SocialSafe, Inc. Privacy Policy

Effective Date: October 18, 2025

 

1. Introduction

Welcome to SocialSafe. SocialSafe, Inc. ("SocialSafe," "we," "us," or "our") provides a suite of applications and services designed to empower you to back up, organize, enhance, and control your digital media content (the "Services"). Our mission is to provide you with a private, secure media vault and to foster a fairer, more transparent creator economy.

 

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website, socialsafe.cloud (the "Website"), our mobile and desktop applications (the "App"), and our related online services.

 

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy and our Terms of Service. This Policy is designed to comply with applicable privacy laws, including the EU and UK General Data Protection Regulation (GDPR/UK GDPR) and the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA).

 

Who We Are and How To Contact Us

Controller: SocialSafe, Inc.

Business Address: 31938 Temecula Parkway, Suite A323, Temecula, CA 92592

Email: [email protected]

 

For questions, requests, or complaints about this Policy or our practices, contact us at the email address above.

 

2. Family and Group Accounts

The primary account holder may create a limited number of additional user profiles for members of their family or group ("Group Members"). The primary account holder is responsible for managing these profiles and ensuring that all Group Members have read and agreed to this Privacy Policy and our Terms of Service.  This policy applies to all users, including the primary account holder and all Group Members. Please note that certain information and account management capabilities may be accessible to the primary account holder. 

 

3. Optional Personalization with Third-Party Data

To provide a more personalized service, we offer you the option to allow us to obtain additional information about you from third-party sources, such as data brokers or your public social media profiles. This feature is entirely optional and requires your explicit consent. If you consent, we will use your email address or phone number to retrieve this data. The information we receive is used solely to enhance and personalize your experience on our platform. We do not share your personal information with data brokers, other than the identifier (email or phone number) necessary to match and retrieve the data. This feature, if enabled by the primary account holder, may apply to all profiles managed under the account. You can manage your consent for this feature at any time in your account settings.

 

4. Personal Information We Collect

We collect personal information to provide and improve our Services. This information can be categorized as Account and Usage Data (information about you and your interaction with our Services) and User Content (the media and data you choose to back up and store with us). We collect this information from three sources: (a) directly from you, (b) automatically through the Services, and (c) from third parties at your direction or with your consent.

 

The table below provides a comprehensive overview of the personal information we collect and process, in a format designed to comply with the CCPA/CPRA's "Notice at Collection" requirements.

