Privacy Policy

Last updated: January 27, 2026

1. Introduction

Story Glider Limited ("we," "us," or "our") operates StoryGlider.com ("the Service"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information.

Data Controller:

Story Glider Limited

The Watercourse, Central Business District- Zone 2

Mdina Road, CBD 2010, Malta

Registration: C 114108

Email: hello@storyglider.com

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your personal data when you use our Service, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

Email address (required)
Name (optional)
Firebase User ID (unique identifier)
Account role and permissions

2.2 Content and Project Data

When you use our Service, we collect and store:

Script Projects: Video topics, formats, scripts, keywords, audience information, YouTube metadata, AI-generated content, and project configurations
Research Library: Uploaded documents, research queries, content, tags, and search statistics
Ad Templates: Template names, descriptions, and configuration settings
File Uploads: Documents and files you upload to the Service (stored securely in cloud storage)

2.3 Usage Data

We automatically collect information about how you use the Service:

Project creation and modification timestamps
Last viewed dates for projects
Sharing tokens and expiration dates
Feature usage patterns

2.4 Technical Data

We collect technical information automatically:

IP address
Browser type and version
Device information
Cookies and similar tracking technologies (see our Cookie Policy)

3. How We Use Your Information

We use your personal information for the following purposes:

Service Provision: To provide, maintain, and improve our Service
Account Management: To create and manage your account, authenticate you, and provide customer support
Content Processing: To process your content, generate AI-powered scripts and materials, and store your projects
Communication: To send you service-related notifications, updates, and respond to your inquiries
Analytics: To analyze usage patterns, improve our Service, and develop new features
Security: To detect, prevent, and address technical issues, fraud, or security threats
Legal Compliance: To comply with legal obligations and enforce our Terms of Service

We process your personal data based on your consent, the necessity to perform our contract with you, compliance with legal obligations, and our legitimate interests in providing and improving the Service.

4. Data Storage and Security

We use industry-standard security measures to protect your data:

Database: Your account and project data are stored in secure PostgreSQL databases hosted by NeonDB, with encrypted connections
Authentication: User authentication is handled by Firebase (Google), which uses industry-standard security protocols
File Storage: Large files and documents are stored securely in Vercel Blob Storage with access controls
Encryption: Data is encrypted in transit using TLS/SSL and at rest using encryption standards

While we implement appropriate technical and organizational measures to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your information.

5. Third-Party Services

We use the following third-party services that may process your data:

Firebase (Google)

Used for: User authentication, account management, and analytics

Data processed: Email, user ID, authentication tokens, usage analytics

Vercel

Used for: Hosting, file storage (Vercel Blob), and AI Gateway services

Data processed: Content files, project data, API requests

OpenRouter

Used for: AI model access and content generation

Data processed: Prompts, generated content, API usage data

These third-party services have their own privacy policies. We encourage you to review them. We only share data necessary for these services to function and require them to protect your data in accordance with applicable data protection laws.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and store certain information. For detailed information about the cookies we use and your choices regarding cookies, please see our Cookie Policy.

We use Google Analytics (via Firebase) to analyze Service usage. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on or adjusting your browser settings.

7. Your Rights (GDPR)

Under the GDPR and other applicable data protection laws, you have the following rights:

Right of Access: You can request a copy of the personal data we hold about you
Right to Rectification: You can request correction of inaccurate or incomplete data
Right to Erasure: You can request deletion of your personal data ("right to be forgotten")
Right to Restrict Processing: You can request that we limit how we use your data
Right to Data Portability: You can request a copy of your data in a structured, machine-readable format
Right to Object: You can object to processing of your data for certain purposes
Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time

To exercise these rights, please contact us at hello@storyglider.com. We will respond to your request within one month.

You also have the right to lodge a complaint with a supervisory authority, particularly in the EU member state where you reside, work, or where an alleged infringement occurred. In Malta, this is the Office of the Information and Data Protection Commissioner.

8. Data Retention

We retain your personal data for as long as necessary to:

Provide the Service to you
Comply with legal obligations
Resolve disputes and enforce our agreements

When you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal purposes or legitimate business interests.

Project data and content you create may be retained for longer periods if you have shared it with others or if it is necessary for the functioning of shared features.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States, where our third-party service providers operate. We ensure that appropriate safeguards are in place:

Standard Contractual Clauses approved by the European Commission
Data Processing Agreements with third-party providers
Compliance with GDPR requirements for international transfers

By using our Service, you consent to the transfer of your data to these countries.

10. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated Privacy Policy on StoryGlider.com
Updating the "Last updated" date at the top of this page
Sending an email notification to registered users when possible

Your continued use of the Service after such changes constitutes acceptance of the updated Privacy Policy.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Story Glider Limited