Privacy Policy
...

Privacy Policy

Effective Date: January 18, 2026

GDPR CompliantKVKK Uyumlu

AutoMign is a professional AI service brand operated by Emin Bayraktar and Abdürrahim Çakır, located in Edirne, Turkey.

1. Data We Collect

We collect information to provide and improve our Service. The types of data we collect include:

  • Account Information: Name, email address, and profile picture provided during registration via Clerk authentication.
  • We collect information to provide and improve our Service. The types of data we collect include:: Images, prompts, and videos you upload or generate using AutoMign.
  • Payment Information: Processed securely by Paddle; we do not store credit card numbers.
  • Usage Data: Information about how you interact with our services, including generation history and preferences.

2. Methods of Collection

We collect information through the following methods:

  • Directly from you when you create an account, use our features, or contact support.
  • Automatically through cookies, log files, and similar tracking technologies.
  • From third-party services such as authentication providers (Clerk) and analytics tools.

3. Purpose of Processing

We use your information for the following purposes:

  • To provide, maintain, and improve our AI generation services.
  • To process transactions, manage your account, and credit balance.
  • To send technical notices, updates, security alerts, and support messages.
  • To detect, prevent, and address fraud, abuse, or security issues.
  • To comply with legal obligations and enforce our Terms of Service.

4. Legal Basis for Processing

Under GDPR and KVKK, we process your personal data based on the following legal grounds:

  • Consent: You have given explicit consent for specific processing activities.
  • Contract: Processing is necessary to fulfill our contractual obligations to you.
  • Legitimate Interest: Processing is necessary for our legitimate business interests.
  • Legal Obligation: Processing is required to comply with applicable laws.

5. Data Security

We implement industry-standard technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption in transit (TLS/SSL) and at rest, access controls, and regular security audits. Your uploaded images and generated content are stored securely and accessible only to you.

🔒 All data is encrypted in transit and at rest using industry-standard protocols.

6. Third-Party Data Processors

We share information with trusted third-party service providers who process data on our behalf:

Clerk

Authentication & Identity

Paddle

Payment Processing

AWS

Cloud Infrastructure & Storage

7. Cookie Policy

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for core functionality, authentication, and security.
  • Analytics Cookies: Help us understand how users interact with our Service (Google Analytics).
  • Preference Cookies: Remember your settings and preferences (language, theme).

8. Your Rights

Under GDPR and KVKK, you have the following rights regarding your personal data:

Right of Access

Right to Rectification

Right to Erasure

Right to Data Portability

Right to Restriction

Right to Object

9. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States and the European Union. We ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) and adequacy decisions, to protect your data in accordance with applicable laws.

10. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Generated content is retained in your library for the duration of your account; you may delete content at any time.

11. Children's Privacy

AutoMign is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a minor, we will take steps to delete such information promptly. Parents or guardians who believe their child has provided personal data should contact us immediately.

12. Data Breach Procedures

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach. We maintain incident response procedures to detect, investigate, and mitigate data breaches promptly.

13. Data Controller Contact

For questions or requests regarding your personal data, please contact our Data Protection team:

AutoSign / AutoMign

Data Controller

Istanbul, Turkey

contact@theautosign.com

14. Consent Withdrawal

Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. To withdraw consent, please contact us or adjust your account settings.

15. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Material changes will be communicated through the Service or via email. Your continued use of the Service after such modifications constitutes acceptance of the updated policy.

16. Content Monitoring for Safety

To ensure compliance with our Acceptable Use Policy and the requirements of our payment partners (such as Paddle), we utilize automated tools to scan generated content for safety violations. This monitoring is conducted solely for security, compliance, and platform integrity purposes. We do not use this data for marketing or share it with third parties except as required by law.

Last Updated: January 18, 2026