Privacy Policy - AI STORY MAKER

[smartslider3 slider=”3″]

Effective Date: October 26, 2025
Website: https://www.storymakerplugin.com/
Owner: Hayan Mamoun / Exedotcom

1. Introduction

2. Information We Collect

Welcome to AI Story Maker (“we,” “us,” “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.storymakerplugin.com/ and use our services.By accessing or using our website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the website.

2.1 Personal Information You Provide

We may collect personal information that you voluntarily provide to us when you:

Register for an Account – Name, email address, username, password
Subscribe to Packages – Email address, domain name, payment information
Contact Us – Name, email address, phone number, message content
Subscribe to Newsletters – Email address, communication preferences
Participate in Surveys or Promotions – Demographic information, preferences, feedback

2.2 Automatically Collected Information

When you visit our website, we automatically collect certain information about your device and browsing behavior:

Log Data – IP address, browser type and version, operating system, referral URLs, pages viewed, time spent on pages, access times and dates
Cookies and Tracking Technologies – Information about your browsing behavior through cookies, web beacons, and similar technologies (see Section 5 for details)
Device Information – Device type, screen resolution, device identifiers
Analytics Data – User behavior, session duration, bounce rates, conversion metrics

2.3 Payment Information

When you purchase subscription packages, we collect:

Billing Information – Name, billing address, email address
Payment Data – Credit card information or payment processor details (processed securely through third-party payment processors)

Note: We do not store complete credit card information on our servers. Payment processing is handled by secure third-party payment processors.

2.4 Plugin Usage Data

When you install and use the AI Story Maker WordPress plugin:

Domain Information – Your WordPress site domain
Subscription Status – Package type, credits remaining, subscription expiration
Usage Metrics – Number of stories generated, API calls made, feature usage

For detailed information about plugin data collection, please refer to our Plugin Privacy Policy.

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision

Provide, operate, and maintain our website and plugin services
Process subscriptions and manage user accounts
Deliver purchased packages and credits
Provide customer support and respond to inquiries
Send transactional emails (order confirmations, subscription updates, technical notices)

3.2 Service Improvement

Analyze usage patterns to improve website functionality and user experience
Develop new features and services
Conduct research and analytics
Perform testing and troubleshooting

3.3 Marketing and Communication

Send promotional emails, newsletters, and marketing materials (with your consent)
Notify you about new features, updates, and special offers
Conduct surveys and collect feedback
Display personalized advertisements

3.4 Security and Compliance

Monitor and prevent fraudulent activities
Enforce our Terms of Service
Comply with legal obligations and respond to legal requests
Protect the rights, property, and safety of our users and third parties

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for collecting and using your personal information depends on the data and context:

Contract Performance – Processing necessary to provide services you’ve requested
Legitimate Interests – Processing for our legitimate business interests (analytics, fraud prevention, service improvement)
Consent – You have given explicit consent for specific purposes (marketing communications)
Legal Obligations – Processing required to comply with legal requirements

5. Cookies and Tracking Technologies

5.1 What Are Cookies?

Cookies are small text files stored on your device that help us improve your browsing experience and provide personalized services.

5.2 Types of Cookies We Use

Essential Cookies (Required)

Session Management – Maintain your login status and shopping cart
Security – Prevent fraud and secure authentication
Load Balancing – Ensure website performance and stability

Functional Cookies (Optional)

Preferences – Remember your language, region, and display settings
User Experience – Enhance navigation and usability

Analytics Cookies (Optional)

Google Analytics – Track website usage, visitor demographics, and behavior patterns
Heatmaps – Understand how users interact with our pages

Marketing Cookies (Optional)

Advertising Networks – Display relevant advertisements based on your interests
Social Media – Enable social sharing features and track social media performance
Retargeting – Show relevant ads to previous website visitors

5.3 Managing Cookies

You can control cookie settings through your browser preferences. However, disabling essential cookies may affect website functionality.How to Manage Cookies:

Chrome: Settings > Privacy and Security > Cookies
Firefox: Options > Privacy & Security > Cookies
Safari: Preferences > Privacy > Cookies
Edge: Settings > Privacy > Cookies

Cookie Consent: Upon your first visit, you’ll see a cookie consent banner allowing you to accept or customize your preferences.

6. Third-Party Services and Data Sharing

6.1 Third-Party Service Providers

We share information with trusted third-party service providers who assist us in operating our website and providing services:

Payment Processors

Stripe – Secure payment processing
PayPal – Alternative payment processing
Stripe Privacy Policy
PayPal Privacy Policy

Analytics and Tracking

Google Analytics – Website analytics and user behavior tracking
Hotjar – Heatmaps and session recordings (if implemented)
Google Analytics Privacy Policy

Email Services

Mailchimp / SendGrid – Newsletter delivery and transactional emails
Mailchimp Privacy Policy

Content Delivery Networks (CDN)

Cloudflare – Website performance and security
Cloudflare Privacy Policy

Cloud Hosting

AWS / Digital Ocean / Other – Website and database hosting
Data stored in secure data centers with industry-standard security measures

6.2 Plugin Integration Services

The AI Story Maker plugin integrates with external APIs:

OpenAI – AI content generation
Unsplash – Royalty-free image retrieval
Social Media Platforms – Facebook, Twitter/X, LinkedIn, Instagram (when configured)

Please refer to their respective privacy policies for information about how they handle data.

