Privacy Policy

This Privacy Policy explains how [LEGAL ENTITY NAME] (“Vetra,” “we,” “our,” or “us”) collects, uses, shares, and protects personal information when you use vetra3d.com and related services (the “Service”).

By using the Service, you acknowledge that we will process your personal information as described in this Policy. If you do not agree, please do not use the Service. This Policy should be read alongside our Terms of Service.

Information you provide

• Account information: email address and, optionally, your name. If you sign in with a third-party provider, we receive the basic profile information that provider shares with us.
• Billing information: handled by Stripe. We receive a customer reference and metadata about your subscription (status, plan, renewal date); we do not store full payment-card numbers.
• Your Content: prompts, reference images, brand kits, project metadata, and the 3D outputs and snapshots you generate.
• Support communications: when you contact us, we keep a record of your message and our reply.

Information we collect automatically

• Usage data: features used, generation counts, error events, and timestamps.
• Device and log data: IP address, browser type and version, operating system, and similar technical identifiers needed to operate the Service securely.
• Cookies and similar technologies: see the “Cookies” section below.

We use personal information to:

• Provide, operate, secure, and improve the Service;
• Authenticate you and prevent fraud, abuse, and security incidents;
• Process payments and manage subscriptions through Stripe;
• Route your inputs to AI providers to generate the outputs you request;
• Respond to support requests and communicate about the Service (including service alerts, transactional emails, and, where you have consented, product updates);
• Comply with legal obligations and enforce our Terms of Service.

We share personal information only with the providers needed to operate the Service, under contractual data-processing obligations:

• Supabase — authentication, database, and file storage hosting (United States).
• Vercel — web hosting and serverless functions (United States, with global edge presence).
• Stripe — subscription billing and payment processing (United States).
• Anthropic — AI text generation (Claude API) for the studio chat experience.
• Tripo AI — AI 3D mesh generation for outputs you request.
• Email provider — transactional email delivery.

We do not sell your personal information. We may also disclose information when required by law, to protect rights or safety, or in connection with a merger, acquisition, or sale of assets (in which case we will notify you and ensure comparable protection).

We do not use Your Content to train our own foundation models. Your inputs are forwarded to our AI providers (currently Anthropic and Tripo AI) under their respective terms; consult those providers’ policies for how they handle data submitted through their APIs.

We use cookies and similar technologies strictly to operate the Service: keeping you signed in, remembering your preferences, and protecting against abuse. We do not use third-party advertising or cross-site tracking cookies.

You can control cookies through your browser settings. Disabling strictly necessary cookies may prevent you from using parts of the Service (such as sign-in).

We retain personal information for as long as needed to provide the Service and to comply with our legal obligations, resolve disputes, and enforce agreements. When you delete your account, we delete or anonymize associated personal information within a reasonable period, subject to backup retention and legal hold requirements.

We use commercially reasonable administrative, technical, and organizational measures to protect personal information, including encryption in transit (TLS), encryption at rest for stored content, access controls, and provider-level isolation. No method of transmission or storage is perfectly secure; we cannot guarantee absolute security.

Our service providers operate primarily in the United States. If you access the Service from outside the United States, you understand that your information may be transferred to, stored, and processed in the United States and other countries. Where required by law, we rely on appropriate safeguards for such transfers.

Subject to applicable law, you may have the right to:

• Access the personal information we hold about you;
• Correct inaccurate or incomplete information;
• Delete your personal information;
• Export your data in a portable format;
• Object to or restrict certain processing, including direct marketing (which you can unsubscribe from at any time);
• Withdraw consent where processing is based on consent.

To exercise any of these rights, email privacy@vetra.design. We may need to verify your identity before responding. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data-protection authority.

California residents have specific rights under the California Consumer Privacy Act, including the right to know, delete, correct, and opt out of certain disclosures. We do not “sell” or “share” personal information as those terms are defined under California law. To exercise California-specific rights, contact us at privacy@vetra.design.

The Service is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will take appropriate steps to delete it.

We may update this Policy from time to time. We will post the updated Policy on this page and update the “Effective” date. For material changes we will provide additional notice (for example, by email or an in-product notice).

Privacy questions or requests: privacy@vetra.design. General inquiries: hello@vetra3d.com.