Category of Personal Information	Examples	Source(s)	Business or Commercial Purpose(s) for Use	Categories of Third Parties to Whom We Disclose for a Business Purpose	Retention Period or Criteria
Identifiers	Name, email address, phone number, username, unique account ID, IP address, device identifiers. Communications with us, including support requests. Authentication data (such as one-time passcodes and secure tokens from device biometrics).	Directly from you; Automatically from your device.	To create and maintain your account; To authenticate you and secure your account; To communicate with you and send notifications; To process transactions; To provide customer support; To prevent fraud and secure the Services.	Infrastructure Service Providers; Security & Fraud Prevention Partners; Customer Support Providers; Communication Service Providers (for SMS/email).	For the duration of your active account, plus a 30-day period for account recovery. Security-related identifiers (e.g., IP logs) are retained for 180 days.
Customer Records (Cal. Civ. Code § 1798.80(e))	Billing address, telephone number, transaction history, subscription plan details, payment tokens.	Directly from you.	To process payments and manage your subscription; To provide customer support; To comply with financial and legal obligations.	Payment Processors; Financial & Accounting Service Providers.	Transaction records are retained for 7 years to comply with tax and financial regulations.
Commercial Information	Records of products or services purchased, obtained, or considered; purchasing or consuming histories or tendencies.	Directly from you; Automatically from your use of the Services.	To provide the Services you have purchased; To manage your account and subscription; For internal analytics to improve our Services.	Infrastructure Service Providers; Internal Analytics Tools.	For the duration of your active account.
Internet or Other Electronic Network Activity Information	App interactions, log files, diagnostics, crash data, performance metrics, referral URLs, features used, time, frequency, and duration of activities, browser type, operating system, device model, language, time zone.	Automatically from your device and use of the Services.	To monitor, secure, and improve the Services; To troubleshoot issues and provide support; To understand how users interact with our features to guide product development.	Infrastructure Service Providers; Internal Analytics Tools; Security & Fraud Prevention Partners.	Retained for up to 18 months in a pseudonymized form for analytics, then aggregated or deleted. Security logs are retained for 180 days.
Geolocation Data	Approximate location derived from your IP address. Precise geolocation is collected only if you grant permission within the App.	Automatically from your device (approximate); Directly from you with consent (precise).	To provide localized features and content; For security purposes (e.g., detecting suspicious logins); To comply with regional legal requirements.	Infrastructure Service Providers.	Approximate location data is retained with security logs for 180 days. Precise location data is not stored long-term and is used only to provide in-the-moment services.
Audio, Electronic, Visual, or Similar Information ("User Content")	Copies of posts, videos, images, audio, captions, comments, messages, live streams, metadata, thumbnails, and related files you select for backup from third-party platforms.	From third-party platforms, at your direction.	To provide the core backup, storage, and restoration Services; To enable organization, search, and deduplication features within your private vault; To provide AI-powered content enhancement features (e.g., upscaling, translation) if you choose to enable them.	Infrastructure Service Providers (for storage); Our AI Technology Partner (for enhancement features, if enabled).	Retained until you actively delete the content from your vault or close your account.
Voice and Vocal Profile Data	Voice recordings and transcripts from when you activate the microphone for voice commands. A profile of your vocal patterns, including speed, pronunciation, and form of speech, derived from your voice recordings.	Directly from you when you use voice features.	To understand and execute your voice commands (Automated Speech Recognition - ASR). To personalize the Text-to-Speech (TTS) voice to mirror your vocal patterns for an improved user experience.	Infrastructure Service Providers; Our AI Technology Partner.	Voice recordings for ASR are processed ephemerally and not stored. Your vocal profile is retained as part of your user profile until you choose to delete it or close your account.
AR/XR and Environmental Data	Information from your device's cameras and sensors, including head and eye tracking data, body movement information, and data about your physical environment (e.g., room layout and object location via SLAM).	Automatically from your device when you use AR/XR features.	To provide and enable rich, immersive 3D/4D augmented and extended reality (AR/XR) experiences within the app.	Infrastructure Service Providers; Our AI Technology Partner.	This data is processed in real-time to render the AR/XR experience and is not stored, except for temporary caching necessary for performance.
Third-Party Profile and Interest Data	Demographic information, interests, online behavior, and other profile attributes.	From third-party data providers (e.g., data brokers, social media platforms), with your explicit consent.	To personalize and enhance your on-platform experience.	We disclose your email or phone number to data brokers solely for the purpose of matching and retrieving this information.	Retained as part of your user profile until you choose to disable this feature, delete the data, or close your account.
Inferences Drawn from Personal Information	Inferences drawn from your Account and Usage Data or User Content to create a profile reflecting your preferences or characteristics.	Internally generated from your data.	To provide personalized features such as recommended content organization, classification, and deduplication within your vault. We do not create profiles for advertising purposes.	None. Inferences are used internally only.	Inferences are dynamic and are updated or deleted as the underlying data changes or is deleted.
Sensitive Personal Information (SPI)	We do not request SPI directly. However, SPI may be contained within the User Content you back up. Our Services also process data that may be considered SPI under applicable law, including: Biometric Informationsuch as voiceprints derived from your vocal patterns, head and eye tracking data, and secure tokens from device-backed biometrics (e.g., FaceID). We do not collect your raw biometric data (e.g., face scan); this remains on your device.	From third-party platforms, at your direction. From your device, with your consent, for authentication and advanced features.	To provide the core backup and storage Services as directed by you. To authenticate you to your account. To provide advanced features like voice personalization and AR/XR experiences.	Infrastructure Service Providers (for storage); Our AI Technology Partner (for enhancement features, if enabled).	Retained until you actively delete the content or profile data, or close your account. Authentication tokens are processed ephemerally and not stored.

