Privacy Policy

Last Updated: December 2025

1. Introduction

EDGEINNOVATE CONSULTING PRIVATE LIMITED ("Company", "We", "Us", "Our", or "Glamore") respects the privacy of our users ("User", "You", or "Your"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our AI-powered image and video generation service (collectively, the "Service").

We are committed to protecting your personal data in accordance with applicable privacy laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant privacy regulations.

By accessing and using Glamore.ai, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Definitions

For the purposes of this Privacy Policy:

Personal Data
Any information relating to an identified or identifiable natural person.
Processing
Any operation performed on Personal Data, such as collection, recording, organization, structuring, storage, adaptation, retrieval, use, disclosure, or erasure.
Controller
The entity (EDGEINNOVATE CONSULTING PRIVATE LIMITED) that determines the purposes and means of processing Personal Data.
Processor
A natural or legal person that processes Personal Data on behalf of the Controller.
User Content
Any images, videos, text, descriptions, or other data you upload to or create through the Service.
AI Outputs
The images, videos, or other content generated by our AI models.

3. Information We Collect

3.1 Information You Provide Directly

Account Registration Information

Full name
Email address
Phone number (optional)
Password (hashed and not stored in plain text)
Company name and business information
Payment information (processed securely by third-party payment processors)
Billing and shipping address
Profile information and preferences

User Content

Product images you upload for processing
Descriptions and style directions you provide
Preferences for image/video generation
Communications with our support team

Communication Information

Emails you send to our support team
Feedback, surveys, and contact form submissions
Chat or chat support conversations

3.2 Information Collected Automatically

Usage Data

IP address and device identifiers
Browser type and version
Operating system
Referring/exit pages
Pages visited and time spent on pages
Device type (mobile, desktop, tablet)
Clickstream data
Login and logout times
Search queries used within the Service

Cookies and Tracking Technologies

Session cookies (deleted upon browser closure)
Persistent cookies (remain on your device)
Web beacons and tracking pixels
Analytics data (via Google Analytics and similar tools)

Mobile Device Information

Device ID
Mobile operating system
Mobile browser type
Unique device identifiers

3.3 Information from Third Parties

Social Media Integration

If you choose to register via third-party services (Google, Facebook, etc.), we may collect:

Your name, email address, and profile picture
Your username for personalization purposes
Any information you authorize these platforms to share

Business Intelligence

Payment processor information
Fraud detection services
Analytics providers

4. Legal Basis for Processing

We process your Personal Data based on the following legal grounds:

4.1 Consent (Article 6(1)(a) GDPR)

Marketing communications
Optional service features
Cookie preferences

4.2 Contract Performance (Article 6(1)(b) GDPR)

Providing the Service
Processing orders and payments
Delivering AI-generated images/videos
Account management
Billing and invoicing

4.3 Legal Obligation (Article 6(1)(c) GDPR)

Complying with tax laws
Responding to legal requests
Maintaining records for dispute resolution

4.4 Legitimate Interests (Article 6(1)(f) GDPR)

Improving the Service and user experience
Preventing fraud and abuse
Security monitoring
Analytics and business intelligence
Marketing (with opt-out rights)
Defending legal claims

5. How We Use Your Information

We use collected information for the following purposes:

5.1 Service Provision

Creating and managing your account
Processing your requests for AI-generated images and videos
Generating and delivering your AI Outputs
Billing and payment processing
Customer support and troubleshooting
Personalizing your experience

5.2 Service Improvement

Analyzing usage patterns and trends
Improving AI model accuracy and output quality
Testing new features and functionality
Conducting research and analytics

5.3 Security and Fraud Prevention

Detecting and preventing fraud
Protecting against unauthorized access
Monitoring for security breaches
Defending against malicious activity
Enforcing our Terms of Service

5.4 Legal Compliance

Complying with applicable laws and regulations
Responding to legal requests from authorities
Maintaining audit trails and records
Resolving disputes

5.5 Marketing and Communications

Sending promotional materials (with your consent)
Service updates and announcements
Customer surveys and feedback requests
New feature notifications

5.6 Aggregated Analytics

Creating anonymized, aggregated reports
Understanding market trends
Benchmarking performance

6. Data Sharing and Disclosure

6.1 Third-Party Service Providers

We share Personal Data with trusted service providers who assist in operating our Service:

Payment Processing

Stripe, Razorpay, or other payment processors
These processors comply with PCI-DSS standards

Analytics and Monitoring

Google Analytics
Hotjar or similar session recording tools
Error tracking services (Sentry, Rollbar)

Cloud Infrastructure

AWS, Google Cloud, or similar providers
Email delivery services (SendGrid, etc.)

