Privacy Policy

1.1 Information You Provide

• Account Information: Name, email address, username, and password.
• Creative Content: Images, text prompts, slogans, style references, and other assets you upload for AI model training, generation, or product creation.
• Store and Transaction Data: Products you create, list, sell, remix, or purchase; store names; royalty structures; remix lineage metadata; and order details.
• Payment and Payout Information: Billing details, payout preferences, and transaction history processed through our third-party payment processor (currently Stripe). Aively does not directly store full credit card numbers.
• Communications: Messages you send to us through support channels, feedback forms, or email.

1.2 Information Collected Automatically

• Device and Usage Data: IP address, browser type, operating system, device identifiers, referral URLs, pages visited, and actions taken on the platform.
• Cookies and Similar Technologies: Data collected through cookies, web beacons, and related technologies. See Section 11 (Cookie Policy) for details.
• Log Data: Server logs recording requests, timestamps, error reports, and performance metrics.

1.3 Information From Third Parties

We may receive limited information from third-party services you connect to your account (e.g., social login providers) or from our payment processor in connection with transactions.

We use the information we collect for the following purposes:

• Providing the Services: Operating the platform, processing transactions, fulfilling print-on-demand orders, training AI models you authorize, and managing royalty attribution and payouts.
• Account Management: Creating and maintaining your account, authenticating your identity, and providing customer support.
• Platform Improvement: Analyzing usage patterns, diagnosing technical issues, developing new features, and improving platform performance.
• Security and Integrity: Detecting and preventing fraud, abuse, unauthorized access, and other illegal activities; enforcing our Terms of Service.
• Communications: Sending service-related notices (e.g., order confirmations, policy updates) and, where you have opted in, marketing communications.
• Legal Compliance: Meeting obligations under applicable laws, regulations, and legal processes.

We share your information only when necessary to operate the Services, comply with law, or as described below. We do not sell your personal information for monetary consideration.

• Payment Processors: We share transaction and payout data with Stripe (or any successor processor) to facilitate purchases, creator payouts, and fraud prevention.
• Print-on-Demand Partners: Order and shipping details are shared with fulfillment providers (e.g., Printful, Gelato) to produce and deliver physical products.
• Cloud and AI Infrastructure: Uploaded content and platform data are processed by cloud hosting, storage, and GPU compute providers necessary to operate the Services.
• Analytics and Monitoring: We use third-party tools for error tracking, performance monitoring, and usage analytics. These providers receive limited, anonymized or pseudonymized data.
• Legal and Regulatory Authorities: We may disclose information when required by law, subpoena, court order, or government request, or when necessary to protect the rights, property, or safety of Aively, our users, or the public.
• Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

3.1 Publicly Visible Information

Certain information is visible to other users and may be indexed by search engines. This includes your store name, published products, remix attribution chains (showing creator lineage and royalty relationships), and any content you choose to make public. You control the visibility of your store and creative assets through your account settings.

We implement industry-standard technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS) and at rest.
• Role-based access controls limiting who can access user data internally.
• Monitoring and logging of system access for anomaly detection
• Regular review and update of security practices

No system is completely secure. While we take reasonable precautions, we cannot guarantee absolute security of your information.

4.1 Breach Notification

In the event we discover a security breach involving your personal information, we will notify affected users and relevant authorities as required by applicable law. Notification will include a description of the nature of the breach, the categories of information affected, and the steps we are taking in response. We will provide such notice within the timeframes mandated by the laws of your state of residence.

4.2 Subprocessors

We retain your information for as long as reasonably necessary to:

• Maintain your account and provide the Services.
• Comply with legal, tax, accounting, and regulatory obligations.
• Resolve disputes, enforce agreements, and detect fraud.
• Preserve records required for royalty attribution and audit purposes.

If you close your account or request deletion, we will remove or anonymize your personal information within a commercially reasonable timeframe, except where retention is required by law or necessary for legitimate business purposes.

5.1 Retention Guidelines by Category

Depending on your location and applicable law, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal information, subject to legal exceptions.
• Portability: Receive your data in a structured, commonly used, machine-readable format.
• Opt-Out of Marketing: Unsubscribe from promotional emails at any time using the link in any marketing message or through your account settings.
• Restrict or Object: In certain circumstances, limit or object to specific processing activities.
• Withdraw Consent: Where processing is based on consent, withdraw that consent at any time (without affecting the lawfulness of prior processing).

To exercise any of these rights, use our Data Request Form at https://aively.com/data-request or contact us at privacy@aively.com. We will verify your identity before processing your request and respond within the timeframe required by applicable law.

Aively is not intended for children under the age of 13. We do not knowingly collect personal information from anyone under 13. If we become aware that a child under 13 has provided us with personal data, we will take steps to delete that information promptly. If you believe a child has submitted personal information to us, please contact us at privacy@aively.com.

