Retiplex App logo
Back to app

Privacy Policy

Last updated: February 9, 2026

1. Introduction

Retiplex ("we", "us", or "our") is an AI-powered video advertisement creation platform based in the Czech Republic. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our service at app.retiplex.com ("Service").

We are committed to protecting your privacy and processing your personal data in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

By using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our data practices, you must not use the Service.

2. Data Controller

Retiplex acts as the data controller for the personal data collected through the Service. For any data protection inquiries, you can contact us at:

3. Personal Data We Collect

3.1 Account Data

When you create an account, we collect:

  • Email address
  • Password (stored as a secure hash — we never store plaintext passwords)
  • Full name (optional, if provided)

3.2 Authentication Data

If you sign in using Google OAuth, we receive your email address and basic profile information (name) from Google. We do not receive or store your Google password.

3.3 Payment and Billing Data

Payments are processed by Polar Inc., which acts as our Merchant of Record. Retiplex does not directly collect, store, or process your payment card information. Polar Inc. collects payment details necessary to process your subscription and one-time purchases. We receive and store:

  • Subscription plan and status
  • Billing cycle dates
  • Transaction history (amounts, dates, product types)
  • Polar subscription and order identifiers

3.4 Usage Data

When you use the Service, we collect data related to your activity, including:

  • Video projects created (names, settings, configurations)
  • Content generation history (requests, status, timestamps)
  • Credit usage and balance information
  • Feature interactions and preferences

3.5 User-Uploaded Content

When you use the Service to create video advertisements, you may upload:

  • Product images and photographs
  • Product videos
  • Product descriptions and other text

3.6 Technical Data

We automatically collect certain technical data when you access the Service, including:

  • IP address
  • Browser type and version
  • Device type and operating system
  • Pages visited and interactions within the Service
  • Referring URL
  • Timestamps of access

4. Legal Basis for Processing

Under the GDPR (Article 6), we process your personal data on the following legal bases:

4.1 Performance of a Contract

We process your account data, subscription information, credit balances, and usage data as necessary to provide the Service, manage your account, process payments, and fulfill our contractual obligations under the Terms of Service.

4.2 Legitimate Interests

We process certain data based on our legitimate interests, including:

  • Analytics and service improvement — to understand how the Service is used and improve its features and performance.
  • Security and fraud prevention — to protect the Service and our users from unauthorized access, abuse, and fraud.
  • Customer support — to respond to your inquiries and resolve issues.

4.3 Consent

Where required by law, we obtain your consent before processing your data for specific purposes such as marketing communications. You may withdraw your consent at any time by contacting us at support@retiplex.com.

4.4 Legal Obligation

We may process and retain certain data to comply with legal obligations, such as tax and accounting requirements.

5. How We Use Your Data

We use your personal data for the following purposes:

  • Providing the Service — Creating and managing your account, processing content generation requests, managing subscriptions and credits.
  • Payment processing — Facilitating subscription billing, credit top-up purchases, and invoicing through Polar Inc.
  • AI content generation — Sending your product information and prompts to AI service providers to generate video advertisements, scripts, and voiceovers on your behalf.
  • Analytics and improvement — Analyzing usage patterns to improve the Service, identify issues, and develop new features.
  • Security — Detecting and preventing fraud, unauthorized access, and abuse of the Service.
  • Communication — Sending you service-related notifications, billing confirmations, and responding to support requests.

6. Third-Party Data Processors

We use trusted third-party service providers to operate the Service. Each provider is bound by data processing agreements and processes data only for the purposes specified below. We may change specific providers within these categories at any time while maintaining equivalent or higher levels of data protection.

