Privacy Policy

Last updated: 23 April 2026

1. Who we are

ViralAi (“we”, “us”) operates the website viralai.in and the AI-video generation service accessible through it. This policy explains what personal data we collect, why, and how we handle it.

2. Information we collect

  • Account data: name, email, phone number (when you sign up or verify via OTP).
  • Usage data: prompts you enter, generations you create, references you upload, credits consumed.
  • Payment data: handled by Cashfree. We never see or store your card or UPI credentials; we only receive a transaction ID, amount, and status.
  • Technical data: IP address, browser, device, and basic log data for security and debugging.

3. How we use your information

  • To run the generation service you asked for (sending prompts to the model, returning videos).
  • To process payments and credit your account.
  • To send transactional messages (OTP, receipts, failure notices).
  • To detect abuse, fraud, and policy violations.
  • To improve product quality (aggregated, not identified, unless you opt in).

4. Third-party services

We share the minimum data necessary with trusted providers:

  • Firebase (Google): phone-OTP authentication.
  • Cashfree: payment processing and webhooks.
  • BytePlus: the AI model provider that generates your videos and images from prompts and references.
  • Neon: managed PostgreSQL database (Singapore region).
  • AWS S3 + CloudFront: storage and delivery of generated media and uploaded references.

5. Data retention

We keep generations and references for as long as your account is active. If you delete your account, we remove associated media within 30 days, except where retention is required for legal, tax, or fraud-prevention reasons.

6. Your rights

You may request to:

  • Access a copy of the data we hold about you.
  • Correct inaccurate data.
  • Delete your account and associated data.
  • Withdraw consent for non-essential processing.

Email privacy@viralai.in to exercise any of these.

7. Cookies

We use cookies for authentication (keeping you signed in), theme preference, and basic analytics. No cross-site advertising trackers are used.

8. Security

Data is encrypted in transit (TLS) and at rest. Access to production systems is limited to authorised personnel and logged. No system is perfectly secure; if we become aware of a breach that affects you, we will notify you and the relevant authority within the timeframe required by law.

9. Children

ViralAi is not intended for children under 18. If you believe a minor has signed up, email us and we will remove the account.

10. Changes to this policy

We may update this policy. Material changes will be announced on the homepage and the “last updated” date above will change. Continued use after an update means you accept the revised policy.

11. Contact

Questions? Write to privacy@viralai.in.