Skaper · Privacy Policy
Skaper · Privacy Policy
Last updated: 2026-05
1. What we collect
Account: email, hashed password, name, profile image. Billing: address, phone, payment-provider customer id (Stripe/PortOne/PayPal). Activity: render history, library items, friend graph, chat messages, achievement progress. Device: hashed fingerprint of (user-agent + IP class C + secret) for new-device verification.
2. What we do NOT collect
Card numbers — those go straight to the payment provider. We never see them. Plain-text passwords. Browsing history outside Skaper. Phone-book contacts.
3. How we use it
Render account-bound features (your library, your friends, your achievements). Process payments via the provider you chose. Send transactional email (verification, receipts) via Resend. Detect new-device sign-ins for security.
4. Sharing
With payment providers (only what they need to process your payment). With the AI engines you invoke (only the prompt + reference images you submit; never your account info beyond what's needed for billing). Never with advertisers or marketing services.
5. Storage
EU + Korea: data lives on Vercel + Turso (sqlite-compatible serverless DB) in Seoul/AWS-Northeast-2. Backups for 30 days. Email content via Resend.
6. Your rights
Access / correct / delete your data via Account Settings. Data export: contact us. Account deletion is permanent and removes everything except Receipt rows we must legally retain (5 years per Korean tax law).
7. Cookies
We use one essential cookie for authentication (NextAuth session). No analytics or advertising cookies.
8. Children
Skaper is not intended for users under 14. We delete accounts found to belong to under-14s.
9. Contact
Questions about your data: contact@skaperai.com.
10. Changes
We notify materially significant changes via in-app banner + email. Minor wording changes are reflected in the "Last updated" date only.