  • Payment processing — Polar Inc. acts as our Merchant of Record and processes your email, subscription details, and payment information. Retiplex does not directly store your payment card details.
  • Authentication — We use third-party providers for account authentication and session management. If you sign in with Google, your email and profile name are shared with Google for OAuth authentication.
  • Cloud infrastructure — We use cloud service providers for database hosting, file storage, and application hosting. Your account data, projects, and uploaded files are stored on these services.
  • AI content generation — We use multiple AI service providers for video generation, script writing, voiceover creation, and video processing. Your product information, descriptions, images, and generation prompts may be sent to these providers to generate content on your behalf.
  • Analytics — We use analytics services to understand how the Service is used and to improve it. These services may collect usage events and device information.
  • Security and fraud prevention — We use captcha and bot protection services to prevent unauthorized access and abuse.
  • User feedback — We use a feedback platform to collect feature requests and bug reports. Your user identifier, email, and name may be shared with this provider.

We do not sell your personal data to third parties. Data is shared with processors only as necessary to provide and improve the Service. A complete list of specific sub-processors is available upon request by contacting support@retiplex.com.

7. Cookies and Tracking

The Service uses the following types of cookies and similar technologies:

7.1 Essential Cookies

  • Session cookies (Supabase) — Required for user authentication and maintaining your login session. These cannot be disabled as the Service cannot function without them.

7.2 Functional Cookies

  • Demo mode cookie — Used to remember your demo mode preference. This is a first-party cookie that does not track you across websites.

7.3 Analytics Cookies

  • PostHog analytics — Used to collect anonymized usage data to help us understand how the Service is used and identify areas for improvement. PostHog may set cookies to distinguish users and track sessions.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside of the European Economic Area (EEA), including the United States, where our third-party service providers operate. When such transfers occur, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions by the European Commission for the recipient country.
  • Other lawful transfer mechanisms under applicable data protection law.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account data — Retained while your account is active and for a reasonable period after account deletion to fulfill legal obligations and resolve disputes.
  • Billing and transaction records — Retained for a minimum of 7 years as required by applicable tax and accounting laws.
  • Generated content and projects — Retained until you delete them or your account is terminated, after which they are deleted within a reasonable timeframe.
  • Analytics data — Aggregated and anonymized over time. Individual-level analytics data is retained for up to 24 months.
  • User-uploaded content — Retained while your account is active and deleted upon account termination.

10. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights under the GDPR:

  • Right of Access — You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification — You have the right to request correction of inaccurate or incomplete personal data.
  • Right to Erasure — You have the right to request deletion of your personal data, subject to legal retention requirements.
  • Right to Restriction — You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability — You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object — You have the right to object to the processing of your personal data based on legitimate interests.
  • Right to Withdraw Consent — Where processing is based on consent, you have the right to withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at support@retiplex.com. We will respond to your request within 30 days.

You also have the right to lodge a complaint with your local data protection supervisory authority. In the Czech Republic, this is the Office for Personal Data Protection (UOOU) at www.uoou.cz.

11. Your Rights Under CCPA

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with the following rights:

  • Right to Know — You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete — You have the right to request deletion of your personal information, subject to certain exceptions.
  • Right to Opt-Out of Sale — We do not sell your personal information. Therefore, no opt-out mechanism is required.
  • Right to Non-Discrimination — We will not discriminate against you for exercising your CCPA rights.

To exercise your CCPA rights, please contact us at support@retiplex.com.

12. Children's Privacy

The Service is intended for users who are at least 18 years of age. We do not knowingly collect personal data from individuals under 18. If we become aware that we have collected personal data from a minor, we will take steps to delete such data promptly. If you believe we have inadvertently collected data from a minor, please contact us at support@retiplex.com.

13. Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using TLS/SSL.
  • Secure password hashing — we never store plaintext passwords.
  • Row-level security policies in our database to ensure data isolation between users.
  • Server-side management of API credentials and secrets — sensitive keys are never exposed to the client.
  • Bot protection through hCaptcha on authentication forms.

While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or Service features. We will notify you of material changes by email or by posting a prominent notice within the Service. The "Last updated" date at the top of this policy indicates when it was last revised.

Your continued use of the Service after notification of changes constitutes your acceptance of the updated Privacy Policy.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For data protection inquiries specifically related to GDPR, you may also contact us using the email address above with the subject line "GDPR Request".

If you have any questions about this document, please contact us at support@retiplex.com