Esaart ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile applications, Telegram bot or Mini App, developer features, and related services (the "Service"). By using the Service, you acknowledge the practices described in this policy.
We collect information you provide directly and information collected automatically:
We collect information from:
We use your information to:
When you submit prompts or images for AI generation, we process this data to produce outputs. We may use third-party AI providers and infrastructure providers to power models, workflow steps, moderation, transcription, image/video/audio generation, and related features. Inputs and outputs may be stored to provide generation history, account libraries, public sharing, support, safety review, abuse prevention, and service reliability.
We do not use your private content to train third-party foundation models for purposes unrelated to providing the Service, except where you have expressly opted in or where we provide a separate disclosure. Provider processing may be subject to the provider's own data handling commitments and technical requirements.
If you use Telegram, certain prompts, generation requests, status checks, and related metadata may be routed through our Telegram bot infrastructure and stored with thread, session, delivery, or notification context needed to provide the feature.
Some features may analyze faces, people, objects, scenes, audio, or media attributes to provide generation, face comparison, safety, editing, template, or quality features. We use this processing to operate the requested feature, enforce safety rules, detect abuse, and improve reliability.
Do not upload images, voices, or other personal data of another person unless you have the rights and permissions needed to do so. We do not intend to create biometric profiles for identifying individuals across unrelated services.
We use analytics and diagnostic tools to understand how the Service is used, measure feature adoption, troubleshoot failures, detect abuse, and improve reliability. This may include events such as authentication status, onboarding progress, screen views, paywall and purchase flow events, generation success or failure, notification interactions, Telegram bot and Mini App actions, and support actions.
Our analytics payloads are designed to avoid storing raw prompts, message bodies, generated content, or secrets unless needed to provide the Service, investigate abuse, or resolve a support or security issue. Where reasonably possible, we use aggregated, pseudonymous, or minimized event data.
Current analytics and diagnostics may include providers such as external analytics and error reporting tools, where enabled for the relevant environment.
We may share your information with:
We do not sell your personal information. We also do not knowingly share personal information for cross-context behavioral advertising as that term is used in some US state privacy laws. We may share aggregated or de-identified data that cannot reasonably identify you.
If you make a generation, template, profile element, comment, rating, or other item public, the associated content and metadata may be visible to anyone with access to the page or link. Public pages may include output media, prompt excerpts, model or provider details, creator display information, view counts, likes, comments, remix relationships, and similar metadata.
You can make certain items private again where the Service provides that control, but others may have copied, downloaded, screenshotted, or otherwise retained public content while it was available.
We retain your information for as long as your account is active or as needed to provide the Service. Generation history, uploads, chat data, workflow runs, templates, public shares, billing records, Telegram sessions, analytics events, and support records may have different retention periods depending on the feature and legal or operational needs. Temporary files may be deleted automatically, while billing, fraud-prevention, security, audit, and dispute records may be retained longer.
You can request deletion of your account and associated data through your account settings or by contacting us. In some cases, deletion may be processed after a short safety or recovery window, and certain records may be retained where reasonably necessary for legal, security, fraud prevention, billing, dispute-resolution, backup, or operational reasons.
We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, and regular security assessments. However, no method of transmission or storage is 100% secure. You are responsible for safeguarding your account credentials.
Depending on your location, you may have the right to:
You may also be able to request an export of certain account data from within the Service. To exercise your rights, contact us at privacy@esaart.com or through your account settings. We will respond within the timeframe required by applicable law.
Depending on your state, you may have rights to know, access, correct, delete, or receive a portable copy of personal information, and to appeal our decision on a privacy request. Some state laws also provide rights to opt out of sale, sharing, targeted advertising, or certain profiling. We do not sell personal information or knowingly share it for cross-context behavioral advertising.
We will not discriminate against you for exercising privacy rights. To submit a request, contact privacy@esaart.com. We may need to verify your identity before completing a request.
We may send transactional messages about your account, purchases, security, support, generation status, policy changes, or service operations by email, in-app messages, push notifications, or Telegram messages where enabled. You may be able to control some notification preferences in the Service or through your device/platform settings.
The Service is not intended for users under 13. We do not knowingly collect personal information from children under 13. If you are under 18, you should use the Service only with parent or guardian consent where required. If you believe we have collected personal information from a child under 13, please contact us and we will take appropriate steps to delete it.
Your information may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards (e.g., standard contractual clauses) when transferring data from the EEA, UK, or other regulated regions.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after changes constitutes acknowledgment of the updated policy to the extent permitted by law. We encourage you to review this policy periodically.
For privacy-related questions or to exercise your rights, contact us at privacy@esaart.com or through the contact form on our website.
Last updated: May 2026