Privacy Policy

1. Introduction

Esaart ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, applications, and services (the "Service"). By using the Service, you acknowledge the practices described in this policy.

2. Information We Collect

We collect information you provide directly and information collected automatically:

  • Account information: Email, name, profile photo when you sign up or connect via third-party auth (e.g., Google, Apple)
  • Telegram integration data: Telegram user ID, chat ID, public username, language preference, linked topic/thread identifiers, onboarding state, and notification preferences when you use our Telegram bot or Mini App
  • Content: Prompts, reference images, and other inputs you submit to generate AI content
  • Usage data: Features used, generation history, device and browser information
  • Product analytics and diagnostics: Screen views, feature usage, session identifiers, app version, device platform, subscription/paywall events, notification interactions, support interactions, and operational error events
  • Payment data: Processed by our payment providers; we do not store full card numbers

3. How We Use Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process your requests and generate AI content
  • Manage your account, credits, and subscriptions
  • Authenticate and operate Telegram bot, thread, Mini App, and notification features
  • Operate mobile and web analytics, funnels, performance monitoring, and diagnostics
  • Send transactional emails and support communications
  • Detect and prevent fraud, abuse, and security issues
  • Review policy violations, administrative actions, and account safety events
  • Comply with legal obligations
  • Analyze usage to improve our products (in aggregated form)

4. AI Content Processing

When you submit prompts or images for AI generation, we process this data to produce outputs. We may use third-party AI providers to power our models. Inputs and outputs may be stored to provide your generation history, support account features, and maintain or improve the Service. We do not use your content to train third-party models for purposes unrelated to providing the Service, except where you have expressly opted in or as otherwise disclosed in our data processing terms.

If you use Telegram, certain prompts, generation requests, status checks, and related metadata may be routed through our Telegram bot infrastructure and stored with thread, session, delivery, or notification context needed to provide the feature.

5. Analytics & Diagnostics

We use analytics and diagnostic tools to understand how the Service is used, measure feature adoption, troubleshoot failures, detect abuse, and improve reliability. This may include events such as authentication status, onboarding progress, screen views, paywall and purchase flow events, generation success or failure, notification interactions, Telegram bot and Mini App actions, and support actions.

Our analytics payloads are designed to avoid storing raw prompts, message bodies, generated content, or secrets unless needed to provide the Service, investigate abuse, or resolve a support or security issue. Where reasonably possible, we use aggregated, pseudonymous, or minimized event data.

6. Data Sharing

We may share your information with:

  • Service providers: AI model providers, cloud hosting, payment processors, analytics
  • Platform integrations: Telegram and related delivery infrastructure when needed to operate the bot, Mini App, onboarding, message delivery, and notifications
  • Legal requirements: When required by law, court order, or government request
  • Business transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information. We may share aggregated or de-identified data that cannot reasonably identify you.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Generation history and uploaded content may be retained according to our storage policies. You can request deletion of your account and associated data through your account settings. In some cases, deletion may be processed after a short safety or recovery window, and certain records may be retained where reasonably necessary for legal, security, fraud prevention, billing, dispute-resolution, backup, or operational reasons.

8. Security

We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, and regular security assessments. However, no method of transmission or storage is 100% secure. You are responsible for safeguarding your account credentials.

9. Your Rights

Depending on your location, you may have the right to:

  • Access and receive a copy of your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict certain processing
  • Data portability
  • Withdraw consent where processing is consent-based
  • Lodge a complaint with a supervisory authority

You may also be able to request an export of certain account data from within the Service. To exercise your rights, contact us at [email protected] or through your account settings. We will respond within the timeframe required by applicable law.

10. Cookies

We use cookies and similar technologies to maintain sessions, remember preferences, analyze usage, and improve the Service. You can control cookies through your browser settings. Disabling certain cookies may affect functionality.

11. Children's Privacy

The Service is not intended for users under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us and we will delete it promptly.

12. International Data

Your information may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards (e.g., standard contractual clauses) when transferring data from the EEA, UK, or other regulated regions.

13. Changes to Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after changes constitutes acknowledgment of the updated policy to the extent permitted by law. We encourage you to review this policy periodically.

14. Contact

For privacy-related questions or to exercise your rights, contact us at [email protected] or through the contact form on our website.

Last updated: March 2026