Legal

Privacy Policy

Last updated: April 21, 2026

SINAI Productions Ltd. ("SINAI", "we", "us") operates the streaming and creation platform available at sinaicinema.com (the "Service"). This Privacy Policy explains what personal data we collect, how we use it, and your rights.

1. Who we are

Controller: SINAI Productions Ltd.
Contact: privacy@sinaicinema.com
Data Protection Officer: dpo@sinaicinema.com (for EU/UK residents)

2. What we collect

2.1 Account data

Email, display name, username, profile photo (via Google OAuth or direct signup), language preference, country (derived from IP).

2.2 Creator data

Content you upload (scripts, visual references, video files, metadata), project titles, QA review history, revenue-share payment details (handled by our payment processor).

2.3 Viewer data

Watch history, watch progress, likes, comments, watchlist, subscriptions, search queries, view events (timestamp, duration, device category).

2.4 Technical data

IP address, browser type, device type, operating system, referring URL, session timestamps, crash logs, performance metrics.

2.5 Cookies and similar technologies

We use essential cookies for authentication and session management, and analytics cookies (with consent where required) to understand usage. You can control non-essential cookies via our cookie banner.

3. How we use your data

• Provide and operate the Service (authentication, streaming, recommendations)
• Process creator revenue-share payments
• Enforce our Terms and content standards (QA review)
• Detect fraud, abuse, and safety violations
• Communicate with you (transactional emails, product updates if you opt in)
• Comply with legal obligations (tax reporting, DMCA, law enforcement requests)
• Improve the Service (aggregate analytics, A/B testing)

4. Legal basis (EU/UK residents)

• Contract: account creation, content delivery, revenue-share payments
• Legitimate interest: fraud prevention, platform security, aggregate analytics
• Consent: marketing emails, non-essential cookies, optional analytics
• Legal obligation: tax reporting, DMCA, law enforcement orders

5. Sub-processors we use

We share data with carefully-vetted third parties strictly for the purposes listed:

• Supabase (database, auth) — account data, content metadata
• Cloudflare Stream (video hosting + delivery) — uploaded video files
• Google (OAuth sign-in) — email, name, photo
• Anthropic (AI writing pipeline) — project text content you enter into the writing pipeline
• Resend (transactional email) — email address, email content
• Vercel (hosting) — technical logs, IP addresses
• Sentry (error tracking) — crash logs, limited user identifiers
• Payment processor (TBD — Stripe or similar for creator payouts) — payment details

We do not sell your personal data to third parties.

6. International transfers

Some sub-processors are based in the United States. Where EU/UK data is transferred internationally, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards.

7. Retention

• Account data: kept while account is active, deleted within 30 days of account deletion request
• Published content: kept while published; creator can delete at any time
• View events: individual events retained 24 months, then aggregated
• Payment records: retained 7 years for tax/accounting compliance
• Backups: may persist up to 90 days after deletion from production

8. Your rights

Depending on your jurisdiction (GDPR, UK GDPR, CCPA, etc.), you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Delete your account and personal data ("right to be forgotten")
• Export your data in a portable format
• Object to, or restrict, certain processing
• Withdraw consent for consent-based processing
• Lodge a complaint with your supervisory authority

To exercise these rights, email privacy@sinaicinema.com. We respond within 30 days.

9. California residents (CCPA/CPRA)

California residents have the right to know what personal information is collected, to request deletion, and to opt out of the "sale" or "sharing" of personal information. SINAI does not sell personal information. To exercise rights: privacy@sinaicinema.com.

10. Children

The Service is not intended for children under 13 (or under 16 in the EU/UK). We do not knowingly collect data from children. If you believe a child has provided personal data, contact privacy@sinaicinema.com and we will delete it.

11. Security

We use industry-standard safeguards (TLS, encryption at rest, least-privilege access controls, RLS policies on the database). No system is 100% secure — if we discover a breach affecting your data, we will notify you and relevant authorities as required by law.

12. Changes

We may update this Policy. Material changes will be announced via email or in-product notice at least 14 days before taking effect.

13. Contact

Questions? Email privacy@sinaicinema.com.