Privacy Policy

Last updated: March 12, 2026

1. Introduction

Cogniviso ("Company", "we", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data when you use the Cogniviso platform ("Service"). This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data We Collect

We collect the following types of data:

  • Account Data: Name, email address, and authentication credentials (managed via our secure identity provider).
  • Content Data: Videos you upload, and the AI-generated analysis results (summaries, transcriptions, scenes, objects).
  • Usage Data: Platform interactions, feature usage, AI token consumption, and analytics data.
  • Billing Data: Payment information is processed by Paddle (our Merchant of Record). We do not directly store credit card numbers.
  • Technical Data: IP address, browser type, device information, and cookies necessary for platform operation.

3. How We Use Your Data

  • To provide and maintain the Service, including AI analysis processing
  • To manage your account and subscription
  • To communicate with you about the Service (updates, notifications, support)
  • To improve the Service through aggregated, anonymized analytics
  • To comply with legal obligations
  • To detect and prevent fraud or abuse

4. Legal Basis for Processing

We process your data based on:

  • Contract Performance: Processing necessary to provide the Service you've subscribed to.
  • Legitimate Interest: Analytics, security monitoring, and service improvement.
  • Consent: Marketing communications (opt-in only).
  • Legal Obligation: Tax and financial record-keeping requirements.

5. Third-Party Data Sharing

We share data with the following third-party services as necessary to operate the platform:

  • Paddle: Payment processing (Merchant of Record). Handles billing, invoices, and tax compliance.
  • AI Processing Services: Video content is processed through third-party AI models for analysis. Content is processed but not retained beyond the analysis session.
  • Cloud Storage Provider: Secure, encrypted video file storage.
  • Identity Provider: Secure authentication and identity management.

We do not sell your personal data to third parties. We do not share your data for advertising purposes.

6. Data Retention

We retain your account and content data for as long as your account is active. Upon account deletion, your data is permanently removed within 30 days. Aggregated, anonymized analytics data may be retained indefinitely. Billing records are retained for 7 years as required by law.

7. Data Security

We implement industry-standard security measures including encrypted data transmission (TLS), encrypted storage at rest, data isolation between organizations, role-based access control, and regular security audits.

8. Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Access: Request a copy of your personal data.
  • Rectification: Request correction of inaccurate data.
  • Erasure: Request deletion of your data ("right to be forgotten").
  • Portability: Request your data in a machine-readable format.
  • Restriction: Request restriction of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interest.
  • Withdraw Consent: Withdraw consent for marketing communications at any time.

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

9. Cookies

We use essential cookies necessary for platform authentication and functionality. We do not use third-party advertising or tracking cookies. Session cookies are used for authentication purposes. You can manage cookie preferences in your browser settings.

10. International Data Transfers

Your data may be processed in servers located in various regions. All transfers comply with applicable data protection regulations, including GDPR requirements for international transfers. Appropriate safeguards such as Standard Contractual Clauses are in place.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification at least 30 days before they take effect.

12. Contact

For privacy-related inquiries, contact our Data Protection Officer at [email protected].