Privacy Policy

EFFECTIVE APRIL 22, 2026

This policy explains what VSN AI (operated by VSN Group) collects when you sign in and use the platform, why we collect it, who it's shared with, and the choices you have. Plain language first, details underneath.

1. Who we are

“VSN AI” and “we” refer to the VSN Group team operating the service at app.vsngroup.io. You can reach us any time at ai@vsngroup.io.

2. What we collect

Four categories:

• Account information.Your email address and display name, optionally your avatar. We receive these when you sign in with Google OAuth or via email magic link. We never store passwords — there's no password to store.
• Content you upload or generate. Floor plans, reference images, prompts, and the renderings, camera angles, upscales, and videos produced from them. These are associated with your account so you can revisit them later.
• Billing information.We record which credit top-ups you've purchased and the Stripe session id for each. We do not receive or store your credit card number, CVC, or bank details — those live entirely with Stripe.
• Technical information. IP address, browser user agent, and basic usage events (which pages you visited, which generations succeeded or failed) so we can prevent abuse, fix bugs, and improve the product.

3. How we use it

• Run the service: save your projects, render your prompts, show your credit balance.
• Process payments through Stripe when you top up credits.
• Send you transactional emails: sign-in links, top-up confirmations, significant service events.
• Prevent fraud, rate-limit abuse, and diagnose bugs.
• Improve the product by looking at aggregated, anonymized usage patterns.

We do not sell your data. We don't run ads on the platform.

4. Third parties your data flows through

Running an AI rendering platform means calling specialist vendors. Each of these sees only the data they need to do their job:

• Google (Gemini / Nano Banana)— processes your floor plans, reference images, and prompts to generate photorealistic renderings and camera angles. Bound by Google's enterprise terms; not used for model training.
• fal.ai — processes images sent to the Upscale tool.
• Kling (Kuaishou) — generates video animations from your still renderings.
• Stripe — handles credit-top-up payments. Stores card details on their own infrastructure; we never see them.
• Vercel — hosts the application and runs the serverless functions. Sees IP addresses + user agents as part of normal HTTP routing.
• Neon — our Postgres database provider, stores your account row, credit balance, project list, and ledger.
• HubSpot — only receives data if you submit the lead form on our marketing page (name, email, phone). Signed-in account activity does not flow to HubSpot.
• Google Workspace (Gmail API) — sends our transactional emails (sign-in links, notifications). Does not receive any account content.

Each vendor is obligated by contract or published terms to use your data only for the purpose it's sent to them.

5. Where your data lives

Account records and generated content live on US servers (Vercel + Neon, in the us-east-1 region). AI vendor processing may temporarily route through other regions depending on the vendor's infrastructure; data is not retained by them past the completion of your request.

6. How long we keep it

• Active accounts: for as long as your account exists. You can view your full data at any time from the app.
• Deleted accounts: we purge your account row, projects, and generated content within 30 days of deletion. Ledger entries tied to Stripe payments are retained for accounting and tax purposes for up to 7 years.
• Billing records with Stripe:governed by Stripe's own retention — typically 7 years for tax compliance.

7. Your rights

You can, at any time:

• Access your data by viewing your Projects + Ledger inside the app.
• Correct your display name or email by updating them in your Google account (the source of truth for both).
• Delete your account by emailing ai@vsngroup.io. We'll purge it within 30 days.
• Export your data by emailing the same address — we'll send a machine-readable copy.
• Opt out of any transactional email that isn't critical to service operation.

If you're in the EU, UK, or California, you have additional statutory rights under GDPR / UK GDPR / CCPA respectively — we honor all of them. Contact us and we'll respond within 30 days.

8. Children

VSN AI is built for professional marketing teams. We don't knowingly collect data from children under 13, and our service is not directed at them. If you believe a minor has signed up, contact us and we'll remove the account.

9. Security

We use HTTPS everywhere, encrypt data at rest on Neon + Vercel, and sign our auth tokens with HMAC-SHA256. No system is perfectly secure; we apply reasonable industry-standard measures and respond quickly to vulnerabilities reported to ai@vsngroup.io.

10. Changes to this policy

If we make a material change, we'll update the effective date at the top and, when appropriate, email active users. Continuing to use the service after a change means you accept the updated policy.

11. Contact

Questions, requests, or concerns: ai@vsngroup.io.