Privacy Policy
Effective Date: January 16, 2026
Last Updated: June 25, 2026
SandmanCI LLC ("SandmanCI," "we," "our," or "us") operates the sandmanci.com website and the Sandman platform, including the AI Studio (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.
1. Information We Collect
1.1 Account Information
When you create an account, we collect:
- Email address — Required for account creation and communication
- Password — Stored in encrypted format (when using email/password authentication)
- Google account information — If you sign up via Google OAuth, we receive your email address and basic profile information from Google
1.2 Payment and Subscription Information
When you subscribe to a paid plan or start a free trial, we collect:
- Stripe Customer ID — Used to manage your subscription
- Subscription details — Plan tier, subscription status (including trial status), billing period dates, and cancellation status
- Payment method — We do NOT store your full credit card number. All payment processing is handled securely by Stripe, Inc. We receive only limited payment-method details (e.g., card brand and last four digits) for display purposes
- Subscription history — A record of past subscriptions, which we retain in part to enforce one-free-trial-per-account eligibility
1.3 Content & Data You Provide
When you use the Service, we collect and process:
- Profile requests — Social media handles and platforms (TikTok, Instagram, YouTube) you submit for analysis
- Video data — Publicly available information from the social media profiles you request, including:
- Video URLs and identifiers
- Captions and text content
- Transcripts
- Video duration and posting dates
- Public engagement metrics (views, likes, comments, shares, saves)
- Follower counts and display names
- Chat messages — Your messages to the AI assistant are stored securely and are shared only with our AI providers as needed to generate responses
- Documents — Files you upload to the Docstore for script generation and document-grounded answers
- Scripts and studio projects — Scripts, scene configurations, and media you create or upload in the AI Studio
- Location information — A city or region you optionally provide to power local trends and local content-idea features
- Consent records — Records of when you accepted our Terms of Service and Privacy Policy, and of avatar-creation consent (see Section 1.4)
1.4 Likeness and Voice Data (AI Studio)
If you choose to create a personal digital avatar in the AI Studio, we collect, with your explicit consent:
- Video footage — Recordings of you used to train your digital avatar
- Voice recordings — Audio you upload or record used to create a synthesized version of your voice (voice cloning). Voice cloning is powered by ElevenLabs; avatar-based voice synthesis is powered by HeyGen
- Consent verification — A recorded consent statement confirming you authorize creation of your digital likeness or voice, as required by our avatar- and voice-generation providers
- Generated assets — The resulting avatar, voice model, and videos you generate with them
This data is used solely to create and operate your personal avatar and cloned voice. Your avatar and voice are private to your account — they are never made available to other users, and we never use your likeness or voice for our own marketing or to train unrelated models. Using public avatars or stock voices from our library does not involve collecting your likeness data. See Section 5 of our Terms of Service for the rules governing avatar and voice creation.
1.5 Automatically Collected Information
When you access our Service, we automatically collect:
- Usage data — Pages visited, features used, time spent on the platform, product analytics events (e.g., feature interactions, funnel steps)
- Device information — Browser type, operating system, device identifiers
- Log data — IP address, access times, referring URLs
- Error and performance data — Application errors, stack traces, and performance metrics collected via Sentry
- Cookies and similar technologies — Session identifiers and authentication tokens
2. How We Use Your Information
We use the information we collect to:
2.1 Provide and Operate the Service
- Create and manage your account
- Process your subscription, free trial, and payments
- Execute analysis jobs and ingest video data
- Create and operate your digital avatar and synthesized voice (with your consent)
- Generate AI-powered videos, scripts, insights, recommendations, and content strategies
- Enable chat-based interactions with your data and documents
- Provide trends and local content ideas based on the location you supply
2.2 Enforce Plans, Quotas, and Trials
- Track usage against your plan's limits (analyzed profiles and videos, avatar creations, video generations, workflow runs)
- Determine free-trial eligibility (one trial per account, ever) using subscription history
- Retain records of generated videos — including deleted ones — for quota and billing integrity within the applicable billing period
2.3 Monitor and Improve Reliability
- Detect, diagnose, and resolve application errors using Sentry error monitoring
- Track performance metrics and identify bottlenecks
- Enforce rate limits to protect service availability for all users
2.4 Improve and Develop the Service
- Analyze usage patterns and product funnels via PostHog analytics
- Debug issues and optimize performance
- Develop new functionality based on user needs
2.5 Communicate With You
- Send service-related emails (job status updates, account and billing notifications) via Resend
- Respond to support inquiries
- Inform you of important changes to terms or features
2.6 Ensure Security and Compliance
