1. Introduction
This privacy policy explains what data we collect, how we use it, and what rights you have in relation to your personal data.
2. Data Controller
Maavi is the data controller responsible for processing your personal data.
If required by law, additional company details will be provided upon request.
3. Personal Data We Collect
Account Data
- Email address used for magic link login
- User identifier linked to your account
User-Generated Content
- Text prompts used to generate images
- Generated images
- Uploaded reference images
Business Information
- Company name
- Contact details provided during onboarding or communication
4. Purpose of Processing
- To provide and operate the Maavi service
- To generate AI-based images based on user input
- To store and manage generated and uploaded content
- To enable user account functionality including login, storage, and deletion
- To provide support and respond to inquiries
We do not use your data to train AI models.
5. Legal Basis for Processing
- Performance of a contract for providing the service you signed up for
- Legitimate interest in maintaining and improving service functionality
- Legal obligations such as accounting requirements
6. Data Storage and Retention
- Images, prompts, and uploaded content are stored in Cloudflare R2 storage
- Data is stored without a fixed retention period while your account is active
- Users can delete their images at any time
- When an account is deleted, images, prompts, uploaded files, and associated data are permanently deleted
- Financial records may be retained longer if required by law
7. Third-Party Processors
AI Processing
- Fal AI, used for image generation, including models such as Nano Banana and others
Storage
- Cloudflare R2, used for storing images and user data
These parties may process data on our behalf. We ensure appropriate safeguards are in place.
8. International Data Transfers
Some of our service providers may process data outside the European Economic Area (EEA).
Where this occurs, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses (SCCs)
- Equivalent legal protections
10. Content Safety and Acceptable Use Enforcement
To keep Maavi safe and compliant, we use technical and organizational safeguards to detect and block prohibited content requests and outputs.
- Prompts, uploads, and generated outputs may be analyzed by automated classifiers or policy enforcement systems to prevent NSFW, sexually explicit, nude, sexually suggestive, or otherwise prohibited content
- We may record moderation decisions, blocked requests, and related account signals to investigate abuse, enforce our Acceptable Use Policy, and protect the service
We do not use moderation data to train AI models, but we may retain it for security, legal, and abuse-prevention purposes for as long as reasonably necessary.
11. User Rights (GDPR / AVG)
You have the following rights:
- Right of access to your data
- Right to rectification
- Right to deletion (right to be forgotten)
- Right to restrict processing
- Right to data portability
- Right to object
You can exercise these rights by contacting [email protected].
12. Account and Data Deletion
Users can delete individual images via the application and can also delete their entire account.
When an account is deleted, all associated images, prompts, and uploaded files are permanently removed.
13. Security
We take appropriate technical and organizational measures to protect your data against loss, misuse, or unauthorized access.
14. Use by Businesses
Maavi is primarily offered to business users. If you use Maavi to process personal data of your own customers, you are responsible for ensuring compliance with applicable privacy laws.
15. Changes to This Policy
We may update this privacy policy from time to time. The latest version will always be available on our website.