 

5. How We Use Personal Information

We use personal information to:

• Provide, operate, secure, and improve the Services, including backup, restore, organization, search, deduplication, and analytics.
• Authenticate you, secure your account, and manage your access using passwordless methods such as email/SMS codes, device-backed biometrics, and optional two-factor authentication.
• Provide advanced features, such as processing voice commands, personalizing voice interactions, and enabling immersive AR/XR experiences.
• Personalize Your Experience with Third-Party Data (With Your Consent): If you choose to enable this feature, we will use information obtained from third-party sources, such as data brokers, to further personalize and enhance your experience on our platform.
• Detect, prevent, and investigate fraud, abuse, and security incidents, and enforce our Terms of Service.
• Provide customer support and communicate with you about the Services. This includes sending essential service-related notifications (e.g., security alerts, policy updates, contact method verifications) and, with your consent, optional notifications you request (e.g., creator updates, subscription expirations, low balance alerts, and payout status updates). These communications may be sent via email, SMS, or push notification.
• Comply with legal obligations and respond to lawful requests.
• Provide Creator Compensation: A key part of our mission is to create a fair economic model for content creators. We process Usage Data and Commercial Information in an aggregated and anonymized form to calculate and facilitate revenue-sharing payments to verified creators whose content you back up. This process does not involve sharing your personal identifiers with creators.

 

We do not use or disclose sensitive personal information for purposes other than those allowed by applicable law and necessary to provide the Services.

 

6. No Sale or Sharing of Personal Information

• We do not sell personal information.
• We do not share personal information for cross-context behavioral advertising.
• We do not disclose personal information to data brokers, except for the limited purpose of retrieving personalization data with your consent as described in Section 3.
• We do not allow third parties to collect data across the Services for their own advertising or profiling.

 

7. Processing on Your Behalf

When you connect third-party platforms for backup, we process the content you select under your instructions to provide the Services. You are responsible for having the rights to back up that content. We do not claim ownership over your content.

 

8. Legal Bases for Processing (for GDPR/UK GDPR)

If you are located in the European Economic Area (EEA), Switzerland, or the United Kingdom, we rely on the following legal bases to process your personal information:

 

• Performance of a Contract: We process your personal information as necessary to provide the Services you have requested, pursuant to our Terms of Service. This includes creating your account, processing your payments, and providing the core backup, storage, and advanced functionalities.
• Legitimate Interests: We process your information for our legitimate interests, provided these interests are not overridden by your rights and freedoms. This includes securing and improving our Services, preventing fraud, conducting internal analytics, and facilitating our creator compensation model. We have conducted balancing tests to ensure these activities respect your privacy.
• Consent: We rely on your consent for certain processing activities. For example, we will ask for your consent before collecting precise geolocation data, processing data for AR/XR and voice personalization features, obtaining data from third-party sources for personalization, or sending you optional notifications and non-essential marketing communications. You have the right to withdraw your consent at any time.
• Legal Obligation: We may process your information where we have a legal obligation to do so, for example, to respond to a binding legal order or to comply with financial record-keeping laws.

 

9. How We Disclose Personal Information

We are committed to transparency and disclose your information only in the limited circumstances described below:

 

9.1. Service Providers and Contractors

We engage third-party companies and individuals to perform services on our behalf (e.g., cloud infrastructure hosting, payment processing, customer support platforms, security services, and communication delivery). These partners are contractually bound to process your personal information only on our instructions and are prohibited from using it for their own purposes or from selling or sharing it. 