Customer Support

Intercom or similar support platforms
Communication tools

AI Model Providers

Third-party AI API providers (if applicable)
These providers comply with data protection standards

Service Provider Obligations

Process data only as instructed
Maintain confidentiality agreements
Implement appropriate security measures
Comply with applicable privacy laws

6.2 Legal Requirements

Court orders or legal process
Government agency requests
Law enforcement inquiries
Subpoenas or warrants
Valid public authority requests

6.3 Business Transfers

In the event of a merger, acquisition, bankruptcy, or asset sale, your Personal Data may be transferred as part of that transaction. We will provide notice before your data becomes subject to a different privacy policy.

6.4 With Your Consent

We will share your Personal Data with third parties only with your explicit consent, which you can withdraw at any time.

6.5 Publicly Available Information

If you voluntarily share information in public areas of the Service (such as testimonials or case studies with permission), this information may be visible to others.

6.6 No Sale of Personal Data

We do not sell, trade, or rent your Personal Data to third parties for marketing purposes.

7. Data Retention

7.1 Retention Periods

Active Account Users

Account information is retained for the duration of your account plus 7 years for tax compliance.

Inactive Accounts

Account data is deleted after 2 years of inactivity. Users will be notified before deletion.

User Content (Uploaded Images)

Retained for 90 days after upload for service delivery
Deleted automatically unless explicitly stored by the user
Can be manually deleted upon request

AI Outputs (Generated Images/Videos)

Delivered to you for download
Retained for 180 days for quality assurance and support
Deleted upon request or after 1 year of inactivity

Payment Records

Retained for 7 years to comply with tax and legal obligations.

Support Communications

Retained for 3 years to handle disputes and service inquiries
Deleted after resolution upon request

Cookies

Session cookies are deleted upon browser closure
Persistent cookies are retained for up to 2 years

Analytics Data

Retained for 26 months for trend analysis
Older data is aggregated and anonymized

Marketing Lists

Retained until you unsubscribe
Automatically removed after 12 months of no engagement

7.2 Secure Deletion

When we delete your data, we use industry-standard methods including:

Secure data erasure and wiping
Cryptographic destruction
Physical destruction of media containing data

8. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your Personal Data.

8.1 Right to Access (GDPR Article 15)

You may request a copy of your Personal Data by contacting us at [email protected].

Process:

Verification of your identity
Provision of a comprehensive overview of your data
Details on purposes, categories, and recipients
Response within 30 days (extendable by 60 days for complex requests)

8.2 Right to Rectification (GDPR Article 16)

You may request correction of inaccurate or incomplete Personal Data.

How to Update:

Log in to your account and update your profile
Contact customer support for assistance

8.3 Right to Erasure (“Right to Be Forgotten”) (GDPR Article 17)

You may request deletion of your Personal Data unless retention is required for:

Legal or regulatory obligations
Contractual necessity
Legal claims or defense
Compelling legitimate interests

Deletion Timeline:

Simple deletions: up to 30 days
Complex deletions: up to 90 days
Mandatory records (e.g., tax data) retained as required by law

8.4 Right to Restrict Processing (GDPR Article 18)

You may request that we limit the processing of your Personal Data while verifying its accuracy or lawfulness.

8.5 Right to Data Portability (GDPR Article 20)

You may receive your data in a structured, commonly used, machine-readable format (CSV or JSON) and transfer it to another provider.

Request Process:

Email [email protected]
Specify your preferred format
Delivery within 30 days

8.6 Right to Object (GDPR Article 21)

You may object to:

Marketing and promotional communications
Processing based on legitimate interests
Automated decision-making and profiling

Opt-Out Methods:

Unsubscribe links in emails
Account preference settings
Contacting customer support

8.7 Rights Related to Automated Decision-Making

You have the right to request human review of decisions made solely by automated means that produce legal or similarly significant effects.

8.8 Right to Lodge a Complaint

You may lodge a complaint with your local data protection authority:

EU: Your local Data Protection Authority
India: State Commissioner / Data Protection Authority (DPDP Act)
United States: State Attorneys General or the FTC

8.9 California Consumer Privacy Rights (CCPA)

California residents have additional rights, including:

Right to Know what personal data is collected
Right to request deletion of personal data
Right to opt out of the sale or sharing of personal data
Right to non-discrimination for exercising privacy rights

9. Data Security

We implement comprehensive security measures designed to protect your Personal Data from unauthorized access, disclosure, alteration, or destruction.

