Privacy Policy

Last updated: March 2026

1. Introduction

CreateOnce ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered content repurposing platform at createonce.io (the "Service"). Please read this policy carefully. By using the Service, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you register, we collect your email address and name.
  • Content Data: Text content you submit for AI-powered transformation. This content is processed by our AI systems to generate platform-optimized outputs. Submitted content is stored temporarily as part of your transformation history feature, and you may delete it at any time.
  • Voice Profiles: Tone, style preferences, and custom instructions you configure for content generation.
  • Payment Information: Payment processing is handled by Polar.sh (via Stripe). We do not directly store your credit card numbers or banking information.

2.2 Information Collected Automatically

  • Usage Data: We collect information about how you use the Service, including the number of transformations performed, platforms selected, and feature usage patterns.
  • Device Information: Browser type, operating system, and general device information collected through standard web protocols.
  • Log Data: Server logs that may include your IP address, access times, and pages viewed.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Process your content transformations using AI
  • Manage your account and subscription
  • Communicate with you about service updates, security alerts, and support
  • Monitor and analyze usage patterns to improve the Service
  • Detect, prevent, and address technical issues and abuse
  • Comply with legal obligations

4. Third-Party Services

We share data with the following third-party service providers who assist in operating the Service:

  • Cloudflare: Hosting, content delivery, and edge computing infrastructure. Cloudflare may process request data in accordance with their privacy policy.
  • Anthropic / Cloudflare Workers AI: AI processing for content transformation. Content submitted for transformation is sent to AI providers for processing. These providers do not use your content to train their models.
  • Polar.sh (via Stripe): Subscription and payment processing. Polar.sh and Stripe handle all payment data in accordance with PCI-DSS standards.

We do not sell, rent, or trade your personal information to any third parties for marketing purposes.

5. Cookies and Tracking

We use a single session cookie strictly for authentication purposes. This cookie is essential for the Service to function and allows us to maintain your logged-in session securely. We do not use advertising cookies, analytics trackers, or any third-party tracking scripts.

6. Data Retention

We retain your account information for as long as your account is active. Transformation history is stored to provide the history feature and can be deleted by you at any time. Content submitted for transformation is processed in real time and is not permanently stored beyond the history feature. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law.

7. Data Security

We implement industry-standard security measures to protect your information, including encryption in transit (TLS/SSL), secure password hashing, HTTP-only session cookies, and edge-level security through Cloudflare. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

8. Your Rights (GDPR / CCPA)

Depending on your location, you may have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to Data Portability: Request an export of your data in a structured, machine-readable format.
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Object: Object to our processing of your personal data.
  • Right to Non-Discrimination (CCPA): We will not discriminate against you for exercising your privacy rights.

To exercise any of these rights, contact us at support@createonce.io. We will respond to your request within 30 days.

9. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will take steps to delete that information promptly.

10. International Data Transfers

Your data may be processed in data centers located outside your country of residence, including the United States and the European Union, through our use of Cloudflare's global network. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

CreateOnce
Email: support@createonce.io

Back to home