This Privacy Notice for Immersifi Studios Inc. (doing business as immersifi or immersifi.me) ('we', 'us', or 'our'), describes how and why we might access, collect, store, use, and/or share ('process') your personal information when you use our services ('Services'), including when you:
Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. Immersifi Studios Inc. is the controller responsible for decisions about how your personal information is processed. If you do not agree with our policies and practices, you must not use our Services. By accessing or using our Services, you acknowledge that you have read and understood this Privacy Notice. If you have any questions or concerns, please contact us at [email protected].
This summary provides key points from our Privacy Notice, but you can find out more details about any of these topics in the sections below.
What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use.
Do we process any sensitive personal information? Some of the information may be considered 'special' or 'sensitive' in certain jurisdictions, for example your racial or ethnic origins, sexual orientation, and religious beliefs. We may process sensitive personal information when necessary with your consent or as otherwise permitted by applicable law.
Do we collect any information from third parties? We may collect limited information from third parties if you choose to use social login (e.g., a social media account) or if a third party helps us process payments (e.g., Stripe) or provides analytics/security services.
How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.
In what situations and with which parties do we share personal information? We may share information in specific situations and with specific third parties.
How do we keep your information safe? We have adequate organisational and technical processes and procedures in place to protect your personal information. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure.
What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information.
How do you exercise your rights? The easiest way to exercise your rights is by visiting https://immersifi.me/settings/support/, or by contacting us at [email protected].
Personal information you disclose to us
We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.
By using our Services and submitting such information, you expressly consent to the processing of this sensitive personal information for the purposes described in this Privacy Notice.
Payment Data. If you choose to make purchases, payments are processed by Stripe. We do not store your full payment card number or security code (CVV). We may receive limited information from Stripe related to your purchase or subscription.
Social Media Login Data. We may provide you with the option to register with us using your existing social media account details.
Information automatically collected
We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, and information about how and when you use our Services.
We process your personal information for a variety of reasons, depending on how you interact with our Services, including:
If you are located in the EU or UK, this section applies to you.
The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases:
If you are located in Canada, we may process your information if you have given us specific permission (i.e. express consent) to use your personal information for a specific purpose, or in situations where your permission can be inferred (i.e. implied consent).
We may need to share your personal information in the following situations:
Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
Legal, Safety, and Reporting Disclosures. We may disclose information without your consent if we reasonably believe it is necessary to comply with applicable law, protect rights and safety, enforce our Terms, or respond to emergencies.
We may use cookies and similar tracking technologies (like web beacons and pixels) to gather information when you interact with our Services. Some online tracking technologies help us maintain the security of our Services and your account, prevent crashes, fix bugs, save your preferences, and assist with basic site functions.
We may permit third parties and service providers to use online tracking technologies on our Services for analytics and security. Where required by applicable law, we will provide appropriate choices and controls.
For specific information about how we use cookies and how you can manage your preferences, please see our Cookie Policy.
Google Analytics 4
We use Google Analytics 4 to understand how visitors find and use the Services. We have configured the strictest privacy settings Google offers: IP anonymisation, two-month data retention, and Google Signals (cross-device tracking) disabled. Google Analytics is loaded only after you opt in via our cookie banner; before opt-in, Google receives only anonymised, cookie-less "consent pings" via Google Consent Mode v2 for aggregate behavioural modelling, with no identifier on your browser. To opt out of Google Analytics globally, install Google's browser opt-out at https://tools.google.com/dlpage/gaoptout.
Microsoft Clarity
We use Microsoft Clarity to capture anonymised heatmaps, scroll maps, and session replays of the Services. Clarity is loaded only after you accept analytics cookies. IP addresses are masked, and Clarity's session replay automatically obscures sensitive form fields and content marked as private; we never see your password, full email, or story content in Clarity replays.
As part of our Services, we offer products, features, or tools powered by artificial intelligence, machine learning, or similar technologies (collectively, 'AI Products'). These tools are designed to enhance your experience and provide you with innovative solutions.
Use of AI Technologies
We provide the AI Products through third-party service providers ('AI Service Providers'), including OpenAI and OpenRouter. Your immersion content (inputs and outputs) and related metadata may be shared with and processed by these AI Service Providers to enable your use of our AI Products.
Our AI Products
Our AI Products are designed for interactive story generation and narrative personalization based on user inputs and preferences.
AI Output Disclaimer
AI-generated content is provided "AS IS" and "AS AVAILABLE" without warranties of any kind. Immersifi does not guarantee the accuracy, completeness, reliability, suitability, or appropriateness of any AI-generated content. AI outputs may contain errors, inaccuracies, or content that is offensive, inappropriate, or otherwise objectionable.
Use of immersion content for training
We may use immersion content and related preferences and outputs to improve the quality and safety of our Services, and to train, fine-tune, or otherwise improve our models and future AI systems. If you wish to opt out, you may submit a request by contacting us at [email protected].
Our Services offer you the ability to register and log in using your third-party social media account details (like your Facebook or X logins). Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile information we receive may vary but will often include your name, email address, friends list, and profile picture.
We will use the information we receive only for the purposes that are described in this Privacy Notice or that are otherwise made clear to you on the relevant Services. Please note that we do not control, and shall not be liable for, other uses of your personal information by your third-party social media provider.
Our servers are located in the United States (currently AWS US-East-1), and some processing may also occur in Canada. We also use Cloudflare as a content delivery and security provider, which may process certain data on servers located in multiple countries.
If you are a resident in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, then these countries may not necessarily have data protection laws as comprehensive as those in your country. However, we will take measures designed to protect your personal information in accordance with this Privacy Notice and applicable law, which may include using contractual protections (such as standard contractual clauses approved by the European Commission or UK Information Commissioner's Office).
