clipsilo
Sign in Start free trial

Privacy Policy

Last updated: April 16, 2026

1. Information We Collect

We collect the following categories of information:

  • Account information: name, email address, and password (hashed) when you register
  • Asset metadata: titles, tags, categories, and structural metadata you attach to your content assets
  • Usage data: API request logs, feature usage, and audit log events generated while using the Service
  • Billing information: processed by our payment provider — we do not store raw card numbers

We do not collect the contents of your media files. Your files are stored in your own S3 bucket and never transmitted through our servers.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Service
  • Authenticate you and secure your account
  • Send transactional emails (password resets, approval notifications, billing receipts)
  • Monitor and investigate security incidents
  • Comply with legal obligations

We do not sell your personal information. We do not use your data for advertising.

3. Data Storage

Account data and asset metadata are stored in a PostgreSQL database hosted on Heroku (AWS us-east-1). Your actual media files reside in the S3-compatible bucket you configure — Clipsilo does not have persistent copies of your files. All stored data is encrypted at rest.

4. Third Parties

We share data with the following third-party services, strictly as required to operate the platform:

  • AWS SES: transactional email delivery
  • Honeybadger: error monitoring and performance tracking (error messages and stack traces only)
  • Heroku (Salesforce): cloud hosting for the application and database
  • Stripe: payment processing (we never see raw card numbers)

We do not share your data with analytics providers, ad networks, or data brokers.

5. Cookies

We use a single session cookie to keep you logged in. We do not use tracking cookies, third-party analytics cookies, or advertising cookies. The session cookie is HTTP-only, Secure, and expires when your session ends or you log out. We also store your theme preference (dark/light/system) in localStorage.

6. Data Retention

We retain your account data and asset metadata for as long as your account is active. When you cancel and your account is deleted, we remove your personal data within 30 days, except where we are required to retain it for legal or regulatory compliance (e.g., billing records for up to 7 years).

7. Your Rights

Depending on your location, you may have certain rights over your personal data under applicable laws (including GDPR for EEA residents and CCPA for California residents). These may include:

  • The right to access the personal data we hold about you
  • The right to correct inaccurate or incomplete data
  • The right to request deletion of your data ("right to be forgotten")
  • The right to data portability
  • The right to object to or restrict certain processing

To exercise any of these rights, email privacy@clipsilo.io. We will respond within 30 days.

8. Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest, API key authentication, and role-based access controls. No system is completely secure — if you discover a vulnerability, please report it responsibly to security@clipsilo.io.

9. Contact

Privacy questions or concerns? Email us at privacy@clipsilo.io. We take privacy seriously and will respond promptly.