🧠 Overview

MyStage.AI is built on a foundation of privacy, transparency, and user control.
We take the protection of your data, content, and account seriously, ensuring all operations comply with international data privacy laws, including GDPR (EU), CCPA (California), and similar global standards.

This article explains how we collect, store, and secure your information — and what rights you have as a creator.

---

🔒 How We Protect Your Data

We use industry-grade encryption and infrastructure to protect your account, payments, and AI generations.

Category	How It’s Protected
Account Information	Encrypted with AES-256 and stored securely on our cloud servers
Payment Data	Processed via PCI-compliant providers (e.g., Stripe, PayPal, crypto gateways)
Generated Content	Stored privately and visible only to you unless you choose to share
Wallet & Transactions	Secured with two-layer encryption and ledger validation
Passwords	Hashed using bcrypt and never stored in plain text

💡 We never sell or share user data with advertisers or third parties for marketing purposes.

---

🧩 What Data We Collect

We only collect data required to operate and improve the platform:

Type	Examples	Why It’s Collected
Account Details	Name, email, country	Basic account creation
Usage Data	Tool activity, credits used, preferences	Optimize performance and reliability
Uploads	Images, videos, text prompts	Process your generations securely
Payment Info	Card or crypto transaction ID	Billing and refunds
Device Info	Browser, IP (anonymized), OS	Security and fraud prevention

---

🧠 How Long We Keep Your Data

Data Type	Retention Period	Notes
Generations	Until deleted manually	You control what to keep
Account Data	Until account closure	Required for billing & support
Payment Logs	5 years (for legal compliance)	Then permanently erased
Cookies	30–90 days	Used for login and analytics

You can request data deletion at any time (see below).

---

⚙️ Your Privacy Rights

As a MyStage.AI user, you have the right to:

• Access all personal data associated with your account
• Request deletion (“Right to be forgotten”)
• Export your data in readable format
• Withdraw consent for marketing emails
• Restrict processing for non-essential purposes

To exercise these rights, contact:
📩 [email protected]

Requests are processed within 30 days, in accordance with GDPR timelines.

---

🧱 How Generations Are Stored

• All outputs (images, videos, audio) are private by default.
• You control whether a generation is shared, published, or deleted.
• Deleted generations are permanently removed from our servers within 7 days.
• Only publicly shared content (on MyStage.Social) becomes visible to others.

💡 Even NSFW content follows the same security and deletion process — fully private and user-controlled.

---

🧩 Third-Party Integrations

Some features rely on secure third-party services, such as:

• Payment gateways (Stripe, PayPal, crypto)
• AI model APIs (e.g., Flux, Kling, Veo, Suno)
• Cloud rendering providers for performance scaling

We ensure all third-party partners comply with GDPR-level standards and have signed Data Processing Agreements (DPAs).

---

🧠 Data Location

All data is hosted in secure, privacy-compliant data centers in the European Union and United States, depending on your region.

For EU residents, data remains under GDPR protection within EU servers.

---

🔐 Account Safety Tips

• Enable two-factor authentication (2FA) under Account Settings → Security.
• Avoid sharing login credentials with others.
• Regularly clear browser sessions if using public computers.
• Report suspicious activity immediately to [email protected].