- Detect and prevent fraud, abuse, or unauthorized access (including trial abuse via duplicate accounts)
- Enforce rate limits using distributed Redis-based controls
- Enforce our Terms of Service, including likeness-consent requirements
- Comply with legal obligations
3. How We Share Your Information
We do NOT sell your personal information, and we never sell or license your likeness or voice data. We may share your information only in the following circumstances:
3.1 Third-Party Service Providers
We use the following third-party services to operate the Service:
| Service | Purpose | Data Shared |
|---|---|---|
| Supabase | Database, authentication, and file storage | Account data, analyzed content, chat history, documents, studio projects |
| Stripe | Payment processing, subscriptions, and billing portal | Email, subscription details, payment method |
| HeyGen | AI avatar creation, voice synthesis, and video generation | Avatar training footage, voice recordings, consent recordings, scripts, scene media (with your consent) |
| ElevenLabs | AI voice cloning and speech synthesis | Voice recordings you submit for cloning and scripts converted to speech (with your consent) |
| OpenAI | AI/LLM for chat responses and script generation | Chat messages, data context, document excerpts |
| Anthropic | AI/LLM for chat responses and fallback | Chat messages, data context, document excerpts |
| Pexels | Stock photos and videos for video backgrounds | Search queries only |
| Vercel | Application hosting and serverless functions | Server logs, IP addresses |
| Inngest | Background job processing and workflow orchestration | Job IDs, user IDs, processing status |
| Resend | Transactional email notifications | Email address, notification content |
| OAuth authentication (optional) | Email, basic profile info | |
| Sentry | Error monitoring and performance tracking | Error logs, stack traces, user IDs (anonymized) |
| PostHog | Product analytics and usage tracking | Usage events, feature interactions (anonymized) |
| Upstash | Distributed rate limiting via Redis | Request metadata (no personal data stored) |
| Google Cloud Platform | Automated analysis pipeline orchestration | Job IDs, social media handles requested |
Each third-party provider is contractually obligated to protect your data and use it only for the purposes specified.
3.2 Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).
3.3 Business Transfers
If SandmanCI LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.
3.4 With Your Consent
We may share your information for other purposes with your explicit consent.
4. Data Retention
We retain your information for as long as your account is active or as needed to provide you services:
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion |
| Subscription data | Duration of subscription + 7 years (financial records); minimal records retained to enforce trial eligibility |
| Analyzed video data | Until you delete the profile or account |
| Avatar footage, voice, cloned voice models, and consent recordings | Until you delete the avatar or cloned voice, or your account; deletion is propagated to our avatar- and voice-generation providers (HeyGen and ElevenLabs) |
| Generated videos | Until you delete them; generation records (not the video itself) are retained for quota and billing integrity |
| Docstore documents | Until you delete the document or account |
| Chat history | Until you delete the chat session or account |
| Error and performance logs (Sentry) | 90 days |
| Product analytics events (PostHog) | 12 months |
| Server logs | 90 days |
| Rate limit counters (Redis) | Rolling short-term windows; no long-term retention |
After retention periods expire, data is securely deleted or anonymized.
5. Data Security
We implement industry-standard security measures to protect your information:
- Encryption in transit — All data transmitted to and from our Service is encrypted using TLS/HTTPS
- Encryption at rest — Sensitive data is encrypted in our databases
- Access controls — Strict role-based access to production systems
- Row-Level Security (RLS) — Database policies ensure users can only access their own data, including avatars, videos, and documents
- Secure authentication — Passwords are hashed; OAuth tokens are handled securely
- Signed, time-limited URLs — Media uploads and downloads use signed URLs with limited validity
- Distributed rate limiting — Upstash Redis enforces per-user request limits to prevent abuse
- Error monitoring — Sentry captures and alerts on security-relevant errors in real time
- Health monitoring — Continuous automated checks on all critical service dependencies
While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
6. Your Rights and Choices
6.1 Access and Portability
You have the right to:
- Access the personal information we hold about you
- Request a copy of your data in a portable format
6.2 Correction
You can update your account information at any time through the Service settings.
6.3 Deletion
You can delete avatars, generated videos, documents, and chat sessions directly in the Service at any time. You can request deletion of your account and associated data by contacting us at support@sandmanci.com. Upon request, we will:
- Delete your account and personal information
- Delete your avatar footage, voice recordings, cloned voice models, and consent recordings, and instruct our avatar- and voice-generation providers (HeyGen and ElevenLabs) to do the same
- Remove analyzed data, documents, and chat history
- Cancel any active subscriptions
Note: Some information may be retained as required by law or for legitimate business purposes (e.g., financial records, trial-eligibility records, fraud prevention).
