V3RS HubOpen Studio

Legal

Privacy Policy

Last updated: May 2026

This Privacy Policy explains how V3RS Hub ("we", "us") collects, uses, and protects personal data when you use v3rshub.com and our services, anywhere in the world. We aim to comply with applicable global data protection laws, including the EU General Data Protection Regulation (GDPR), the UK GDPR and Data Protection Act 2018, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), Canada's PIPEDA, Australia's Privacy Act, Brazil's LGPD, and other applicable national privacy laws.

1. Data Controller

V3RS Hub is the data controller (or "business" under CCPA/CPRA) for personal data processed through the Service. For privacy enquiries, requests, or to exercise your rights, contact privacy@v3rshub.com.

2. What We Collect

  • Account data: name, email, password (hashed), brand profile, preferences.
  • Billing data: processed by Stripe; we receive transaction metadata (plan, amount, status, last 4 digits) but not full card details.
  • Content data: prompts, brand inputs, and assets you upload, plus AI outputs you generate.
  • Usage data: log files, device/browser, IP address, pages visited, feature usage.
  • Communications: messages you send us via support, email, or forms.

3. How & Why We Use Data (Lawful Bases under GDPR / UK GDPR)

  • Contract: to create your account, deliver the Service, process payments, and provide support.
  • Legitimate interests: to secure the Service, prevent fraud and abuse, improve features, and run analytics on aggregated usage.
  • Consent: for non-essential cookies and marketing emails (you can withdraw consent at any time).
  • Legal obligation: to meet tax, accounting, and regulatory requirements.

4. AI Processing

Prompts and inputs you submit may be transmitted to third-party AI model providers to generate outputs. We do not use your private prompts or outputs to train public AI models. Where possible we use providers that contractually do not retain customer data for training.

5. Sharing

We share data only with processors necessary to run the Service:

  • Cloud hosting and infrastructure providers
  • Stripe (payments)
  • Email delivery providers (transactional and, with consent, marketing)
  • AI model providers
  • Analytics providers (aggregated/anonymised where possible)

We do not sell your personal data and do not "share" personal data for cross-context behavioural advertising as defined under the CCPA/CPRA. We may disclose data to comply with law, enforce our Terms, or protect rights and safety.

6. International Transfers

Because we operate globally, your personal data may be transferred to, stored in, and processed in countries other than your own, including the United States, the United Kingdom, and the European Economic Area. Where required, transfers are protected by appropriate safeguards such as the EU Standard Contractual Clauses, the UK International Data Transfer Agreement / Addendum, or adequacy decisions.

7. Retention

We keep account and content data for as long as your account is active and for a reasonable period afterwards (typically up to 12 months) to handle disputes, comply with law, and enable account recovery. Billing records are kept for at least 6 years for tax purposes.

8. Your Rights

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you, and request a copy in a portable format.
  • Rectify inaccurate or incomplete data.
  • Erase your personal data ("right to be forgotten").
  • Restrict or object to certain processing, including processing based on legitimate interests.
  • Withdraw consent at any time, without affecting prior lawful processing.
  • Lodge a complaint with your local data protection authority (e.g. the UK ICO at ico.org.uk, or your EU national authority).

California residents (CCPA / CPRA): you have the right to know what personal information we collect and disclose, to request deletion, to correct inaccurate information, to opt out of sale or "sharing" of personal information (we do not sell or share for cross-context behavioural advertising), to limit the use of sensitive personal information, and to be free from discrimination for exercising your rights. You may also designate an authorised agent to act on your behalf.

To exercise any of these rights, email privacy@v3rshub.com. We will verify your identity before responding and will reply within the timeframes required by applicable law.

9. Cookies & Analytics

We use strictly necessary cookies to run the Service (e.g. authentication, security). With your consent, we use analytics cookies to understand how the Service is used. You can manage preferences via your browser or our cookie banner where shown.

10. Security

We use industry-standard technical and organisational measures (encryption in transit, access controls, hardened infrastructure). No system is fully secure; please use a strong, unique password.

11. Children

The Service is not directed to children under 18. We do not knowingly collect data from children.

12. Changes

We may update this policy. Material changes will be notified by email or in-app at least 14 days before they take effect.

Other policies:

Terms of ServicePrivacy PolicyRefund & CancellationAcceptable UseAI Usage & Disclosure