GDPR Compliance

General Data Protection Regulation

Last Updated: January 1, 2026

NeuroVid Inc. ("Company," "we," "us," or "our") is committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This document explains how we process your personal data and your rights under GDPR.

1. Data Controller

The data controller responsible for your personal data is:

NeuroVid Inc.

Email: mee.cansev@gmail.com

2. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

Contract Performance

Processing necessary to provide our services to you

Consent

You have given explicit consent for specific processing activities

Legitimate Interest

Processing necessary for our legitimate business interests

Legal Obligation

Processing required to comply with legal requirements

3. Categories of Personal Data

Identity Data

  • Apple ID
  • Username

Financial Data

  • Credit balance
  • Purchase history
  • Transaction data

Content Data

  • Uploaded photos (processed temporarily)
  • Generated videos (stored for 7 days)
  • Video metadata

Technical Data

  • Device information
  • App usage data
  • Error reports

Special Category Data

We do not retain, store, or collect any biometric data from uploaded photos. All photos are temporarily processed by our AI service partners for video generation purposes only and are automatically deleted from our systems and our partners' systems after processing is complete. We do not process photos for any other purpose, including facial recognition or identification.

4. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

Right to Access

Request access to your personal data and information about how we process it

Right to Rectification

Request correction of inaccurate or incomplete personal data

Right to Erasure ('Right to be Forgotten')

Request deletion of your personal data under certain circumstances

Right to Restriction of Processing

Request limitation of processing your personal data in certain situations

Right to Data Portability

Receive your personal data in a structured, machine-readable format

Right to Object

Object to processing of your personal data based on legitimate interests

Right to Withdraw Consent

Withdraw your consent at any time where processing is based on consent

Right to Lodge a Complaint

Lodge a complaint with a supervisory authority if you believe your rights have been violated

5. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure such transfers comply with GDPR by implementing appropriate safeguards, including:

Standard Contractual Clauses approved by the European Commission

Adequacy decisions for certain countries

Binding Corporate Rules where applicable

Appropriate technical and organizational measures

6. Third-Party Data Recipients

We share your personal data with the following categories of recipients:

Apple CloudKit

Data synchronization and backup

fal.ai and other AI providers

Video generation processing

Cloudflare Workers

API routing and performance

Firebase

Analytics and crash reporting

RevenueCat

Subscription and payment management

7. Data Retention Periods

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law:

Videos

Automatically deleted after 7 days

Photos

Immediately deleted after video generation

Account data

Retained while account is active

Support communications

Up to 2 years

8. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

Encryption of data in transit and at rest

Regular security assessments and audits

Access controls and authentication mechanisms

Employee training on data protection

Incident response procedures

Regular backups and disaster recovery plans

9. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us using the details below. We will respond to your request within one month, or inform you if we need additional time (up to three months for complex requests).

Contact Information:

Email: mee.cansev@gmail.com

We may need to verify your identity before processing your request. We will not charge a fee for processing your request unless it is clearly unfounded, repetitive, or excessive.

10. Right to Lodge a Complaint

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority. You can find your supervisory authority contact details at: https://edpb.europa.eu

11. Changes to This Document

We may update this GDPR compliance document from time to time. We will notify you of any material changes by updating the "Last Updated" date at the top of this document.

Contact Us

If you have any questions about our GDPR compliance or how we process your personal data, please contact us:

mee.cansev@gmail.com