1. What we collect
Account: email, hashed password (via Supabase Auth), display name, locale.
Voice: audio samples you upload, derived voice clone IDs from ElevenLabs.
Content: stories, scripts, lullabies, and other creations you make.
Generated audio: MP3 files cached to our storage to avoid re-billing TTS.
Billing: Stripe customer ID, subscription status, last 4 digits of card (Stripe holds the full payment data).
Usage: which features you use, basic logs (IP, timestamp). No third-party analytics or ad tracking by default.
2. Why we process it
To operate the service (generate audio with your voice clone), authenticate you, charge for paid plans, send transactional emails, comply with legal obligations, and prevent abuse.
3. Where data lives
Supabase (Postgres + Storage) — primary database.
ElevenLabs — voice clone models and inference.
Stripe — payments and subscriptions.
Resend — transactional emails.
Anthropic — story and script generation (text only; no voice samples).
We never sell your data.
4. Your rights (LGPD / GDPR)
You can access your data, correct it, delete your account and derived data, export your content, and object to specific processing. Submit requests to privacy@voxhug.com. We respond within 15 days (LGPD) or 30 days (GDPR).
5. Voice clones — special category
Voice samples are biometric data under LGPD/GDPR. We process them only for the purpose you uploaded them (creating audio with that voice) and store them on ElevenLabs under a data processing agreement. You can delete a voice clone anytime from Voices → ⋯ → Delete. Deletion removes the model from ElevenLabs within 24 hours.
6. Retention
Active accounts: data kept while subscription is active.
Canceled accounts: voice clones deleted within 30 days; stored audio deleted within 90 days; profile and billing records kept 5 years for tax and legal compliance.
You can request immediate deletion of derived data anytime.
7. Children's privacy
VoxHug is not for users under 13. If you use VoxHug for a child's benefit (e.g., a parent recording bedtime stories for their child), the account holder must be a parent or legal guardian. We do not knowingly collect personal data from children directly.
8. Cookies
We use a session cookie for authentication and a locale cookie for language preference. No advertising or third-party tracking cookies. Stripe Checkout sets its own cookies during payment.
9. Security
All traffic is HTTPS. Passwords are hashed by Supabase Auth (argon2). Voice and audio storage uses signed URLs with short TTL. We do not have access to your raw payment data — only Stripe metadata. Report security concerns to security@voxhug.com.
10. International transfers
Data may be processed by global service providers (Supabase, Stripe, ElevenLabs, Anthropic, Resend) under standard contractual clauses (SCCs) and equivalent international data-transfer safeguards.
Questions? Reach us at privacy@voxhug.com