Octio

Privacy Policy

Last Updated: July 11, 2025

This Privacy Policy explains how Octio ("Octio," "we," "our," or "us") collects, uses, discloses, and safeguards your information when you use our AI-powered platform and related services available at https://octio.ai ("Services"), including tools for generating AI-based content (e.g., images, videos, documents) and interacting through Octio's interfaces or APIs. This policy applies to all users, including developers and individual end users.

By using Octio, you consent to the practices described in this policy.

1. Information We Collect

Information You Provide Directly

  • Account registration data (name, email, password)
  • Billing/payment information via our payment processors
  • User-generated content, prompts, and inputs
  • Support requests and communication records

Information Collected Automatically

  • Device and log information (IP, browser, OS, activity logs)
  • Usage data (API usage, tool access, content generation stats)
  • Cookies and similar tracking technologies

Third-Party Platforms

  • When signing up or logging in via a third-party platform (e.g., Google, GitHub), we access basic profile info as permitted.

2. Use of Your Information

We use your information to:

  • Provide, maintain, and improve our Services
  • Authenticate your account and manage access
  • Process transactions and provide support
  • Monitor and prevent misuse, fraud, or abuse
  • Send transactional and marketing communications (with opt-out options)
  • Comply with legal obligations (including under applicable data protection laws)

3. Disclosure of Information

We may share your data with:

  • Vendors and service providers (hosting, payment processing, analytics)
  • Law enforcement or regulators when legally required
  • Legal and financial advisors
  • Corporate transactions (e.g., mergers or acquisitions)
  • With your consent or direction

We may also share aggregated or de-identified data that does not reasonably identify you.

4. Prohibited Use & Content

To protect users and the public, Octio prohibits using its platform to generate, promote, or disseminate:

  • Pornographic, explicit, or sexually exploitative content
  • Scam, phishing, impersonation, or fraud-related content
  • Hate speech, violent, discriminatory, or unlawful content
  • Content violating copyright or intellectual property laws

Violation may result in account suspension or permanent bans.

5. User Rights

You may:

  • Access, update, or delete your data at any time by contacting [email protected]
  • Opt out of marketing communications
  • Manage cookie preferences through your browser

6. Data Retention

We retain your information only as long as necessary to fulfill the purposes outlined above or to comply with legal obligations.

7. Security

We take commercially reasonable security measures to protect your data. However, no method of transmission or storage is 100% secure.

8. Regional Privacy Rights

For Users in Other Jurisdictions

If you are located in a jurisdiction not explicitly mentioned above (such as Brazil, India, Australia, or others with comprehensive data protection laws), you may have additional rights under your local laws. These rights may include the right to:

  • Access the personal data we hold about you
  • Request correction or deletion of inaccurate or outdated information
  • Withdraw consent or object to specific types of data processing
  • File a complaint with a local data protection authority

To exercise any such rights, please contact us at [email protected]. We are committed to respecting the data protection principles applicable in your region and responding to your request in accordance with applicable law.

For Users in the European Union (GDPR)

If you are located in the European Economic Area (EEA):

  • You have the right to access, rectify, or erase your personal data.
  • You may object to or restrict certain processing.
  • You have the right to data portability.
  • You may withdraw your consent at any time.
  • Contact your local Data Protection Authority (DPA) for unresolved complaints.

Legal bases for processing under GDPR include:

  • Contractual necessity (e.g., account creation, transaction processing)
  • Legitimate interests (e.g., service improvement, fraud prevention)
  • Compliance with legal obligations
  • Consent (e.g., marketing communications)

Data may be transferred outside the EEA under appropriate safeguards (e.g., standard contractual clauses).

For Users in Canada (PIPEDA)

If you are located in Canada:

  • You have the right to access and correct your personal information.
  • You may withdraw your consent at any time, subject to legal or contractual restrictions.
  • We only collect, use, and disclose personal data for identified and reasonable purposes.
  • Data is stored in data centers that may be located outside Canada.

For Users in California (CCPA)

If you are a California resident:

  • You may request access to or deletion of your personal information.
  • You have the right to know what categories of data we collect and the purposes.
  • You may opt out of the "sale" of personal data (we do not sell personal data as defined by CCPA).
  • You will not be discriminated against for exercising your CCPA rights.

To submit a request, email [email protected] with "CCPA Request" in the subject line.

9. Contact Us

If you have questions about this policy or your privacy rights, email [email protected]