contact us
Respond to surveys or marketing communications

3.2 Automated Technologies or Interactions

As you interact with our Services, we automatically collect Usage Data using cookies, server logs, and similar technologies:

Cookies: We use both necessary cookies for authentication and session management, as well as tracking cookies like Google Analytics. You can set your browser to refuse all or some browser cookies, but this may prevent some parts of our Services from functioning properly.
Server Logs: We collect server logs that record information about visitors to our websites, such as IP address, browser type, referring pages, and time spent on pages.

4. HOW WE USE YOUR INFORMATION

We use the information we collect for various purposes, including:

4.1 Provide and Maintain our Services

To deliver the Services you have requested
To process and complete transactions
To manage your account and provide you with customer support
To respond to your comments, questions, and requests

4.2 Improve and Develop our Services

To understand how users interact with our Services
To develop new products, services, features, and functionality
To conduct research and analysis about your use of our Services

4.3 Communicate with You

To send you technical notices, updates, security alerts, and support and administrative messages
To communicate with you about products, services, offers, promotions, and events
To provide news and information we think will be of interest to you

4.4 Protect our Services

To detect, prevent, and address technical issues
To protect the safety, integrity, and security of our Services
To investigate and prevent fraudulent transactions and other illegal activities

We may share your information in the following circumstances:

5.1 Service Providers

We may share your information with third-party vendors, service providers, and other third parties who perform services on our behalf, such as:

Payment Processing: We use Stripe to process payments. Stripe collects and processes your payment information according to its own privacy policy.
Analytics: We use Google Analytics to help us understand how our users use the Services. Google Analytics may collect information about your use of the Services, which is governed by Google's privacy policy.

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

5.3 Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, we may transfer your information to the acquiring entity.

We may share your information with third parties when you have given us your consent to do so.

5.5 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for research, marketing, analytics, and other purposes.

6. DATA RETENTION

We store your information for as long as you maintain an account with us or as long as necessary to provide you with our Services. You can request deletion of your account and associated data by contacting us at info@mirto.ai. Upon your request, we will delete or anonymize your information, unless we are legally obligated to retain certain information.

7. DATA SECURITY

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure.

8. INTERNATIONAL DATA TRANSFERS

We process and store all information exclusively within the European Union. We do not transfer your personal data outside the EU.

9. YOUR DATA PROTECTION RIGHTS

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right to Access: You have the right to request copies of your personal data.
Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete any information you believe is incomplete.
Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us at info@mirto.ai.

10. COOKIES

We use cookies and similar tracking technologies to track activity on our Services and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services.

10.1 Types of Cookies We Use

Necessary Cookies: These cookies are required for the operation of our Services, such as cookies that enable you to log into secure areas.
Analytical/Performance Cookies: These cookies allow us to recognize and count the number of visitors and to see how visitors move around our Services. This helps us to improve the way our Services work. We use Google Analytics for this purpose.
Functionality Cookies: These cookies enable us to personalize our content for you and remember your preferences.

11. MARKETING COMMUNICATIONS

We may use your Personal Data to contact you with newsletters, marketing, or promotional materials and other information that may be of interest to you. You can opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send or by contacting us.

12. CHILDREN'S PRIVACY

Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we learn we have collected or received personal information from a child under 16, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us at info@mirto.ai.

13. CHANGES TO THIS PRIVACY POLICY

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy. You are advised to review this Privacy Policy periodically for any changes.

14. CONTACT US

If you have any questions about this Privacy Policy, please contact us at:

Email: info@mirto.ai

Postal Address: Valukoja 8/2, Tallinn, Harju 11415, Estonia

15. DATA CONTROLLER

The data controller responsible for your personal information is:

Trueguard OÜ, Valukoja 8/2, Tallinn, Harju 11415, Estonia

16. SUPERVISORY AUTHORITY

If you are a resident of the European Economic Area (EEA) and you believe we are processing your personal information unlawfully, you have the right to file a complaint with your local data protection supervisory authority. You can find your data protection regulator here: https://edpb.europa.eu/about-edpb/board/members_en

For users in Estonia, the supervisory authority is:

Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) Tatari 39 10134 Tallinn Estonia info@aki.ee