Back to site
Legal

Privacy Policy

How Unreel Talent FZCO collects, uses, and protects personal data — across accounts, billing, content, and platform telemetry.

Version 1.0 · Effective April 21, 2026

1. Who we are

Unreel Talent FZCO(“Unreel Talent”, “we”, “us”) is a company registered in the United Arab Emirates under a DMCC Free Zone trade licence. Our registered address is:

Unreel Talent FZCO, DMCC Business Centre, Jewellery & Gemplex 3, Dubai, United Arab Emirates

We are the controller of the personal data described in this policy. For anything related to how we handle your data, you can reach us at privacy@unreeltalent.ai.

2. What we collect

Account data

Email address, display name, password hash, profile preferences.

Billing metadata

Customer ID, subscription status, plan, invoice history, and billing address. Payment card details are collected and stored by Stripe — we never see or store your full card number.

Content you create or upload

Personas, scripts, campaigns, uploaded media, AI-generated outputs, voice/avatar reference assets, and any other content you produce or upload while using the platform.

Connected platform data

When you connect a third-party account (Instagram, TikTok, YouTube, X, Facebook, etc.), we receive the OAuth tokens and the profile, content, and analytics data that you authorise through the platform’s permission screens. We request the minimum scopes required to operate the feature you enabled.

Audience insights and demographics

For connected Instagram Business / Creator accounts (and, where the respective platform APIs allow it, TikTok and YouTube), we pull aggregated audience demographic data made available to you by the platform — for example, follower age bands, gender mix, top countries, and top cities, as well as engaged-audience and reached-audience equivalents where the platform exposes them.

The platforms only return aggregatedstatistics (Meta, for example, hides demographics until an account has at least 100 followers and never exposes individual follower identities). We store a daily snapshot of these aggregates so the creator can see them in their own dashboard over time, and so — across every persona on our network — we can build anonymous network-level insights used to describe our reach to prospective brand partners (“our network reaches X engaged accounts, Y% aged 25–34, Z% in the UAE”).

We never share individually-identifying follower data with brands or other third parties, because the platforms never share it with us.

Device and usage telemetry

IP address, user agent, session identifiers, referring URL, feature usage, error traces, and approximate location (derived from IP). We use this to run the service, detect abuse, and fix bugs.

Cookies and similar technologies

We use strictly necessary cookies for authentication and security. See our Cookies Notice for the full list.

Communications

Messages you send to support, and marketing preferences if you opt in.

3. Why we use it (legal bases)

  • Contract: to provide the platform you signed up for (account, billing, content generation, publishing).
  • Legitimate interests: running the service safely — abuse detection, fraud prevention, product analytics, reliability monitoring.
  • Consent: optional features such as marketing email, referrals, and third-party platform connections. You can withdraw consent at any time.
  • Legal obligation: tax records, regulatory retention, or response to lawful requests.

4. Who we share it with

We do not sell personal data. We share the minimum data required with the following categories of processor, each under contractual data protection terms:

  • Payments: Stripe Payments Europe / Stripe (UAE, where applicable) — billing, subscriptions, Connect payouts.
  • Hosting & database: Vercel, Supabase — application hosting, Postgres storage, object storage.
  • AI providers: OpenAI, Anthropic, Google, HeyGen, Runway, Higgsfield, ElevenLabs, and similar vendors — only the specific inputs needed for each generation request.
  • Social platforms: Instagram, TikTok, YouTube, X, Facebook, LinkedIn — only when you have explicitly connected an account and only within the OAuth scopes you approved.
  • Communications: transactional email delivery and customer support tooling.
  • Analytics & monitoring: privacy-respecting product analytics and error tracking.
  • Professional advisors: auditors, tax advisors, and legal counsel where required.

A current list of our material subprocessors is available on request from privacy@unreeltalent.ai.

5. International transfers

We are based in the UAE and use service providers located in the UAE, the European Union, the United Kingdom, and the United States. Where personal data is transferred outside your jurisdiction, we rely on appropriate safeguards — including Standard Contractual Clauses, adequacy decisions, or equivalent mechanisms recognised under the UAE Personal Data Protection Law (PDPL) and applicable international frameworks.

6. How long we keep it

  • Active account data: while the account is open.
  • Account and content data after cancellation: up to 90 days, then deleted or anonymised (except where longer retention is legally required).
  • Billing and tax records: retained for the period required by UAE law (typically 5 years).
  • Security logs and abuse evidence: retained as long as needed to protect the platform.

7. Your rights

Depending on where you live, you have the right to access, correct, delete, restrict, or object to the processing of your personal data, to receive it in a portable format, and to withdraw consent. These rights are recognised under the UAE PDPL, the EU/UK GDPR, the California Consumer Privacy Act (CCPA/CPRA), and equivalent frameworks.

To exercise any of these rights, email privacy@unreeltalent.ai. We will respond within the timeframe required by the law that applies to you (typically 30 days). If you are not satisfied with our response, you may lodge a complaint with the UAE Data Office or with your local data protection authority.

8. Children

Unreel Talent is not intended for children. You must be at least 18 years old to create an account. If we discover that an account belongs to someone under 18, we will close it and delete the data.

9. Security

We use TLS for data in transit, encryption at rest where provided by our hosting and storage providers, role-based access controls for staff, and audit logging for sensitive operations. No system is perfectly secure, so we maintain an incident response process and will notify affected users of material breaches without undue delay, as required by applicable law.

Security concerns can be reported to security@unreeltalent.ai.

10. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify you by email or in-app notice before they take effect. The effective date at the top of this page reflects the current version.

11. Governing law

This policy is governed by the laws of the United Arab Emirates. Disputes are subject to the exclusive jurisdiction of the DIFC Courts, Dubai, without prejudice to any mandatory consumer protections available to you in your home jurisdiction.

12. Contact

Privacy: privacy@unreeltalent.ai
Support: support@unreeltalent.ai
Security: security@unreeltalent.ai

Unreel Talent FZCO, DMCC Business Centre, Jewellery & Gemplex 3, Dubai, United Arab Emirates