Your privacy is fundamental to everything we do. This policy explains how we collect, use, and protect your information when you use IceCone.
Your data is encrypted in transit and at rest using industry-standard security protocols.
We clearly explain what data we collect, why we collect it, and how we use it.
You have full control over your data with easy options to access, modify, or delete it.
We only collect data necessary to provide and improve our services.
To create and manage your account, process payments, and communicate with you.
To provide AI content generation services and improve our algorithms.
To ensure service functionality, security, and performance optimization.
To enhance your experience and provide personalized features (with your consent).
We work with leading AI providers to deliver the best content generation experience. Here's how your data is handled with each provider:
Text generation and content optimization
Data is not used for training their models
Processed data is not retained by OpenAI
AI image generation
Image prompts processed for generation only
Prompts are not stored or used for training
Video generation and editing
Video content processed for generation
Content not retained after processing
Advanced video generation
Secure processing with privacy protection
No data retention for training purposes
Professional video content creation
Enterprise-grade data protection
Temporary processing only
Request a copy of all data we have about you
Update or correct any inaccurate information
Request deletion of your personal data
Export your data in a machine-readable format
Limit how we process your data
Object to processing for marketing purposes
Service Provision: To provide AI content generation, account management, and customer support.
Improvement: To enhance our algorithms, develop new features, and improve user experience.
Communication: To send important updates, security alerts, and optional marketing communications.
Legal Compliance: To comply with applicable laws and protect against fraud or abuse.
Encryption: All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.
API Key Security: All API keys and access tokens are stored securely server-side and never exposed client-side.
Access Controls: Strict access controls with multi-factor authentication for all team members.
Regular Audits: Regular security audits and penetration testing by third-party security firms.
SOC 2 Compliance: We maintain SOC 2 Type II certification for security and privacy controls.
Data Anonymization: Analytics data is anonymized and aggregated to protect individual privacy.
We never sell your data. Your content and personal information will never be sold to third parties.
Service Providers: We work with trusted partners (hosting, analytics, support) who are bound by strict data protection agreements.
Legal Requirements: We may disclose data only when required by law or to protect our rights and users' safety.
Business Transfers: In case of merger or acquisition, user data would be transferred under the same privacy protections.
Our Data Protection Officer is here to help with any privacy-related questions or requests.