Privacy Policy

1. General Information

The protection of your personal data is a high priority for us. This Privacy Policy explains how SimplyCreate AI UG (haftungsbeschränkt) ("we", "us", or "LexPixel") collects, processes, and uses your information when you visit our website at lexpixel.pro and use our API services.

LexPixel is a product and service provided by SimplyCreate AI UG (haftungsbeschränkt). We are the "controller" within the meaning of the General Data Protection Regulation (GDPR).

2. Controller / Contact

If you have any questions regarding this Privacy Policy or the processing of your personal data, please contact us:

3. Data Collection and Processing

3.1 Website Visitation

When you visit our website, our servers automatically log certain technical information, such as your IP address, browser type, operating system, and the pages you visit. This data is processed to ensure a smooth connection, comfortable use of the website, and for system security and stability.

3.2 Account Registration

To use our API, you must create an account. We collect your email address and name. We use Supabase (a service by Supabase, Inc.) to handle authentication and store your user profile. The legal basis for this processing is Art. 6(1)(b) GDPR (contract performance).

3.3 API Usage and Logs

When you use our API, we process the media files you submit to apply watermarks or metadata. In our "Split-Stream" architecture, we aim to process data with zero-retention where possible. However, we log API call metadata (timestamp, user ID, usage volume) for billing and security purposes.

3.4 Payments

Payment processing is handled by Stripe, Inc. We do not store your credit card information on our servers; it is transmitted directly to Stripe. Stripe provides us with limited information such as the last four digits of your card and your billing address.

4. Third-Party Services

We use selected third-party service providers (processors) to operate our platform. These include:

• Supabase, Inc. (Database and Authentication)
• Stripe, Inc. (Payment Processing)
• Resend, Inc. (Email Communications)
• Modal Labs, Inc. (GPU Compute/Worker Infrastructure)
• PostHog, Inc. (Product Analytics)
• Google Ireland Ltd. (Tag Management and Analytics)

We have entered into Data Processing Agreements (DPA) with these providers to ensure your data is handled securely and in compliance with GDPR.

5. Cookies and Analytics

Our website uses essential cookies that are technically necessary for the platform to function correctly, such as maintaining your login session via Supabase.

With your explicit consent (via our Privacy Preference banner), we also use:

• PostHog: To understand how users interact with our dashboard and API documentation. This helps us improve the user experience.
• Google Tag Manager: To manage and deploy various analytical scripts.

You can manage or withdraw your consent at any time by clearing your browser cookies or clicking the "Privacy Preference" link in the footer.

6. Your Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right to Access: You can request information about the data we store about you.
• Right to Rectification: You can request that we correct inaccurate data.
• Right to Erasure: You can request the deletion of your account and associated data.
• Right to Portability: You can request that we provide your data in a structured, commonly used format.
• Right to Object: You can object to data processing based on our legitimate interests.

To exercise any of these rights, please contact us at info@simplycreate.ai.

7. Updates to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, regulatory, or operational reasons. We will notify you of any significant changes via email or via a prominent notice on our website.