Privacy Policy

Your data, handled with care

How Noann collects, uses, protects and shares your information.

Last updated: July 7, 2026

1. Introduction

Noann ("Noann", "we", "our", "us") respects your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our website, dashboard, and AI services (collectively, the "Services").

This page is maintained by the Noann team and reflects the current data practices of our platform. It is not an independent audit or certification. By using the Services, you agree to the collection and use of information in accordance with this Policy.

2. Information we collect

We collect the following categories of information:

  • Account data: first name, last name, email address, and password (hashed).
  • Order data: credit bundles purchased, currency, promo codes, chosen payment method.
  • Service inputs: prompts, briefs, files and preferences you submit to AI services.
  • Usage data: pages visited, features used, approximate location derived from IP, device and browser info.
  • Support data: messages you send us and metadata from your requests.

3. How we use your information

  • To create and secure your account and process credit top-ups.
  • To deliver AI outputs based on the inputs you submit.
  • To send transactional messages (order confirmations, payment instructions, receipts).
  • To provide customer support and respond to your inquiries.
  • To improve reliability, quality, and safety of the Services.
  • To comply with legal obligations and enforce our Terms of Service.

4. Legal bases (GDPR)

Where GDPR applies, we process personal data on the basis of (a) contract performance (delivering the Services you request), (b) legitimate interests (security, product improvement), (c) legal obligation (tax and accounting), and (d) consent (optional analytics and marketing communications, which you can withdraw at any time).

5. Sharing and subprocessors

We do not sell your personal data. We share limited data with vetted subprocessors that help us operate the platform, including cloud hosting providers, payment providers, email delivery, error monitoring and AI model providers used to generate outputs.

Each subprocessor is bound by confidentiality and data-protection commitments consistent with this Policy.

6. International transfers

Your data may be processed in countries outside your own. Where required, we rely on appropriate safeguards such as the EU Standard Contractual Clauses to protect cross-border transfers.

7. Data retention

We retain personal data for as long as your account is active and for a limited period afterwards to comply with legal, tax and dispute-resolution obligations. AI outputs and inputs tied to your account can be deleted from your dashboard at any time.

8. Your rights

  • Access, correct, or delete your personal data.
  • Export your data in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent at any time (without affecting prior lawful processing).
  • Lodge a complaint with your local data protection authority.

9. Security

We use encryption in transit (TLS) and at rest, hashed passwords, scoped access controls, and continuous monitoring. No system is 100% secure, but we work to protect your data with modern industry practices.

10. Children

The Services are not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, please contact us and we will delete it.

11. Changes to this policy

We may update this Policy from time to time. Material changes will be announced via the dashboard or by email. Continued use of the Services after an update constitutes acceptance of the revised Policy.

12. Contact

For privacy questions or to exercise your rights, email [email protected].

Questions about this policy? Reach us at [email protected] or visit the Help Center.