Generated Media, Inc. (hereafter: "Company", “We,” “Us,” or “Our”) is a duly registered Delaware Company, Registration Number: 7627361.
This Policy is designed to comply with the privacy requirements established by the General Data Protection Regulation (“GDPR”), as well as with all applicable laws around the world that are intended to protect an individual’s privacy. It supports our need to collect information from our users as necessary for our performance of business services and functions, while also recognizing a user’s right to have their information handled in a way that protects the privacy of their personal information. You may learn more about the GDPR here: https://www.eugdpr.org/
For purposes of this Policy, a user may also be referred to as “you,” “your,” or “data subject.”
This Policy will commence from November 29, 2020. It replaces all other policies relating to the use of a user’s personal data, whether such a policy was made in writing or orally.
Legal requirements may vary from country to country. This Policy applies to all users of our website, even those who access our site from a location outside of the European Union.
We find the below terms relevant and important to the understanding and execution of this Policy. The following terms may be used or referenced in this Policy and can be further defined pursuant to Article 4 of the GDPR:
Personal Data: any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Controller: the natural or legal person, public authority, agency, or another body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Processor: a natural or legal person, public authority, agency, or another body that processes personal data on behalf of the controller.
Recipient: a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not.
Third Party: a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, or persons who, under the direct authority of the controller or processor, are authorized to process personal data.
Processing: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
Profiling: any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular, to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, relatability, behavior, location, or movements.
Filing System: any structured set of personal data which are accessible according to specific criteria, whether centralized, decentralized, or dispersed on a functional or geographical basis.
V. INFORMATION COLLECTED
We only collect information that is necessary for one or more of our legitimate business functions or activities. The information we collect from our users may include:
Personal identification data, including, but not limited to, your name, gender, date of birth, and nationality, if applicable.
Contact information, including, but not limited to, your email address, billing address, and telephone number(s);
Account login information including, but not limited to, your login credentials.
Information related to your purchases on our site including, but not limited to, the business name, address, and telephone number, purchasing preferences, and history.
Network traffic data including, but not limited to, your IP address, identification numbers, location data, cookies, online identifiers, language settings, and device identification.
Financial information provided by you including, but not limited to, your credit card information.
Information you voluntarily share with us including, but not limited to, feature suggestions, votes, and bug reports; excluding the images you upload to Anonymizer.
Images you upload to Human Generator. We do not employ uploaded faces for machine learning or any other purpose, nor do we assert any rights to reuse them. We keep your images secure until you delete them. After deletion, you’ll have 7 days to revisit the content generated with uploaded faces through the unique links. After this period, uploaded faces will be replaced with random synthetic faces.
Social media links or content you voluntarily share with us including, but not limited to, images, contacts, and written content.
We may also collect information from third-party channels including, without limitation, factual research our employees perform on you or your business, or from your interactions with our employees.
The information collected is considered “personal data” as defined by Article 4(1) of the GDPR.
VI. NON-COLLECTABLE INFORMATION
The photos you upload to Anonymizer and Face Generator are processed in the RAM. We do not collect or store any of these photos in any form and don’t use them for machine learning or neural network training in any way.
When you download modifications of images uploaded to Face Generator, these downloads will be stored in the Purchased section of your account so that you can download them again.
VII. SHARED INFORMATION
We will never sell your personal information, although it may be shared from time to time, and only when necessary to perform a legitimate business function.
We may provide your personal information data that we have collected on our website to third-party service providers to help us deliver and promote products, information, services, marketing, or other legitimate business functions. We will have a written agreement with each third party confirming on what basis they will use your personal information, and we will ensure that there are adequate safeguards and processes in place to protect your personal data.
VIII. HOW COLLECTABLE INFORMATION IS USED
We collect and process personal information from our users so that we may perform our business functions and provide services to the user. We will collect and process your personal data in compliance with the GDPR. We may use a user’s personal information to perform the following:
A. General Use:
To facilitate billing and payment collection for our services, if applicable.
To market relevant businesses, products, and/or services to you based on your preferences selected during the creation or use of your profile account.
To allow our employees or representatives to provide business services in accordance with your contract.
To comply with legal obligations arising out of the performance of our business services to you.
To perform background checks as permitted or required by applicable law.
To defend any legal claims to which we are subject.
Any other legitimate business functions or activities.
B. Business-Specific Use:
To test our software using real-life anonymized personal data (such as testing our new login system).
To test our software using your graphics (such as reproducing the bugs using your data in the cloud).
To identify, assess, or evaluate a user’s preferences and interest against buying and/or selling opportunities posted on our website.
IX. RETENTION OF PERSONAL DATA
In compliance with Article 5(1)(e) of the GDPR, we keep your personal information data for the period necessary to fulfill the purposes for which it has been collected. We may retain and use your data to inform you of new businesses for sale based on your preferences, in the event you have consented to us doing so.
We take precautions to protect your personal information. Our website is secured through a Secure Sockets Layer (“SSL”) Certificate, which ensures the security of data sent via the Internet using encryption.
XI. YOUR RIGHTS
The GDPR was created to protect your privacy rights. You have the right to access, rectify, object to, or erase the data maintained by us pursuant to Articles 12 – 23 of the GDPR. You may request a change to your personal data by contacting us at email@example.com.
If you believe our processing of your personal data infringes data protection laws, you have a legal right to initiate a complaint with a supervisory authority responsible for data protection in accordance with Article 77 of the GDPR.
XII. DELETION OF PERSONAL DATA
You may delete your personal data by clicking on the 'Remove account' button in your account under the "Email and password" tab, or by contacting us at firstname.lastname@example.org.
Personal data deletion will immediately cancel all your active subscriptions. The following data will be deleted: personal identification data, contact information, account login information, network traffic data, and financial information. Please see Paragraph V for more information on collected personal data.
XIV. DATA PROTECTION OFFICER
If you have questions or concerns regarding this Policy, your personal information, or how we may use it, please contact us by writing to our “Data Protection Officer” at the previously stated address or email. Our data protection officer is responsible for overseeing this Policy and privacy notice.
We may update this Policy from time to time by publishing a new version on its website. We will alert you about any changes by updating the “Last updated” date of this Policy.