We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law.
Account data. We generally retain account information for as long as you have an account with us. If you request account deletion, we will delete or de-identify personal information from active systems within a reasonable period, subject to lawful exceptions.
Immersion content. We retain immersion content and preferences for as long as necessary to provide the Service, enforce our safety policies and Terms of Use, comply with legal obligations, and improve our Services.
Flagged content. If content is flagged in connection with potential policy violations (including possible CSAM or other illegal content), we may retain all relevant content and metadata indefinitely for safety, security, and legal compliance purposes.
AUTOMATIC ARCHIVAL TO COLD STORAGE; LIMITATIONS ON DELETION RIGHTS
IMPORTANT: PLEASE READ THIS SECTION CAREFULLY AS IT AFFECTS YOUR RIGHTS REGARDING DATA DELETION.
Each subscription plan includes a limit on conversations retained in active storage ("Active Storage Limit"). When conversations exceed this limit, older conversations are automatically transferred to long-term archival cold storage ("Cold Storage").
YOU EXPRESSLY ACKNOWLEDGE AND AGREE THAT:
We have implemented appropriate and reasonable technical and organisational security measures designed to protect the security of any personal information we process, including encryption, access controls, and regular security assessments.
However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. We cannot and do not warrant or guarantee that hackers, cybercriminals, or other unauthorised third parties will not be able to defeat our security measures.
Security incidents and breach notification. In the event of a security incident, we will promptly assess the nature and scope of the incident, take reasonable steps to contain the incident, and notify appropriate authorities and affected individuals as required by applicable law.
Our Services are intended solely for users who are at least 18 years of age (or the age of majority in your jurisdiction, whichever is higher). We do not knowingly collect, solicit data from, or market to children under 18 years of age.
BY USING THE SERVICES, YOU REPRESENT AND WARRANT THAT YOU ARE AT LEAST 18 YEARS OF AGE (OR THE AGE OF MAJORITY IN YOUR JURISDICTION) AND HAVE THE LEGAL CAPACITY TO ENTER INTO A BINDING AGREEMENT.
If we learn that personal information from users less than 18 years of age has been collected, we will immediately deactivate or suspend the account and take reasonable measures to promptly delete such data from our active systems.
Age Assurance. We currently rely on self-attestation and other commercially reasonable measures to verify that users are at least 18 years of age. We reserve the right to implement additional age verification measures at any time.
Depending on your state of residence in the US or in some regions (like the EEA, UK, Switzerland, and Canada), you have rights that allow you greater access to and control over your personal information.
Withdrawing your consent: If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time by contacting us.
Opting out of marketing: You can unsubscribe from our marketing communications at any time by clicking on the unsubscribe link in the emails that we send.
Account Information: If you would like to review or change the information in your account or terminate your account, you can log in to your account settings and update your user account.
Most web browsers and some mobile operating systems include a Do-Not-Track ('DNT') feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected.
At this stage, no uniform technology standard for recognising and implementing DNT signals has been finalised. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online.
California law requires us to let you know how we respond to web browser DNT signals. Because there currently is not an industry or legal standard for recognising or honouring DNT signals, we do not respond to them at this time.
If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you may have additional rights regarding your personal information.
How to Exercise Your Rights: You can contact us by visiting https://immersifi.me/settings/support/, by emailing us at [email protected], or by referring to the contact details at the bottom of this document.
Australia and New Zealand
We collect and process your personal information under the obligations set by Australia's Privacy Act 1988 and New Zealand's Privacy Act 2020. You have the right to request access to or correction of your personal information at any time.
If you believe we are unlawfully processing your personal information, you have the right to submit a complaint to the Office of the Australian Information Commissioner or the Office of New Zealand Privacy Commissioner.
Republic of South Africa
You have the right to request access to or correction of your personal information at any time. If you are unsatisfied with the manner in which we address any complaint, you can contact the Information Regulator (South Africa).
We reserve the right to update this Privacy Notice from time to time in our sole discretion. The updated version will be indicated by an updated 'Revised' date at the top of this Privacy Notice.
If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes on our Services or by directly sending you a notification to the email address associated with your account.
We encourage you to review this Privacy Notice frequently to be informed of how we are processing and protecting your information.
If you have questions or comments about this notice, you may contact our Data Protection Officer (DPO) by email at [email protected], or contact us by post at:
Immersifi Studios Inc. Data Protection Officer 6860 Royal Oak Avenue Burnaby, British Columbia V5J0G9 Canada
Subject to applicable law, you have the right to request access to the personal information we collect from you, details about how we have processed it, correct inaccuracies, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information.
Right to object to legitimate-interest processing. Where we process your personal data on the basis of legitimate interest under GDPR Art 6(1)(f) — for example, error monitoring or operational debugging via the providers disclosed in Section 4 — you have the right under GDPR Art 21 to object to that processing at any time, including by automated means. To exercise this right, contact us at [email protected] with details of your objection. We will cease such processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims.
To submit a request, please visit: https://immersifi.me/settings/support/ or email us at [email protected]. We will respond to verified requests within the timeframes required by applicable law.
Governing Law and Dispute Resolution. This Privacy Notice shall be governed by and construed in accordance with the laws of the Province of British Columbia and the federal laws of Canada applicable therein.
Limitation of Liability. To the fullest extent permitted by applicable law, Immersifi Studios Inc. shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising out of or in connection with this Privacy Notice or our processing of your personal information.
Severability. If any provision of this Privacy Notice is held to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect.
Email [email protected] or visit Support.