 

9.2. Our AI Technology Partner

To provide our advanced content enhancement features (such as 4K upscaling, multi-language translation, deep content search, AR/XR processing, and voice services), we partner with our sister company and strategic AI technology provider, OOVE™, Inc.When you choose to use these features, your User Content and other relevant data (like sensor or voice data) are processed by OOVE™ on our behalf. This relationship is governed by a strict Data Processing Agreement that contractually requires OOVE™ to:

• Process your data solely to provide the specified AI features for our Services.
• Implement robust technical and organizational security measures to protect your data.
• Refrain from using your data for any other purpose, including for training its own general-purpose AI models.

 

You have control over this processing and can disable AI-powered features in your account settings at any time.

 

9.3. Verified Content Creators

To operate our transparent and fair revenue-sharing model, we provide verified content creators with reports about the performance of their content on our platform. These reports contain aggregated and anonymized data only, such as the total number of times a piece of content has been backed up and the corresponding revenue generated. We do not disclose your personal identifiers, your account information, or a list of specific content you have personally backed up to creators.

 

9.4. Corporate Affiliates

We may disclose information to our corporate affiliates for purposes consistent with this Privacy Policy and to support the provision of integrated services.

 

9.5. Business Transfers

In connection with a merger, acquisition, financing, reorganization, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such deal and outline your choices in that event.

 

9.6. Legal and Safety Reasons

We may disclose your personal information if we believe in good faith that it is reasonably necessary to: (a) comply with a law, regulation, legal process, or governmental request; (b) enforce our Terms of Service, including investigation of potential violations; (c) detect, prevent, or otherwise address fraud, security, or technical issues; or (d) protect against harm to the rights, property, or safety of SocialSafe, our users, or the public as required or permitted by law.

 

10. AI and Advanced Features

We use technology to provide you with powerful features and to improve our Services. This section provides clarity on how we use AI and other advanced technologies.

 

• Content Enhancement: As described above, our partnership with OOVE™, Inc. enables our "Deep Content Analysis" (DCA) engine. This technology analyzes the User Content in your vault—at your direction when you use features like search or translation—to provide the requested results. This processing occurs within a secure environment, and the analysis is used only to serve your request.
• Augmented and Extended Reality (AR/XR) Features: To provide immersive AR/XR experiences, our mobile app may request access to your device's cameras and sensors. This allows us to process information about your movements (like head and eye tracking) and your physical environment (like room layout and object positioning, known as SLAM) in real-time. This data is used solely to render the AR/XR experience and is not stored or used for any other purpose.
• Voice Interaction and Personalization: When you activate the microphone to use voice commands, we use Automated Speech Recognition (ASR) to convert your speech to text to execute your request.  To enhance your experience, we may also analyze your vocal patterns (such as speed and pronunciation) to create a personalized Text-to-Speech (TTS) voice that mirrors your own. This vocal profile is stored as part of your user profile, and you can manage or delete it in your account settings. 
• Internal Service Improvement: We may use pseudonymized or aggregated data to improve our own internal systems and features, such as our content classification and deduplication algorithms. This helps us make the Service smarter and more efficient.
• Our Commitment on AI Model Training: We do not allow your personal information, backed up content, or data from advanced features (like voice or AR/XR) to be used to train third-party foundation models.  Your private vault is your own, and its contents will not be used to build general-purpose AI products.

 

11. Your Privacy Rights and Choices

You have rights and choices regarding your personal information, regardless of where you live. Depending on your location, these may include:

• Right to Access: You can request a copy of the personal information we hold about you.
• Right to Correct (Rectification): You can request that we correct any inaccurate personal information about you.
• Right to Delete (Erasure): You can request that we delete your personal information, subject to certain legal exceptions. You can delete your User Content and other profile data directly within the Services at any time.
• Right to Restrict or Object to Processing: You have the right to object to or request that we restrict certain processing of your personal information.
• Right to Data Portability: You can request your personal information in a structured, commonly used, and machine-readable format.
• Right to Withdraw Consent: Where we rely on your consent to process information, you have the right to withdraw it at any time.
• Control Over Advanced Features: You can choose to enable or disable AI-powered features, AR/XR functionality, and voice personalization in your account settings. If you disable these features, the associated data will not be collected or processed.
• Control Over Notifications: You can manage your preferences for optional email, SMS, and push notifications within your account settings. You may not be able to opt out of essential, non-promotional communications necessary for the security and operation of your account.