6.4 Withdrawing Avatar Consent
You may withdraw your consent to the processing of your likeness and voice at any time by deleting your avatar in the Service or contacting support@sandmanci.com. Withdrawal does not affect the lawfulness of processing before withdrawal, and previously generated videos remain in your account until you delete them.
6.5 Analytics Opt-Out
You can opt out of PostHog product analytics tracking by contacting us at support@sandmanci.com or through your browser's Do Not Track settings. Note that Sentry error monitoring cannot be disabled as it is required for service reliability.
6.6 Marketing Opt-Out
You can opt out of promotional communications by:
- Using the unsubscribe link in emails
- Updating your notification preferences in account settings
6.7 Cookie Preferences
Essential cookies required for authentication cannot be disabled. We use minimal tracking and do not use cookies for advertising purposes.
7. International Data Transfers
Our Service is hosted in the United States. If you are accessing the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers and service providers are located.
We rely on appropriate safeguards for international transfers, including:
- Standard Contractual Clauses with third-party providers
- Data processing agreements with our processors
- Consent-based transfers
8. Children's Privacy
The Service is not intended for children under the age of 13 (or 16 in certain jurisdictions), and avatar creation is limited to users 18 and older. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at support@sandmanci.com.
9. Third-Party Links
Our Service may contain links to third-party websites or services (e.g., social media platforms). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.
10. California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know — Request information about the categories and specific pieces of personal information we collect
- Right to Delete — Request deletion of your personal information
- Right to Opt-Out — We do not sell personal information
- Right to Limit Use of Sensitive Personal Information — Likeness and voice data are used only to provide the avatar features you request
- Right to Non-Discrimination — We will not discriminate against you for exercising your rights
To exercise these rights, contact us at support@sandmanci.com.
11. European Users (GDPR)
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):
11.1 Legal Bases for Processing
| Purpose | Legal Basis |
|---|---|
| Account creation and service delivery | Contract performance |
| Payment processing and quota enforcement | Contract performance |
| Avatar likeness, voice, and voice-cloning processing | Explicit consent |
| Trial-eligibility and fraud prevention | Legitimate interests |
| Security, abuse prevention, and rate limiting | Legitimate interests |
| Error monitoring and reliability (Sentry) | Legitimate interests |
| Analytics and improvement (PostHog) | Legitimate interests |
| Marketing communications | Consent |
11.2 Your GDPR Rights
- Access — Right to access your personal data
- Rectification — Right to correct inaccurate data
- Erasure — Right to request deletion ("right to be forgotten")
- Restriction — Right to restrict processing
- Portability — Right to receive your data in a structured format
- Object — Right to object to processing based on legitimate interests
- Withdraw consent — Right to withdraw consent at any time, including consent to likeness and voice processing
11.3 Data Protection Authority
You have the right to lodge a complaint with a supervisory authority in your country of residence.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last Updated" date
- Sending an email notification for significant changes
Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
For data protection inquiries in the EEA, you may also contact our designated representative.
14. Summary of Data Practices
| What We Collect | Why We Collect It | Who Can Access It |
|---|---|---|
| Email & password | Account authentication | SandmanCI, Supabase |
| Payment info | Process subscriptions and trials | Stripe |
| Avatar footage, voice, cloned voice & consent recordings | Create and operate your digital avatar and cloned voice (with consent) | SandmanCI, HeyGen, ElevenLabs |
| Scripts & generated videos | AI Studio video creation | SandmanCI, HeyGen, Supabase |
| Social media handles | Execute analysis requests | SandmanCI, GCP pipeline |
| Video data & metrics | Provide insights and recommendations | SandmanCI, OpenAI/Anthropic |
| Chat messages & documents | Enable AI-powered conversations and script generation | SandmanCI, OpenAI/Anthropic |
| Location (user-provided) | Local trends and content ideas | SandmanCI |
| Usage data & analytics | Improve service and understand product funnels | SandmanCI, PostHog |
| Error logs & stack traces | Diagnose and fix bugs | SandmanCI, Sentry |
| Rate limit counters | Protect service availability | SandmanCI, Upstash |
| Consent records | Legal compliance (Terms acceptance, avatar consent) | SandmanCI |
This Privacy Policy is designed to be transparent about our practices while protecting your privacy rights. Thank you for trusting SandmanCI with your content strategy.
Last Updated: June 25, 2026