Editby Logo
Join waitlist

Privacy policy

How we handle your data

Last updated: January 17, 2025

1. Introduction

Editby ("we," "our," or "us") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered content creation platform.

Please read this Privacy Policy carefully. By using our Service, you consent to the practices described in this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Account name and display name
  • Profile picture (optional)
  • Account type (personal or team)
  • Authentication credentials

2.2 Brand and Content Data

To provide our services, we collect and store:

  • Brand Information: Brand names, descriptions, tone of voice guidelines, brand guidelines, and language preferences
  • Campaign Data: Campaign names, descriptions, status, and scheduling information
  • Documents: Content you create or generate, including blog posts, social media content, newsletters, and other marketing materials
  • AI Agent Configuration: Agent settings, topics, content type preferences, and scheduling parameters

2.3 AI Processing Data

Our AI agents may collect and process:

  • Research data gathered during content generation (publicly available information)
  • Search parameters and queries used by AI agents
  • Agent execution logs and error information
  • Generated content and drafts

2.4 Team and Collaboration Data

For team accounts, we collect:

  • Team member information and roles
  • Invitation records
  • Permission and access level data
  • Activity logs for audit purposes

2.5 Payment Information

For paid subscriptions, payment information is processed by our third-party payment processor (Stripe). We do not store complete credit card numbers on our servers. We may store:

  • Billing name and address
  • Last four digits of payment card
  • Subscription status and history
  • Transaction records

2.6 Automatically Collected Information

When you use our Service, we automatically collect:

  • IP address and approximate location
  • Browser type and version
  • Device information
  • Usage patterns and feature interactions
  • Session duration and activity timestamps

3. How We Use Your Information

We use your information to:

  • Provide the Service: Create and manage your account, process brand guidelines, generate content, and run AI agents
  • Improve AI Quality: Analyze usage patterns to improve content generation accuracy and relevance
  • Process Payments: Handle subscription billing and payment processing
  • Communicate: Send service updates, security alerts, and support messages
  • Ensure Security: Detect and prevent fraud, abuse, or unauthorized access
  • Legal Compliance: Comply with applicable laws and respond to legal requests

4. Data Sharing and Disclosure

We may share your information with:

4.1 Service Providers

We work with third-party service providers who assist in operating our Service:

  • Supabase: Database hosting, authentication, and backend services
  • Stripe: Payment processing and subscription management
  • Cloudflare: Security services and bot detection (Turnstile)
  • Upstash: Task scheduling and workflow orchestration for AI agents
  • Analytics providers: Usage analytics and performance monitoring

4.2 Legal Requirements

We may disclose your information if required to:

  • Comply with applicable laws or legal processes
  • Respond to lawful requests from public authorities
  • Protect our rights, privacy, safety, or property
  • Enforce our Terms of Service

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

4.4 With Your Consent

We may share your information with third parties when you give us explicit consent to do so.

5. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption of data in transit (TLS/SSL)
  • Encryption of sensitive data at rest
  • Row-level security (RLS) to ensure data isolation between accounts
  • Regular security audits and monitoring
  • Access controls and authentication requirements
  • Secure authentication through Supabase Auth

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as:

  • Your account is active
  • Needed to provide you with our services
  • Required by applicable laws or regulations
  • Necessary to resolve disputes or enforce our agreements

Upon account deletion:

  • Personal account data is deleted within 30 days
  • Team account data may be retained if other members remain active
  • Backup copies may be retained for up to 90 days
  • Anonymized analytics data may be retained indefinitely

7. Your Rights and Choices

Depending on your location, you may have the right to:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Request export of your data in a machine-readable format
  • Restriction: Request limitation of processing
  • Objection: Object to certain processing activities
  • Withdraw Consent: Withdraw previously given consent

To exercise these rights, please contact us at info@theformulaai.com.

8. AI-Specific Privacy Considerations

Regarding our AI-powered features:

  • Content Processing: Your brand guidelines and content are processed by AI systems to generate marketing materials
  • Learning: We may use aggregated, anonymized data to improve our AI models, but your specific content is not used to train models accessible to other users
  • Research Data: AI agents gather publicly available information; this data is associated with your account and subject to this policy
  • Content Ownership: You retain rights to your inputs; AI-generated content is licensed to you per our Terms of Service

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard contractual clauses approved by relevant authorities
  • Data processing agreements with our service providers
  • Compliance with applicable data protection frameworks

10. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Cookies and Tracking

We use cookies and similar technologies to operate our Service. For detailed information, please see our Cookie Policy.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Sending an email notification to your registered email address
  • Displaying a notice in the Service

Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: info@theformulaai.com

For data protection inquiries in the European Union, you may also contact your local data protection authority (Garante per la Protezione dei Dati Personali in Italy).

Data Controller Information

The data controller for your personal information is:

The Formula AI S.r.l.

Via Marco Ulpio Traiano 37

20149 Milan, Italy

VAT, tax code, and registration number: 13815270965

Registered with the Milan Monza Brianza Lodi Company Register

REA number: MI 2745629

Contributed capital: €10,000.00

© Copyright 2026 The Formula AI S.r.l. All rights reserved.