KLIPZ

PRIVACY POLICY

PLEASE READ THIS DOCUMENT CAREFULLY. IT CONTAINS IMPORTANT INFORMATION ABOUT HOW KLIPZ COLLECTS, USES, AND PROTECTS YOUR DATA. BY USING THE SERVICE, YOU ACCEPT THE PRACTICES DESCRIBED IN THIS PRIVACY POLICY.

1. Who We Are

Klipz ("we", "us", "our") operates the website and service available at klipz.app. We provide a web-based tool that allows users to clip and download segments of publicly available online videos. For any privacy-related questions, you can contact us at legal@klipz.app.

2. Information We Collect

We collect the following categories of information:

Account Information

  • Email address (when you register with email and password, or sign in with Google)
  • Password (stored as a one-way bcrypt hash — we never store your plain-text password)
  • Google account ID (when you sign in or link your account via Google OAuth)
  • Account type (free or premium) and subscription status

Usage Information

  • IP address (used to enforce rate limits for unauthenticated users)
  • Clip job count per day (to enforce daily usage limits per account or IP)
  • Clip history for logged-in users — the video URL, title, format, resolution, and timestamps of each clip you make are stored and accessible via your Clip History page. Anonymous users' clip data is not stored.

Technical Information

  • Authentication tokens (JWT access tokens and hashed refresh tokens stored server-side)
  • Basic server logs (request timestamps, HTTP status codes) for debugging and security

3. Information We Do Not Collect

  • We do not store processed video or audio files beyond the temporary processing window. All output files are automatically deleted within 30 minutes of creation.
  • We do not collect payment card details. All payment information is handled directly by our payment processor and never touches our servers.
  • We do not collect special categories of personal data such as health information, race, religion, political opinions, or biometric data.
  • We do not track your activity across third-party websites.

4. How We Use Your Information

  • Account management: To create and manage your account, authenticate your sessions, and allow you to sign in.
  • Service delivery: To process your clip requests and make output files available for download.
  • Rate limiting: To enforce daily clip limits per account type and IP address, and to prevent abuse.
  • Payments: To manage your subscription status and communicate subscription-related information.
  • Security: To detect and prevent fraud, abuse, or unauthorized access.
  • Legal compliance: To comply with applicable laws and respond to lawful requests from authorities.
  • Service improvement: To understand how the service is used and to improve its performance and reliability.

5. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:

  • Performance of a contract: Processing your account information, clip requests, and subscription status is necessary to provide the Service you signed up for.
  • Legitimate interests: We process IP addresses and server logs to enforce rate limits, prevent abuse, and maintain the security and reliability of the Service. These interests are not overridden by your rights where we take reasonable steps to minimise impact.
  • Legal obligation: We may process or retain data where required to comply with applicable laws or respond to lawful requests from public authorities.
  • Consent: Where we rely on consent (e.g. for non-essential communications), you may withdraw it at any time by contacting us at legal@klipz.app.

6. Third Parties

We work with the following third-party services. Each has its own privacy policy governing how they handle your data:

Google OAuth (Authentication)

When you sign in or register with Google, we receive your Google account ID and email address from Google. We do not receive your Google password. Google's use of your data is governed by Google's Privacy Policy.

Creem.io (Payment Processing)

Premium subscriptions are processed through Creem.io, a Merchant of Record that handles payment processing, VAT collection, and tax compliance. Your payment card details are collected and stored solely by Creem.io and are never transmitted to or stored on Klipz servers. We do store the Creem customer ID and subscription ID assigned to your account in order to manage your subscription status. Creem.io's use of your data is governed by their own Privacy Policy.

YouTube / Video Platforms

When you submit a video URL for clipping, our server fetches that video directly from the source platform (e.g., YouTube) using publicly available streams. We do not share your account information with these platforms as part of clip processing.

We do not sell your personal information to any third party, ever.

7. Data Retention

  • Processed files: Output video and audio files are automatically deleted within 30 minutes of creation.
  • Account data: Retained for as long as your account is active. If you delete your account, your personal information will be removed from our systems within 30 days, except where retention is required by law.
  • Server logs: Retained for a limited period for debugging and security purposes, then deleted.
  • Refresh tokens: Stored as one-way hashes and expire after 30 days of inactivity, or immediately upon logout.

8. Cookies and Local Storage

Klipz uses cookies and browser local storage solely for authentication purposes — to keep you signed in between sessions. We do not use tracking cookies, advertising cookies, or any third-party analytics cookies. We do not share cookie data with advertisers or analytics providers. You can clear cookies and local storage at any time through your browser settings; doing so will sign you out of your account.

9. Data Security

We take reasonable technical and organizational measures to protect your personal information, including encrypted connections (HTTPS), hashed password storage (bcrypt), and hashed refresh token storage (SHA-256). Only authorized personnel have access to user data. However, no system can guarantee absolute security, and you use the Service at your own risk.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request that we correct inaccurate or incomplete personal information.
  • Deletion: Request that we delete your account and associated personal data.
  • Portability: Request your personal data in a machine-readable format.
  • Objection: Object to certain processing of your personal data.
  • Withdraw consent: Where processing is based on consent, withdraw that consent at any time.
  • Complaint: If you are in the EEA or UK, you have the right to lodge a complaint with your local data protection supervisory authority (for example, the ICO in the UK, the CNIL in France, or the relevant authority in your EU member state) if you believe we have not handled your data in accordance with applicable law.

To exercise any of these rights, contact us at legal@klipz.app. We will respond within 30 days. We may need to verify your identity before fulfilling a request.

11. Children's Privacy

Klipz is not directed at children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at legal@klipz.app and we will promptly delete it.

12. International Data Transfers

Your data may be processed and stored on servers located outside your country of residence. By using the Service, you consent to the transfer of your information to our servers in accordance with this Privacy Policy. We take steps to ensure that any such transfers comply with applicable data protection laws.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page. If we make material changes, we will notify registered users by email where required. Your continued use of the Service after any update constitutes acceptance of the revised policy.

14. Contact

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us at:

legal@klipz.app