9.1 Security Measures

Technical Controls:

AES-256 encryption for data at rest
TLS 1.2+ encryption for data in transit
Secure HTTPS connections only
Web Application Firewalls (WAF)
DDoS protection mechanisms
Regular security scans and vulnerability assessments

Administrative Controls:

Role-based access control (RBAC)
Principle of least privilege
Mandatory data protection training for staff
Confidentiality agreements with employees
Background checks for personnel handling sensitive data

Physical Controls:

Secure and monitored data center facilities
Access control systems and surveillance
Redundant systems and encrypted backups
Documented disaster recovery and business continuity plans

Incident Response:

24/7 system monitoring and automated alerts
Documented incident response and escalation procedures
Regular penetration testing
Periodic security audits (at least annually)

9.2 Limitations

Important Notice: No method of transmission over the internet or method of electronic storage is completely secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee absolute security. Any transmission of data is at your own risk beyond our reasonable control.

9.3 Breach Notification

In the event of a confirmed data breach, we will take appropriate steps in accordance with applicable laws, including:

Notification to affected individuals without undue delay (typically within 72 hours)
Notification to relevant data protection authorities, where required
Clear information about the nature and scope of the breach
Details on mitigation actions and protective steps taken
Credit monitoring or remediation services, where appropriate

10. Children's Privacy

10.1 Age Restrictions

Our Service is not directed to individuals under the age of 13 (or under 18 in certain jurisdictions). We do not knowingly collect Personal Data from children.

10.2 Parental Consent

If a parent or legal guardian becomes aware that their child has provided us with Personal Data, they should contact us immediately at [email protected].

If we become aware that Personal Data has been collected from a child without verified parental consent, we will:

Immediately delete the child's Personal Data
Take steps to comply with applicable child protection laws
Notify the parent or guardian where required

11. International Data Transfers

11.1 Data Transfer Mechanisms

Your Personal Data may be transferred to and processed in countries outside your jurisdiction, including countries that may not offer the same level of data protection as your home country.

Transfer Safeguards:

Standard Contractual Clauses (SCCs) for cross-border transfers
Adequacy decisions issued by relevant data protection authorities
Your explicit consent where required by law
Implementation of appropriate technical and organizational safeguards

11.2 Processing Locations

We process Personal Data in the following locations:

Our primary data centers (India, United States, European Union)
Facilities operated by third-party cloud service providers
Authorized service provider locations

By using our Service, you acknowledge and consent to the transfer, storage, and processing of your Personal Data outside your country of residence, subject to the safeguards described above.

12. Third-Party Links and Services

Our Service may contain links to third-party websites, applications, and services that are not operated by EDGEINNOVATE CONSULTING PRIVATE LIMITED, including but not limited to:

Social media platforms
Payment providers
Analytics services
Affiliate partners

Disclaimer:

We are not responsible for the privacy practices of third-party websites
We recommend reviewing the privacy policies of any third-party services
We have no control over third-party data collection or usage
Some third-party links may be affiliate links that generate commissions

13. Cookies and Tracking Technologies

13.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us remember your preferences, enhance functionality, and improve your overall experience.

13.2 Types of Cookies We Use

Essential Cookies:

Authentication and login
Security and fraud prevention
Session management
Legal and compliance requirements

Functionality Cookies:

Remembering user preferences
Personalizing content
Saving user settings

Analytics Cookies:

Google Analytics
PostHog
Usage statistics and trends
Performance monitoring

Marketing Cookies:

Retargeting and advertising
Campaign performance measurement
User interest tracking
Third-party advertising networks

13.3 Cookie Management

Browser Controls:

Most browsers allow you to block or decline cookies
You can delete cookies via your browser or device settings
Disabling cookies may affect Service functionality

Opt-Out Options:

Google Analytics Opt-Out: https://tools.google.com/dlpage/gaoptout
Our cookie banner provides granular preference controls

13.4 Do Not Track

If your browser sends a "Do Not Track" (DNT) signal, we respect this preference with regard to third-party advertising and tracking cookies where technically feasible.

