Key Points

• 18+ only. We do not allow or knowingly process data of minors.
• Adult content and sensitive data. Your activity on an adult platform can reveal information about your sex life or sexual orientation. Where required, we rely on your explicit consent to process such data.
• No third-party ad networks. We don't run external ad networks on WildTwin.ai.
• Your rights. You have GDPR/EEA rights (access, erase, port, object, restrict, withdraw consent, and more).
• International transfers. We use approved safeguards (e.g., Standard Contractual Clauses) for transfers outside the EEA/UK.

Data We Collect

A. Data you provide

• Account & profile: email, username/handle, password (hashed), country, age-affirmation, preferences.
• Purchases: subscription choices, amounts, currency, timestamps, renewal settings.
• Communications: support tickets, reports, messages (not end-to-end encrypted).

B. Data we collect automatically

• Device/usage: IP address, device identifiers, OS/browser, pages viewed, interactions.
• Security/fraud signals: login patterns, risk scores, approximate location.
• Cookies/SDKs: essential cookies for login and security; analytics for product improvement.

Why We Use Your Data

• Provide the service: Account creation, login, display of purchased content.
• Payments & billing: Process payments, taxes, receipts, fraud handling.
• Safety & compliance: Age-gating, policy enforcement, content moderation.
• Personalization: Recommend creators/content, remember preferences.
• Analytics: Measure features, debug, quality improvements.

Sharing Your Data

We share personal data only as needed:

• Payment processors: To process transactions, prevent fraud.
• Cloud & infrastructure providers: Hosting, storage, CDN.
• Product tools: Analytics, support, email delivery.
• Safety & moderation: Content scanning, anti-abuse.
• Legal and law enforcement: When required by law or to protect safety.

We do not sell personal data.

Your Rights (GDPR)

You can exercise these rights via Settings or by contacting us:

• Access your data and get a copy
• Rectify inaccurate or incomplete data
• Erase your data ("right to be forgotten")
• Restrict or object to processing
• Data portability
• Withdraw consent at any time
• Lodge a complaint with a supervisory authority

Retention

We retain data only as long as necessary:

• Account data: Life of account + up to 24 months after closure.
• Transactions & tax records: Up to 10 years (statutory/accounting).
• Logs & security data: 12–24 months depending on risk.
• Support tickets: 24 months after resolution.

Security

We use appropriate technical and organizational measures, including encryption in transit/at rest where applicable, access controls, network segmentation, monitoring, and staff training.

Contact Us

• Data requests & questions: contact@wildtwin.ai
• Security reports: security@wildtwin.ai
• Postal: Tensor Factory sàrl-s, Luxembourg

Scope & Roles

We are the data controller for Creator account data, monetization/payout operations, safety/moderation, and AI model operations. Payment processors, banks, KYC/identity verification providers, and tax authorities act as independent controllers for their processing.

Data We Collect

A. Identity, Compliance & Payments

• KYC/AML: full name, date of birth, nationality, address, phone, email, government ID data, ID images/selfies (liveness checks may create biometric templates), sanctions/PEP screening.
• Payouts & tax: bank/IBAN/SWIFT or payout wallet IDs, tax residency, tax forms, VAT/TIN, invoices.

B. Profile & Content Operations

• Creator profile: handle, display name, avatar, bio, pricing, bundles.
• Uploads & AI generation: media you upload, prompts, generation logs, watermarks.
• Training data: datasets or samples you provide for training your AI persona(s).

C. Safety & Moderation

• Reports & enforcement: policy reports, strike/appeal history, geo-restriction flags, takedown notices.

D. Usage, Device & Support

• Device/usage: IP address, device identifiers, OS/browser, feature usage.
• Security/fraud: login patterns, risk scores, chargeback risk signals.
• Comms: support tickets, DMs/comments (not end-to-end encrypted).

Special categories: Your content and training data may reveal sex life/sexual orientation and may contain biometric data (face/voice). Where required, we process these only with your explicit consent.

Why We Use Your Data

• Operate your Creator account: onboarding, login, profile, pricing, subscriptions (Contract performance).
• Payouts & accounting: payments to you, invoices, tax forms, anti-fraud (Contract, Legal obligations).
• KYC/AML & sanctions screening: identity verification, liveness/biometric checks (Legal obligations, Legitimate interests).
• Safety & policy enforcement: moderation, geoblocking, takedowns (Legitimate interests, Legal obligations).
• AI training & personalization: training models on your consented data (Explicit consent for special categories).
• Analytics & product improvement: feature measurement, reliability (Legitimate interests).

Sharing Your Data

We share personal data only as needed:

• KYC/AML provider(s): identity verification, liveness/biometric checks, sanctions screening.
• Payment processors/banks: payouts, chargebacks, regulatory screening.
• Tax & accounting: tax authorities (as required), accountants, auditors.
• Cloud & infra: hosting, storage, CDN, logging/monitoring.
• Safety & rights enforcement: content scanning, hash-matching, rights/privacy claim processing.
• Legal/law enforcement: where required by law or to protect safety.

We do not sell personal data and do not run cross-site advertising networks.

AI Training, Watermarking & Your Choices

• Training toggles: You can opt-in or opt-out of allowing your uploads to be used to train (i) your own AI persona(s) and (ii) platform models that improve quality/safety.
• Sensitive content: Where training involves special-category data, we rely on your explicit consent. You can withdraw consent at any time.
• Derivatives: Model weights trained on prior data are not generally reversible. On withdrawal, we exclude your data from future training runs.

Automated Decisions & Profiling

We use automated systems to:

• Verify identity (KYC risk scores, liveness match)
• Prevent fraud (chargeback risk, payout holds)
• Moderate content (hash-matches, classifiers)
• Geo-restrict where required by law
• Recommend creators/content to Fans

Where decisions could produce legal or similarly significant effects, you may request human review and contest the decision.

Retention

• KYC/AML: typically 5–10 years after account closure (jurisdiction-dependent).
• Payouts & tax: up to 10 years (statutory/accounting).
• Moderation & enforcement logs: 3–5 years after last action.
• Generation & training logs: operational logs 24 months; model artifacts retained per policy.
• Support & communications: 24 months after resolution.

Your Rights (GDPR)

You can exercise these via Settings or by contacting us:

• Access and obtain a copy of your data
• Rectify inaccurate or incomplete data
• Erase data (subject to legal retention obligations)
• Restrict or object to processing, including profiling
• Data portability
• Withdraw consent at any time
• Human review of significant automated decisions
• Lodge a complaint with a supervisory authority

Security

We use appropriate technical and organizational measures, including encryption in transit/at rest where applicable, access controls, network segmentation, monitoring, and staff training. No system is 100% secure; we maintain incident response processes and will notify regulators and users of data breaches as required by law.

Contact Us

• Data requests & questions: contact@wildtwin.ai
• Security reports: security@wildtwin.ai
• Postal: Tensor Factory sàrl-s, Luxembourg