Privacy Policy

1. Introduction

Variads ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your personal information when you use our services, including our website, desktop application, and related services (collectively, the "Service").

This Privacy Policy is designed to comply with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws in Sweden and the European Union.

2. Data Controller

The data controller responsible for your personal data is:

If you have any questions about this Privacy Policy or our data processing practices, please contact us using the information provided above.

3. Information We Collect

3.1 Information You Provide to Us

• Account Information: When you create an account, we collect your name, email address, password (hashed), and any other information you choose to provide.
• Profile Information: Information you provide in your user profile, including profile pictures, job title, company information, and preferences.
• Content and Creative Assets: Video files, images, audio files, text, graphics, and other creative content you upload to our Service.
• Template and Feed Data: Templates, timelines, cells, compatibility mappings, and feed configurations you create.
• Payment Information: When you make a purchase, our payment processor collects billing information, including credit card details. We do not store full credit card numbers on our servers.
• Communications: Information you provide when contacting us for support, feedback, or inquiries.

3.2 Information We Collect Automatically

• Usage Data: Information about how you use our Service, including pages visited, features used, time spent, and actions taken.
• Device Information: Device type, operating system, browser type, IP address, device identifiers, and screen resolution.
• Log Data: Server logs, error reports, and diagnostic information.
• Location Data: General location information derived from your IP address (country/region level).

3.3 Cookies and Similar Technologies

We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities. For detailed information about our use of cookies, please see our Cookie Policy section below.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

• Contractual Necessity (Article 6(1)(b)): To provide our Service, process transactions, and fulfill our contractual obligations to you.
• Legitimate Interests (Article 6(1)(f)): To improve our Service, ensure security, prevent fraud, and for business operations, provided these interests do not override your fundamental rights and freedoms.
• Consent (Article 6(1)(a)): When you have given explicit consent, such as for marketing communications or non-essential cookies.
• Legal Obligation (Article 6(1)(c)): To comply with legal obligations, such as tax and accounting requirements.

5. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve our Service
• To process transactions and manage your account
• To create, store, and manage your creative assets, templates, and feeds
• To render videos and generate creative variants
• To provide customer support and respond to your inquiries
• To send you service-related communications (account updates, security alerts)
• To send you marketing communications (with your consent)
• To detect, prevent, and address technical issues and security threats
• To comply with legal obligations and enforce our terms of service
• To analyze usage patterns and improve user experience
• To conduct research and development

6. Data Sharing and Disclosure

We may share your personal data in the following circumstances:

6.1 Service Providers

We share data with third-party service providers who perform services on our behalf, including:

• Cloud hosting and storage providers (e.g., Cloudflare R2)
• Payment processors
• Email service providers
• Analytics providers
• Customer support tools

These service providers are contractually obligated to protect your data and may only use it for the purposes we specify.

6.2 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.

6.3 Legal Requirements

We may disclose your data if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of our users or others.

6.4 With Your Consent

We may share your data with third parties when you have given us explicit consent to do so.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other legally recognized transfer mechanisms

You can request more information about the specific safeguards we use for international transfers by contacting us at privacy@variads.com.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our retention periods are as follows:

• Account Data: Retained while your account is active and for 30 days after account deletion, unless legal obligations require longer retention.
• Creative Assets and Content: Retained until you delete them or your account is deleted, unless you have shared them with others or they are part of active feeds.
• Transaction Records: Retained for 7 years as required by Swedish accounting and tax laws.
• Log Data: Retained for up to 12 months for security and troubleshooting purposes.
• Marketing Data: Retained until you withdraw consent or opt-out.

9. Your Rights Under GDPR

As a data subject, you have the following rights regarding your personal data:

9.1 Right of Access (Article 15)

You have the right to obtain confirmation as to whether we process your personal data and to access that data, along with certain information about the processing.

9.2 Right to Rectification (Article 16)

You have the right to have inaccurate personal data corrected and incomplete data completed.

9.3 Right to Erasure ("Right to be Forgotten") (Article 17)

You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the original purpose or you withdraw consent.

9.4 Right to Restrict Processing (Article 18)

You have the right to request that we restrict the processing of your personal data in certain circumstances.

9.5 Right to Data Portability (Article 20)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

9.6 Right to Object (Article 21)

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

9.7 Right to Withdraw Consent (Article 7(3))

When processing is based on consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

9.8 Right to Lodge a Complaint (Article 77)

You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement. In Sweden, the supervisory authority is:

To exercise any of these rights, please contact us at privacy@variads.com. We will respond to your request within one month, though this period may be extended by two additional months if necessary, considering the complexity and number of requests.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and assist with marketing efforts. Cookies are small text files stored on your device.

10.1 Types of Cookies We Use

• Essential Cookies: Required for the Service to function properly. These cannot be disabled.
• Analytics Cookies: Help us understand how visitors use our Service to improve performance.
• Functional Cookies: Remember your preferences and settings.
• Marketing Cookies: Used to deliver relevant advertisements and track campaign effectiveness (with your consent).

10.2 Managing Cookies

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of our Service. You can also manage cookie preferences through our cookie consent banner when you first visit our website.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security assessments and penetration testing
• Access controls and authentication mechanisms
• Secure data centers with physical security measures
• Regular backups and disaster recovery procedures
• Employee training on data protection

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

12. Children's Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If you believe we have collected data from a child under 16, please contact us immediately, and we will take steps to delete such information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

• Posting the updated Privacy Policy on this page
• Updating the "Last updated" date
• Sending you an email notification (for significant changes)
• Displaying a notice on our Service

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

For general inquiries, you can also contact us through our website.