Remix Lab AI LogoREMIXLABAI

Privacy Policy

Effective Date: June 28, 2026 | Last Updated: June 28, 2026

This Privacy Policy describes how WDM ("we", "us", or "our") collects, uses, and discloses your personal data when you visit or use the Remix Lab AI website and services.

1. Information We Collect

We collect and process the following categories of personal data to provide our self-serve visual variation services:

  • Account Profile Data: Email address, user ID, and auth provider metadata (e.g. Google auth tokens) when you create an account.
  • Uploaded User Assets: Source photographs, product images, and prompt text inputs uploaded via our workspace to generate variations.
  • Generated Outputs: Stylized image variations rendered by our latent diffusion cloud models.
  • Usage Metadata: Available credits balance, model execution metrics, timestamps of generations, and access logs.
  • Billing & Payment Data: Payment checkouts are handled entirely by our Merchant of Record partners. We do not store or process credit card numbers on our servers.

2. Storage, Asset Retention & Purging Procedures

All uploaded source files and generated outputs are stored in private Cloudflare R2 cloud storage vaults. These buckets utilize transitively encrypted channels (TLS 1.3) to protect data transfer. To maintain infrastructure health and protect privacy, files are automatically purged under the following retention schedules:

  • Free Tier Users: Uploaded source images and generated outputs are permanently and automatically deleted 7 days after creation.
  • Paid Subscribers: Uploaded source images and generated outputs are permanently and automatically deleted 30 days after creation.

You can manually purge any individual image from our cloud vaults instantly by clicking the "Delete" button inside your Creations Catalog dashboard.

3. Third-party Subprocessors & Model Training Policy

We integrate with cloud-based subprocessor APIs, databases, and servers to process and store media variations. All partners operate under strict confidentiality and privacy protection agreements.

Model Training Opt-out: Uploaded photos and outputs are strictly processed transitively to execute your specific remix tasks. We enforce a zero-retraining policy: your files are never used to train public, custom, or third-party generative models.

4. Payment Processing & Merchant of Record Data

All checkout and payment transaction services are operated by our Merchant of Record (MoR) partners, Paddle or Creem. Personal details associated with your billing cycle (such as billing address, email, IP address, and transaction context) are processed by these partners under their respective privacy rules.

You can consult the Paddle Privacy Policy and the Creem Privacy terms to understand how they calculate taxes, verify buyer identity, and process billing data safely.

5. Cookies and Analytics

We use simple cookies to maintain your login session. We do not use tracking or advertising cookies. Basic anonymous usage analytics are collected to monitor tool uptime and errors.

6. Your Rights & Data Choices

Under GDPR, CCPA, and applicable global privacy laws, you possess the following rights regarding your personal data:

  • Right of Access: Request a copy of all personal profile information and creations associated with your user ID.
  • Right to Rectification: Request corrections to incorrect account settings.
  • Right to Erasure (De-registration): Submit a request to delete your account entirely. We will wipe your user profile, credit records, logs, and R2 files within 30 days of verification.
  • Right to Restrict Processing: Opt-out of analytics monitoring or transitive cloud processing features.

7. Support Contact Information

If you have questions about your privacy rights, wish to make a data erasure request, or file an appeal, please contact us at:

Support Email: [email protected]

We aim to verify and respond to all privacy-related requests within 3 business days.