6.3 Legal Requirements

We may disclose your information if required by law, subpoena, court order, or government request, or to:

Comply with legal processes
Enforce our Terms of Service
Protect our rights, property, and safety
Prevent fraud or illegal activities

6.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change and your rights regarding your personal information.

7. Data Security

We implement robust security measures to protect your personal information:

7.1 Technical Safeguards

SSL/TLS Encryption – All data transmitted between your browser and our servers is encrypted using industry-standard SSL certificates
Secure Databases – Encrypted storage of sensitive information
Regular Security Audits – Periodic vulnerability assessments and penetration testing
Firewall Protection – Network-level security to prevent unauthorized access

7.2 Administrative Safeguards

Access Controls – Limited employee access to personal data on a need-to-know basis
Employee Training – Regular security awareness and privacy training
Vendor Management – Strict agreements with third-party service providers

7.3 Physical Safeguards

Secure Data Centers – Third-party hosting in secure, monitored facilities
Backup Systems – Regular automated backups with encryption

Note: While we strive to protect your personal information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Data Retention

8.1 Retention Periods

We retain your personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy:

Account Information – Retained while your account is active and for a reasonable period afterward for legal compliance
Transaction Records – Retained for 7 years to comply with tax and accounting regulations
Marketing Data – Retained until you unsubscribe or request deletion
Analytics Data – Anonymized and aggregated data may be retained indefinitely
Server Logs – Typically retained for 30-90 days unless needed for security investigations

8.2 Data Deletion

You can request deletion of your personal information at any time (subject to legal retention requirements). See Section 9 for details.

9. Your Privacy Rights

9.1 General Rights (All Users)

Regardless of your location, you have the following rights:

Access – Request a copy of the personal information we hold about you
Correction – Update or correct inaccurate information
Deletion – Request deletion of your personal information (subject to legal obligations)
Opt-Out – Unsubscribe from marketing communications at any time
Data Portability – Request your data in a structured, machine-readable format

9.2 Additional Rights for EEA/UK Residents (GDPR)

If you’re in the European Economic Area or United Kingdom, you also have:

Right to Restrict Processing – Limit how we use your personal information
Right to Object – Object to processing based on legitimate interests or direct marketing
Right to Withdraw Consent – Withdraw consent for processing that requires your consent
Right to Lodge a Complaint – File a complaint with your local data protection authority

9.3 Additional Rights for California Residents (CCPA)

If you’re a California resident, you have:

Right to Know – Request disclosure of categories and specific pieces of personal information collected
Right to Delete – Request deletion of personal information (with certain exceptions)
Right to Opt-Out – Opt-out of the sale of personal information (Note: We do not sell personal information)
Right to Non-Discrimination – Equal service regardless of exercising privacy rights

9.4 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: privacy@exedotcom.ca
Contact Form: https://www.storymakerplugin.com/contact
Mail: Exedotcom, Attn: Privacy Officer, [Physical Address]

We will respond to your request within 30 days (or as required by applicable law).

10. Children’s Privacy

Our website and services are not intended for children under 13 years of age (or 16 in the EEA). We do not knowingly collect personal information from children.If you believe we have inadvertently collected information from a child, please contact us immediately, and we will take steps to delete such information.

11. International Data Transfers

11.1 Data Transfer Mechanisms

Our servers and service providers may be located in countries outside your jurisdiction. When you use our services, your information may be transferred to:

Canada – Primary business operations
United States – Cloud hosting and third-party services
European Union – CDN and hosting services

11.2 Safeguards

We ensure appropriate safeguards are in place for international transfers:

Standard Contractual Clauses – EU-approved data transfer agreements
Privacy Shield – Compliance with applicable frameworks (where applicable)
Adequate Protection – Transfers only to countries with adequate data protection laws

12. Do Not Track Signals

Some browsers support “Do Not Track” (DNT) signals. Currently, our website does not respond to DNT signals, as there is no universal standard for how to interpret them. We will update this policy if industry standards emerge.

13. Links to Third-Party Websites

Our website may contain links to third-party websites (documentation, social media, partner sites). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors.

14.1 Notification of Changes

When we make material changes, we will:

Update the “Effective Date” at the top of this policy
Notify you via email (for registered users)
Display a prominent notice on our website
Request your consent if required by law

14.2 Review Responsibility

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:Exedotcom – AI Story MakerWebsite: https://www.storymakerplugin.com/Email: privacy@exedotcom.caSupport: support@exedotcom.caCompany Website: https://exedotcom.caPhysical Address: [Add your business address]For plugin-specific privacy questions, please refer to the Plugin Privacy Policy.

Extra Pro Debugging Tip

When implementing this privacy policy on your website, consider these best practices:

Cookie Consent Banner – Implement a GDPR-compliant cookie consent solution (like CookieBot or OneTrust)
Privacy Policy Page – Create a dedicated, easily accessible page linked from your footer
Data Protection Officer – If you process large amounts of EU data, consider appointing a DPO
Regular Audits – Review and update your privacy policy at least annually or when services change
Privacy by Design – Build privacy considerations into new features from the start
Document Everything – Keep records of data processing activities for compliance audits
Test Data Requests – Regularly test your processes for handling user data requests