Privacy Policy · aiclonechats.com

AI Clone Chats (operated at www.aiclonechats.com, hereafter "we", "us", "the service") is a premium AI platform that lets you create, talk to, and share original AI personas — sometimes referred to as "clones" — through chat, voice, video avatar, and scheduled messaging surfaces. This Privacy Policy describes what data we collect, why we collect it, who we share it with, how long we keep it, and the rights you have over it.

Our governing philosophy is simple: the system remembers; it does not chase. We collect only the minimum required to run the product, and we never sell, rent, or weaponise your data for advertising.

Identity-content notice

Because AI Clone Chats produces voice, image, and persona-style content that can resemble real people, you are responsible for ensuring you only upload, describe, or generate likenesses of yourself or of people who have given you explicit, verifiable permission. Misuse — including non-consensual likenesses, deepfakes, and identity impersonation — is prohibited under our Terms of Service and Acceptable Use Policy.

01What AI Clone Chats does

We let you (a) create AI personas with custom personality, tone, and memory; (b) chat with them in text, voice, or scheduled-delivery formats; (c) generate short video avatar responses; (d) participate in moderated debate rooms and translation chats; and (e) purchase credit packs or subscriptions to use those features.

To do this we operate a web frontend, a backend API, a MongoDB database, and we route certain workloads to third-party providers (large language models, lipsync video generation, transactional email, payment processing). Those providers are listed in Section 7.

02Data we collect

2.1 Account data. Email address; display name (optional); a salted bcrypt hash of your password (never the raw password); your auth provider (email + password, Google OAuth); email-verification status; account creation timestamp; admin/role flags; plan tier; credits balance.

2.2 Authentication & session data. Server-side session tokens (rotated on login and logout); login attempts; failed-login counters used for brute-force protection; password-reset request timestamps; IP address (one-way hashed before long-term retention — we do not store raw IPs in audit logs); browser User-Agent; a stable device-id stored in your browser to support anonymous trials.

2.3 Content you create. Clone profiles (name, traits, system prompts, personality sliders, memory entries); chat transcripts (text, mood signals, debate turns, scheduled "delayed" messages); uploaded reference images and audio; AI-generated outputs (text replies, voice clips, lipsynced video frames); favourites, share IDs, and public clone links.

2.4 Voice & video media. Voice clips you record or upload as reference; voice clips synthesised on your behalf; short lipsynced video files generated by our lipsync provider; metadata such as duration, language, and provider job IDs.

2.5 Payment & subscription data. Plan you subscribed to, credit pack purchases, internal order IDs, payment provider order/session IDs, payment status (created / paid / failed / refunded), webhook delivery logs (signature-validated). We never store card numbers, CVVs, UPI PINs, or full bank credentials.Those live exclusively with our payment provider (currently Cashfree in production).

2.6 Telemetry & abuse signals. Cost-meter events (token counts, generations per session), safety/moderation flags, paywall hits, anonymized error traces. This is what powers our admin observability dashboards and lets us detect fraud.

2.7 Communications. Emails you send to admin@aiclonechats.com or krajapraveen@aiclonechats.com, and our replies.

03Cookies and similar technologies

We use a small number of strictly necessary cookies (session, CSRF, payment continuity) and some optional analytics signals (only if you opt in via Privacy Settings). For the full breakdown including names, lifetimes, and purposes, see our Cookie Policy.

04How we use your data

Operate the service: authenticate you, render your clones, deliver chats, debit credits atomically.
Generate AI output: forward chat prompts, voice prompts, and image references to large-language-model and media providers (see Section 7).
Process payments: create Cashfree orders, verify webhook signatures, grant credits upon confirmed payment.
Send transactional email: verification, password reset, delivery notifications. We do not send marketing emails or engagement nudges.
Detect abuse: brute-force, rate-limit violations, safety policy hits, payment fraud.
Improve reliability: aggregate, anonymized cost telemetry. Individual chat content is never used to "train" a model on your behalf without explicit opt-in.

05Data retention

Data category	Retention period
Account record (email, hash, role, plan)	Until you delete your account.
Clones, chat transcripts, memory entries	Until you delete them, or until account deletion.
Uploaded images and reference audio	Until you delete them, or until account deletion.
AI-generated voice clips & lipsync videos	Up to 90 days unless explicitly saved by you.
Payment orders + webhook logs	7 years (statutory tax / dispute window).
Audit logs (hashed IPs, login events)	Up to 24 months.
Anonymized telemetry & cost meters	Indefinitely, in aggregate form only.

06Data deletion & user rights

You may, at any time:

Access a copy of the data we hold about you.
Export your clones, transcripts, memory entries, and account record in a portable format.
Correct inaccurate profile fields.
Delete individual clones, transcripts, uploads, or your entire account.
Object to or restrict certain processing where required by law.
Withdraw consent for optional analytics at any time without affecting service.

Use the controls on Privacy Settings or email admin@aiclonechats.com. We respond within 30 days; complex requests may require identity verification.

07Third-party processors

We share strictly the data necessary to deliver the service with the following processors. Each is contractually bound to use that data only on our instructions.

Provider	Purpose	Data shared
Cashfree Payments (India)	Payments, refunds, webhooks	Order ID, amount, masked customer email/phone
OpenAI / Anthropic / Google	LLM text generation	Chat prompts and context — not stored by us for training
fal.ai	Lipsync video generation	Voice clip + reference image for the duration of generation
Resend	Transactional email delivery	Recipient email + email content
MongoDB Atlas / managed hosting	Database + compute	Encrypted at rest; least-privilege access
Cloudflare	CDN, DDoS protection, TLS	Request metadata

08Children and minors

AI Clone Chats is not directed at children under 13. Users between 13 and 18 may use the service only with the involvement of a parent or legal guardian and only on plan tiers that the guardian has explicitly authorized. If we become aware that we hold data of a child under 13, we will delete the account and all associated content. Report concerns to admin@aiclonechats.com.

09International transfers

Our servers and processors operate in India, the United States, and the European Union. By using the service you consent to your data being processed in those jurisdictions. Where required, we rely on standard contractual clauses or equivalent safeguards with our processors.

10Security

We hash passwords with bcrypt, encrypt traffic with TLS 1.2+, sign payment webhooks with HMAC-SHA256, and isolate admin operations behind explicit role checks. See our full Security page and report vulnerabilities to admin@aiclonechats.com with the subject line SECURITY.

11Changes to this policy

We will revise this document as the product evolves. Material changes will be announced at the top of this page with an updated "Last updated" date and, where appropriate, an in-app notice on your next login.

12Contact

Privacy questions, data requests, or compliance enquiries can be sent to admin@aiclonechats.com or krajapraveen@aiclonechats.com. We aim to acknowledge within 3 business days and resolve within 30 days.