Privacy Policy

1. Introduction

Silva Node AB ("we", "us", or "our") operates Seven (https://seven.silvanode.com), an AI-powered content creation platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using Seven, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our service.

2. Information We Collect

2.1 Personal Information

We collect the following personal information when you create an account:

• Name
• Email address
• OAuth provider information (if signing in with Google, Facebook, etc.)
• Profile picture (if provided via OAuth)

2.2 Usage Information

We automatically collect information about your interaction with our service:

• Content generation requests and prompts
• Generated content (presentations, documents, graphics)
• Credit usage and transaction history
• Subscription plan information
• IP address and device information
• Browser type and version
• Pages visited and features used
• Time and date of visits

2.3 Payment Information

Payment information is processed securely through Stripe. We do not store your complete credit card information on our servers. We retain only transaction IDs and payment status for record-keeping purposes.

3. How We Use Your Information

We use the collected information for the following purposes:

• To provide, operate, and maintain our AI content generation service
• To process your content generation requests
• To manage your account and subscription
• To process payments and manage billing
• To send you service-related communications
• To improve our service and develop new features based on usage patterns
• To detect and prevent fraud or abuse
• To comply with legal obligations
• To send marketing communications (with your consent, which you can withdraw at any time)

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for collecting and using your personal information depends on the data and context:

• Contract Performance: Processing necessary to provide our service
• Consent: You have given consent for marketing communications
• Legitimate Interests: To improve our service, prevent fraud, and ensure security
• Legal Obligation: To comply with applicable laws and regulations

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information with:

5.1 Service Providers

• OpenAI: For AI content generation (subject to OpenAI's privacy policy)
• Stripe: For payment processing
• Supabase: For database and authentication services
• Vercel: For hosting and deployment
• Upstash: For Redis caching and rate limiting

5.2 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Silva Node AB, our users, or others.

6. Data Retention

We retain your personal information for as long as necessary to provide our service and comply with legal obligations. Specifically:

• Account information: Retained while your account is active
• Generated content: Stored for 90 days after creation unless deleted earlier
• Transaction records: Retained for 7 years for tax and accounting purposes
• Audit logs: Retained for 12 months for security and fraud prevention

After deletion, we may retain anonymized or aggregated data for analytics purposes.

7. Your Rights (GDPR)

If you are in the EEA, you have the following rights:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Request limitation of data processing
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, please contact us at privacy@silvanode.com. We will respond within 30 days.

8. Data Security

We implement industry-standard security measures to protect your information:

• Encryption in transit (TLS/SSL)
• Encryption at rest for sensitive data
• Regular security audits and vulnerability assessments
• Access controls and authentication
• Monitoring and logging of security events

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

9. Cookies

We use cookies and similar tracking technologies to improve your experience. For detailed information about the cookies we use, please see our Cookie Policy.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission for transfers outside the EEA.

11. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a prominent notice on our service. Continued use after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

You also have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.