Privacy Policy

1. Scope

This Privacy Policy explains how Pops AI, Inc. ("Pops", "we", "us") collects, uses, and shares personal information when you use our website, apps, and APIs (the "Services"). It applies to all visitors and account holders worldwide.

2. What we collect

3. How we use it

• Provide the Services: deliver chat, image, video, music, voice, and agent features you request.
• Account & billing: authenticate you, manage subscriptions, send receipts and trial reminders.
• Service quality: debug errors, measure performance, and improve features.
• Safety & abuse prevention: detect fraud, account abuse, and violations of our Acceptable Use Policy.
• Communications: respond to support requests; send service emails (e.g., security alerts) and, with consent where required, marketing emails. You can unsubscribe from marketing email at any time.
• Legal: comply with applicable laws, court orders, and our legal obligations.

We do not use your Inputs or Outputs to train foundation models. We may use de-identified, aggregated usage statistics to improve Pops itself.

4. AI providers & routing

To run a model, Pops sends your Input to the relevant third-party model provider (e.g., OpenAI, Anthropic, Google, Black Forest Labs, Runway, ElevenLabs, Suno, and others). We have data-processing terms in place with our integrated providers. Each provider has its own privacy policy, which governs their handling of your Input. We work to choose providers that match your privacy expectations and we surface the chosen provider in your account settings.

You can request that Pops route your prompts only to specific providers (e.g., "no-train, US-only providers"). Available routing options depend on your plan.

5. Cookies & analytics

We and our partners use cookies, local storage, and similar technologies for:

• Strictly necessary functions (signed-in sessions, fraud prevention).
• Performance measurement (page load, error tracking).
• Analytics (e.g., privacy-respecting product analytics).
• Marketing attribution (only with your consent where required).

You can manage preferences from the cookie banner shown on first visit, and any time from Settings → Privacy in your account.

6. Advertising & pixels

We may use advertising technology (such as the Meta Pixel and similar tools from other ad platforms) to measure the effectiveness of our ads, retarget visitors with our own ads, and exclude existing customers from acquisition campaigns. Where required by law, we ask for your consent before loading these tools.

You can opt out of personalized advertising via your device's settings, your ad platform's preferences (e.g., Meta Ads Preferences), or through industry tools like the DAA WebChoices and the EDAA Your Online Choices tool.

7. How we share data

We share personal information only with:

• Service providers who help us run the Services (cloud hosting, payment processors, email/SMS, analytics, customer support).
• AI model providers when you submit a prompt and the prompt is routed to that provider.
• Authorities when required by law or to protect our rights, users, or the public (e.g., subpoenas, court orders).
• Successors in the event of a merger, acquisition, or sale, with notice to you.

We do not sell your personal information as that term is defined under the California Consumer Privacy Act (CCPA) or similar laws.

8. Data retention

We keep account data while your account is active. After cancellation, we keep account-level data for up to 12 months in case you reactivate; you can request earlier deletion. We retain billing records for 7 years where required by tax law, and security logs for 12 months. Backups are rotated on a 35-day cycle.

9. Security

We use 256-bit TLS in transit and AES-256 at rest. Passwords are hashed (bcrypt). We run a SOC 2-controlled environment, perform routine penetration tests, and follow least-privilege access. No system is perfectly secure — please report suspected vulnerabilities to security@thepopspodcast.com.

10. Your rights (GDPR / CCPA / others)

Depending on where you live, you may have the right to:

• Access the personal information we hold about you.
• Correct inaccurate information.
• Delete your account and personal information.
• Port your data in a common machine-readable format.
• Object to or restrict certain processing (e.g., direct marketing).
• Withdraw consent at any time, where processing is based on consent.
• Lodge a complaint with a supervisory authority (e.g., your local data protection authority).

To exercise these rights, email privacy@thepopspodcast.com or use the in-app tools at Settings → Privacy → Data & Export. We respond within 30 days; identity verification may be required.

California residents: see our "Notice at Collection" linked from any Pops page footer for a summary of categories collected and disclosed in the past 12 months.

11. Children

Pops is not directed to children under 18. We do not knowingly collect personal information from anyone under 18. If you believe a child has signed up, contact us and we'll delete the account.

12. International transfers

Pops is operated from the United States. If you use the Services from outside the U.S., your information will be transferred to and processed in the U.S. and other countries where our service providers operate. Where required, we use Standard Contractual Clauses and equivalent safeguards.

13. Changes to this policy

We may update this policy from time to time. If we make material changes, we'll notify you in-product or by email at least 14 days before the changes take effect.

14. Contact

• Privacy team: privacy@thepopspodcast.com
• Data Protection Officer (EU): dpo@thepopspodcast.com
• Mail: Pops AI, Inc., 2261 Market Street, #4732, San Francisco, CA 94114, USA