Caricatu.ro
Caricatu.ro
Home API Documentation
Login Sign Up
Select Language
🇺🇸 EN

Privacy Policy

Last updated: January 18, 2025

1. Data Controller Information

HAPPYGLOBAL, LLC ("we," "us," or "our") operates Caricatu.ro (the "Service") and acts as the data controller for the personal information collected through our AI-powered caricature generation service.

Company: HAPPYGLOBAL, LLC

Delaware LLC File Number: 10006977

Address: 131 Continental Dr, Suite 305, Newark, DE 19713, United States

Email: legal@caricatu.ro

Privacy Matters: privacy@caricatu.ro

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Please read this privacy policy carefully. By using our Service, you consent to the data practices described in this policy.

2. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds under the General Data Protection Regulation (GDPR):

  • Contract performance: Processing necessary to provide our AI caricature services
  • Consent: Where you have given explicit consent for specific processing activities
  • Legitimate interests: For service improvement, security, and fraud prevention
  • Legal obligation: To comply with applicable laws and regulations
  • Vital interests: To protect your safety or the safety of others

3. Information We Collect

Personal Information

We collect the following personal information:

  • Email address (for account creation and communication)
  • Name (optional, for personalization)
  • Age/Date of birth (for age verification and compliance)
  • Payment information (processed securely through Stripe)
  • Account preferences and settings
  • Communication preferences

Images and AI Processing Data

When you use our AI Service, we process:

  • Photos you upload for caricature generation
  • Generated caricature images and variations
  • Custom prompts and style preferences
  • AI processing metadata and generation parameters
  • Quality ratings and user feedback

Usage and Technical Information

We automatically collect:

  • IP address and approximate geolocation
  • Browser type, version, and language settings
  • Device information and operating system
  • Usage patterns, feature interactions, and session duration
  • Referrer information and UTM parameters
  • Error logs and performance metrics
  • Cookie data and tracking preferences

Marketing and Analytics Data

  • Traffic source attribution (UTM parameters, referrers)
  • Conversion tracking and user journey analytics
  • Email engagement metrics (open rates, click-through rates)
  • Social media interaction data
  • A/B testing participation and results

4. How We Use Your Information

Primary Service Functions

  • AI Processing: Generating caricatures from your uploaded images
  • Account Management: Creating and maintaining your user account
  • Payment Processing: Handling transactions and billing through Stripe
  • Content Delivery: Storing and delivering your generated caricatures
  • Customer Support: Responding to inquiries and providing assistance

Communication and Marketing

  • Service Communications: Account updates, security alerts, and service changes
  • Marketing: Promotional emails and product updates (with your consent)
  • Newsletters: Educational content and AI industry insights
  • Surveys: Feedback collection and user experience research

Improvement and Analytics

  • Service Enhancement: Improving AI models and user experience
  • Performance Monitoring: Tracking system performance and reliability
  • Usage Analytics: Understanding user behavior and feature adoption
  • A/B Testing: Testing new features and interface improvements

Security and Compliance

  • Fraud Prevention: Detecting and preventing fraudulent activities
  • Security Monitoring: Protecting against cyber threats and abuse
  • Legal Compliance: Meeting regulatory requirements and legal obligations
  • Content Moderation: Ensuring compliance with community guidelines

5. AI Model Training and Image Processing

🔒 Your Privacy is Protected

We do NOT use your personal photos for training our AI models. Your uploaded images are processed solely for generating your requested caricatures and are never incorporated into our training datasets.

  • Original photos are automatically deleted after generation (within 24 hours)
  • No personal images are used for model improvement without explicit consent
  • AI processing occurs in secure, isolated environments
  • Generated caricatures remain your property

Processing Workflow

  1. Image uploaded and temporarily stored in secure processing queue
  2. AI analysis and caricature generation in isolated environment
  3. Generated result stored in your personal account space
  4. Original uploaded image automatically deleted
  5. Processing logs cleaned of personal identifiers

6. Information Sharing and Disclosure

🛡️ We do not sell, rent, or trade your personal information to third parties.

We may share information only in these limited circumstances:

Service Providers and Processors

  • Payment Processing: Stripe for secure payment transactions
  • Cloud Infrastructure: AWS, Google Cloud for hosting and storage
  • Email Services: SendGrid, Mailchimp for communication
  • Analytics: Google Analytics for usage insights
  • AI Services: OpenAI, Segmind for AI processing

All service providers are bound by strict data processing agreements and GDPR compliance requirements.

Legal Requirements

We may disclose information when required by law, court order, subpoena, or to protect our rights, property, and the safety of our users. We will notify you of such disclosures unless legally prohibited.

Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred. You will be notified of any change in ownership or use of your personal data.

Consent-Based Sharing

We may share aggregated, anonymized usage statistics for research or marketing purposes. Any sharing of identifiable data requires your explicit consent.

7. Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

  • End-to-end encryption in transit (TLS 1.3)
  • AES-256 encryption at rest
  • Secure cloud infrastructure with access controls
  • Regular security audits and penetration testing
  • Automated vulnerability scanning
  • Multi-factor authentication for admin access

Organizational Measures

  • Limited employee access on need-to-know basis
  • Comprehensive staff security training
  • Data handling and privacy policies
  • Incident response and breach notification procedures
  • Regular backup and disaster recovery testing
  • Secure development lifecycle practices

8. Data Retention

Account Data

We retain your account information for as long as your account is active or as needed to provide services. You can request account deletion at any time.

Generated Content

Your generated caricatures are stored indefinitely for your access unless you choose to delete them. You have full control over your generated content.

Uploaded Photos

Original uploaded photos are automatically and permanently deleted within 24 hours of processing completion or failure.

Analytics and Usage Data

Anonymized usage analytics are retained for up to 3 years for service improvement. Personal identifiers are removed after 12 months.

Legal and Compliance Data

Data required for legal compliance or dispute resolution may be retained for up to 7 years as required by applicable law.

9. Your Rights Under GDPR

If you are a resident of the European Union, you have the following rights under the GDPR:

🔍 Right of Access

Request a copy of the personal data we hold about you

✏️ Right to Rectification

Update or correct inaccurate personal information

🗑️ Right to Erasure

Request deletion of your personal data ("right to be forgotten")

📦 Right to Data Portability

Receive your data in a machine-readable format

⏸️ Right to Restriction

Limit how we process your personal information

❌ Right to Object

Object to processing based on legitimate interests

🔄 Right to Withdraw Consent

Withdraw consent for processing where consent is the legal basis

⚖️ Right to Lodge Complaint

File a complaint with your local data protection authority

How to Exercise Your Rights

To exercise any of these rights, contact us at privacy@caricatu.ro

We will respond to your request within 30 days. Some rights may be subject to limitations under applicable law.

10. International Data Transfers

Our primary data processing occurs in the United States. For users outside the US, this constitutes an international data transfer. We implement appropriate safeguards:

  • Standard Contractual Clauses: EU-approved data transfer mechanisms
  • Adequacy Decisions: Transfers to countries with adequate data protection
  • Privacy Shield Alternatives: Data transfer frameworks as available
  • Technical Safeguards: Encryption and security measures during transfer

11. Cookies and Tracking Technologies

Types of Cookies We Use

  • Essential Cookies: Required for basic site functionality
  • Analytics Cookies: Help us understand how you use our site
  • Marketing Cookies: Track your preferences for targeted advertising
  • Preference Cookies: Remember your settings and choices

Cookie Management

You can control cookies through your browser settings. Note that disabling certain cookies may affect site functionality. You can also manage your cookie preferences through our cookie consent banner.

12. Children's Privacy (COPPA Compliance)

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13 without verifiable parental consent.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. We will delete such information from our systems promptly.

Parental Rights

  • Review any personal information collected from your child
  • Request deletion of your child's personal information
  • Refuse to permit further collection from your child
  • Contact our Child Safety Team at legal@caricatu.ro

13. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Information about personal data collection and use
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt out of the sale of personal information (we don't sell data)
  • Right to Non-Discrimination: Equal service regardless of privacy choices

14. Data Breach Notification

In the unlikely event of a data breach affecting your personal information:

  • We will notify relevant supervisory authorities within 72 hours (GDPR requirement)
  • Affected individuals will be notified without undue delay if high risk to rights
  • Notifications will include nature of breach, likely consequences, and mitigation measures
  • We maintain detailed incident response procedures and breach registers

15. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. When we make changes:

  • We will update the "Last updated" date at the top of this policy
  • Significant changes will be communicated via email or prominent notice
  • Continued use of our Service constitutes acceptance of the updated policy
  • Previous versions are archived and available upon request

16. Contact Information

For privacy-related questions, requests, or concerns:

Privacy Team

HAPPYGLOBAL, LLC

131 Continental Dr, Suite 305

Newark, DE 19713, United States

Privacy Officer: privacy@caricatu.ro

Legal: legal@caricatu.ro

Support: support@caricatu.ro

EU Residents: For EU-related privacy matters, you may also contact us at privacy@caricatu.ro

Your Privacy Matters

We are committed to protecting your privacy and maintaining transparency about our data practices. This policy reflects our dedication to responsible AI development and user privacy protection in accordance with international privacy standards.