Aively uses automated systems to:

• Generate AI-powered creative outputs (images, product mockups) based on your inputs and trained models.
• Calculate and distribute royalties using the Idenome Protocol’s algorithmic attribution system.
• Moderate content for policy compliance using automated classifiers.
• Recommend content, styles, and products based on usage patterns.

We do not use automated profiling to make legal, employment, credit, or other decisions with significant legal effect on you. If you believe an automated decision has materially affected your account or earnings, you may request a manual review by contacting us at privacy@aively.com.

There is no universal industry standard for responding to “Do Not Track” browser signals. We do not currently alter our data collection or use practices in response to DNT signals.

We do honor Global Privacy Control (GPC) signals from supported browsers in jurisdictions that require it. A GPC signal will be treated as a valid opt-out request for the sale or sharing of personal information. For more information, visit https://globalprivacycontrol.org.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email (at the address associated with your account) or by posting a prominent notice on our website prior to the change taking effect. Your continued use of the Services following notification constitutes acceptance of the updated policy.

11.1 What Are Cookies

Cookies are small text files stored on your device when you visit a website. They allow the site to remember your actions and preferences over time. Similar technologies include web beacons, pixel tags, and local storage.

11.3 Managing Cookies

You can manage your cookie preferences through the cookie consent banner displayed on your first visit, through your account’s Privacy Settings, or by adjusting your browser settings. Non-essential cookies (Performance, Functionality, and Analytics) are only activated after you provide affirmative consent through the cookie banner. You may withdraw or modify your consent at any time. Disabling certain cookies may limit platform functionality.

12.1 What Happens When You Upload

When you upload images or style references for LoRA training, those assets are used to fine-tune a machine learning model that can generate new images reflecting your visual style. This process is computationally irreversible — once a model is trained, the specific training data cannot be extracted from it, but the model may produce outputs that are visually or stylistically similar to your original uploads.

12.2 Your Consent

Before any content is used for model training, you will be presented with a clear consent mechanism. By confirming, you grant Aively a non-exclusive, irrevocable, royalty-free license to use the uploaded content for the purpose of training, deploying, and operating AI models within the Aively platform. You retain all ownership rights to your original uploaded content.

12.3 Derivative Outputs and Attribution

Outputs generated from your trained model may be used by you and, through the remix system, by other creators on the platform. All such uses are tracked through our Idenome Protocol, which maintains attribution lineage and calculates royalty distributions across generations of remixed content.

13.2 Sale and Sharing of Personal Information

We do not sell your personal information in exchange for monetary compensation. However, our use of certain analytics cookies or behavioral advertising tools may constitute “sharing” or “selling” under some state definitions. You may opt out of such sharing by:

• Clicking the “Do Not Sell or Share My Personal Info” link in our website footer.
• Adjusting your Privacy Settings within your account
• Broadcasting a Global Privacy Control (GPC) signal or other recognized universal opt-out mechanism from a supported browser. We honor universal opt-out signals in all jurisdictions that require them.

We do not have actual knowledge that we sell or share the personal information of individuals under 16 years of age.

13.4 How to Exercise Your Rights

You may submit a request through any of the following methods:

• Online: https://aively.com/data-request
• Email: privacy@aively.com

We may require identity verification before fulfilling your request. If you designate an authorized agent to act on your behalf, we may require documentation confirming authorization and valid government-issued identification for both you and your agent.

13.5 Profiling and Automated Processing

To the extent we use automated processing for fraud prevention or content moderation, we are not required to offer opt-out rights under applicable state laws. We do not otherwise use profiling to make legal, employment, credit, or similar decisions affecting you.

13.6 Data Protection Assessments

Where required by applicable state law, Aively conducts data protection assessments for processing activities that present a heightened risk to consumer privacy. These assessments evaluate the benefits and risks of processing, including the use of AI model training, automated content moderation, targeted advertising (if applicable), and the processing of sensitive data. Assessment records are maintained internally and may be made available to a state Attorney General upon lawful request.

13.7 Disclosure of Personal Information

We may disclose the categories of personal information described in Section 13.1 to the following categories of recipients for the business purposes described in this Privacy Policy

• Payment processors (Stripe)
• Print-on-demand fulfillment partners
• Cloud infrastructure and AI compute providers
• Analytics and error monitoring services
• Legal authorities when required by law

13.8 Accessibility

If you need this policy in an alternative format due to a disability or accessibility need, please contact us at privacy@aively.com.

Aively provides a public Data Request Form at https://aively.com/data-request where you can submit requests to access, correct, delete, or obtain a copy of your personal information, or to opt out of certain data uses. We will acknowledge receipt of your request and respond within the timeframe required by applicable law (typically 30–45 days).

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to report a concern:

• Email: privacy@aively.com
• Mailing Address: Aively, LLC, 2108 N St STE N, Sacramento, CA 95816