 

To exercise any of these rights, please contact us at [email protected]. We will verify your request using the information associated with your account and will not discriminate against you for exercising your rights.

 

12. State-Specific Disclosures (California)

This section provides additional disclosures for California residents under the CCPA/CPRA.

• Notice at Collection: The table in Section 4 of this policy provides a comprehensive "Notice at Collection," detailing the categories of personal information we collect, our purposes for use, the sources, and the third parties to whom we disclose it.
• No Sale or Sharing: We do not "sell" your personal information, nor do we "share" it for cross-context behavioral advertising, as those terms are defined under the CCPA/CPRA.
• Sensitive Personal Information (SPI): As noted in Section 4, we process data that may be considered SPI to provide certain advanced features. We only process this information to provide the Services you request. You have the right to limit the use and disclosure of your SPI. You can exercise this right within your account settings or by contacting us at [email protected].
• Your Rights: California residents have the right to know, access, correct, delete, and limit the use of their personal information. You also have the right to opt out of the sale or sharing of your personal information. To exercise these rights, please contact us at [email protected].
• Authorized Agents: You may use an authorized agent to submit requests on your behalf. We will require written permission from you and will verify the agent's identity.
• Global Privacy Control (GPC): We honor Global Privacy Control signals sent by your browser as a valid request to opt out of any potential future sale or sharing of your personal information.

 

13. Data Security and Retention

We implement administrative, technical, and physical safeguards designed to protect your personal information from unauthorized access, use, or disclosure. These measures include encryption of data in transit and at rest, strict access controls, regular security audits, and secure software development practices. We utilize passwordless authentication to enhance security, meaning we do not store traditional passwords. When you use device-backed biometrics, your biometric data never leaves your personal device. You are responsible for securely storing any recovery codes provided for your account. While no system is perfectly secure, we are committed to continuously improving our security posture.

 

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, as detailed in the retention column of the table in Section 4. Our retention periods are based on the nature of the data, our legal and contractual obligations, and the operational needs of our Services. When you close your account, we will delete or anonymize your personal information in accordance with our retention policies, subject to any legal requirements to retain it for a longer period.

 

14. International Data Transfers

We are based in the United States, and we process and store information in the U.S. and other countries. If we transfer your personal information out of your country of residence, we will implement appropriate safeguards to protect it. For transfers of personal data from the EEA, Switzerland, or the UK, we rely on mechanisms such as the Standard Contractual Clauses (SCCs) approved by the European Commission.

 

15. Children’s Privacy

The Services are not directed to children under the age of 16. We do not knowingly collect personal information from anyone under 16. If you are a primary account holder creating a profile for a child under 16, you are responsible for obtaining verifiable parental consent. If you become aware that a child under 16 has provided us with personal information without such consent, please contact us at [email protected], and we will take steps to delete such information.

 

16. Third-Party Services and Links

The Services may contain links to third-party websites or services. Their privacy practices are governed by their own policies. Please review those policies before providing personal information.

 

17. Automated Decision-Making and Profiling

We do not use automated decision-making that produces legal or similarly significant effects without human involvement. Any personalization features, such as the creation of a vocal profile, are limited to improving your experience within the Services and are subject to your control.

 

18. Changes to This Policy & Contact Us

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make material changes, we will notify you by email (sent to the email address specified in your account), by posting a notice within the Services, or by other means, prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

 

If you have any questions, comments, or concerns about this Privacy Policy or our data practices, please contact us at:

 

SocialSafe, Inc.

Attn: Privacy Officer

31938 Temecula Parkway, Suite A323

Temecula, CA 92592

Email: [email protected]