Legal

Privacy Policy

What we collect, how we use it, and the controls you have. Written plainly because you shouldn't need a lawyer to understand it.

Last updated · June 16, 2026

This policy explains how Glimmora Inc. (“Glimmora”, “we”, “us”) handles information you give us — or that the FilmGlimmora platform creates on your behalf — when you sign up for an account, use the product, or visit our marketing pages.

1.What we collect

We collect three kinds of information:

  • Account information — your name, email, phone number, organization name, role, and a hashed password. You give us this when you register or accept an invitation.
  • Project content — scripts, scene breakdowns, budgets, schedules, casting decisions, vendor records, generated visuals, and anything else you upload or create inside FilmGlimmora.
  • Usage data — pages you opened, actions you took (creating a PO, generating a visual, approving a shoot day), IP address, browser, timestamps. Used to keep the service reliable and to investigate problems.

2.What we don't collect

We do not sell your data. We do not run third-party ad trackers on the dashboard. We do not read scripts, budgets, or any project content to train AI models for other customers. Your content stays scoped to your organization.

3.How we use it

  • To operate the platform — show you your projects, run AI analysis you asked for, send notifications you opted into.
  • To bill you — process subscription payments via Razorpay and keep an audit trail of charges.
  • To support you — when you write to us, we look up your account so we can actually help.
  • To improve the product — anonymous usage metrics inform which features get built next.
  • To meet legal obligations — tax, fraud prevention, responding to lawful requests.

4.Third parties we share with

We share only what is necessary, only with vendors who help us run the service. Each one is bound by a data-processing agreement.

  • Cloud hosting — DigitalOcean (servers, database, file storage).
  • AI providers — OpenAI for script analysis and image generation; Anthropic / Google for chat completions. Content sent for analysis is not retained by these providers for training; their standard zero-retention or 30-day retention enterprise policies apply.
  • Payments — Razorpay processes your subscription. We never see your full card or UPI details.
  • Email delivery — Google Workspace SMTP and Resend for transactional email (password resets, notifications, support replies).
  • Analytics — first-party uptime and error monitoring only. No third-party advertising trackers.

5.Where your data lives

Primary data is stored on managed Postgres infrastructure hosted by DigitalOcean in the AMS3 region. Backups are encrypted and retained for 7 days. For enterprise customers who need an India or GCC region we can arrange this on request.

6.How long we keep it

We keep your account and project content for as long as your subscription is active. If you cancel and ask us to delete your data we will do so within 30 days, except for records we are legally required to keep (invoices, tax records — typically 7 years).

7.Your rights

You can view, correct, export, or delete most of your data directly from the dashboard. For anything you can't do yourself — including a full account deletion — write to support@glimmora.ai and we will action it within 7 business days.

Under India's DPDP Act, the EU GDPR, and the UAE PDPL you have the right to access, correct, delete, restrict processing of, and port your personal data. We honour these requests for every customer regardless of where you are based.

8.Security

Passwords are hashed with bcrypt. Access tokens are short-lived JWTs over HTTPS only. All traffic is encrypted in transit (TLS 1.2+). The platform is multi-tenant at the application layer with row-level org isolation; no organization can see another organization's data through any API path.

If we ever detect a breach that affects your data, we will notify you within 72 hours.

9.Children

FilmGlimmora is built for film professionals. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, write to us and we will remove it.

10.Changes to this policy

We may update this policy as the product evolves. Material changes will be announced inside the product and via email before they take effect.

11.Contact

Questions, requests, complaints — write to support@glimmora.ai or use the form at glimmora.ai/contact.