14. User Content and Intellectual Property

14.1 Your Rights to Uploaded Content

User Content (Your Uploaded Images):

You retain all ownership rights to images you upload
You grant us a limited license to process and store images for service delivery
You may delete uploaded content at any time
Uploaded content is automatically deleted after 90 days if not downloaded

14.2 AI Outputs (Generated Images/Videos)

Your Rights to AI Outputs:

You own all AI-generated images and videos created through the Service
You have full commercial usage rights
You may use outputs for commercial, advertising, and personal purposes
No attribution or additional licensing is required
AI Outputs may be used in case studies or testimonials only with your consent

Limitations:

Do not claim that you personally created the AI-generated content
Do not use outputs to create competing AI services
Do not violate third-party rights through use of generated content

14.3 Our License to Generated Content

By uploading images to the Service, you grant us a limited right to:

Process images using our AI models
Store images for service delivery and support
Use images to improve our algorithms unless you opt out
Aggregate and anonymize data for analytics and performance insights

14.4 Copyright and Trademarks

Generated outputs must not infringe third-party copyrights or trademarks
You are responsible for ensuring source images comply with applicable laws
We reserve the right to remove content that violates intellectual property rights

15. Marketing Communications

15.1 Email Marketing

We may send marketing communications such as:

Product updates and feature announcements
Promotional offers and discounts
Case studies and success stories
Company news and announcements

15.2 Opt-Out Options

Unsubscribe Methods:

Click the "Unsubscribe" link in any marketing email
Update preferences within your account settings
Email [email protected] with subject "UNSUBSCRIBE"

Processing:

Unsubscribe requests are processed within 10 business days
You will be removed from marketing lists immediately
Transactional and service-related emails may still be sent

15.3 Push Notifications

You may disable push notifications in your browser or device settings
You can manage notification preferences in your account
You may contact support to opt out of push notifications

16. Changes to This Privacy Policy

16.1 Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other operational factors.

When we update:

The updated policy will be posted on our website
The "Last Updated" date will be revised accordingly
For material changes, we will provide prominent notice or request your consent where required

16.2 Your Rights

You are encouraged to review this Privacy Policy periodically
Continued use of the Service after changes constitutes acceptance of the updated policy
If you do not agree with the updated Privacy Policy, you may close your account

17. Contact Us

17.1 Privacy Inquiries

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us using the details below:

Email: hello@glamore.ai

Mailing Address:

Glamore.ai – EDGEINNOVATE CONSULTING PRIVATE LIMITED
316, Woodrow Building
Andheri, Mumbai – 400053

Data Protection Officer (DPO):

Vijay
+91-7021185557

17.2 Response Time

We aim to respond to privacy-related inquiries within 10 business days
Complex or sensitive requests may require additional processing time
You will receive updates regarding the status of your request

17.3 Dispute Resolution

You may file a complaint with the State Commissioner or Data Protection Authority once implemented
You may pursue remedies available under applicable Indian laws

18. Additional Information for Specific Jurisdictions

18.1 European Economic Area (EEA) / GDPR

Your Rights:

All data protection rights described in Section 8 apply
Supervisory authorities in each EU member state have jurisdiction
You have the right to seek judicial remedies for data protection violations
We comply with GDPR requirements across all Personal Data processing activities

18.2 California (CCPA / CPRA)

Additional Rights for California Residents:

Right to disclosure of data collection and usage practices
Right to request deletion of personal information
Right to opt out of the sale or sharing of personal data
Right to correct inaccurate personal information
Right to limit use and disclosure of sensitive personal information
Rights related to automated decision-making with significant effects

Shine the Light Law:

We do not share personal information with third parties for their direct marketing purposes, in compliance with California's "Shine the Light" law.

18.3 India

Compliance:

We comply with the Information Technology Act, 2000 and related rules
We are preparing for compliance with the Digital Personal Data Protection (DPDP) Act, 2023
You are entitled to rights under applicable Indian data protection laws

19. Appendix A: Third-Party Service Providers

The following third-party service providers may access your data:

Service	Purpose	Privacy Policy
Razorpay	Payment Processing	See provider's policy
Google Analytics	Analytics	https://policies.google.com/privacy
AWS / Google Cloud	Cloud Infrastructure	See provider's policy
SendGrid	Email Delivery	https://www.twilio.com/en-us/legal/privacy
Intercom	Customer Support	See provider's policy

20. Document Version and History

Current Version: 1.0
Effective Date: December 2025
Last Updated: December 16, 2025

This Privacy Policy is legally binding and constitutes an agreement between you and EDGEINNOVATE CONSULTING PRIVATE LIMITED. By using our Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

End of Privacy Policy