Privacy & Cookie Policy

Last Updated: April 22, 2026

ScreenCI Oy (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy & Cookie Policy explains how we collect, use, and safeguard your information when you visit our website and use our SaaS platform (the “Service”).

This policy is designed to be consistent with our Terms of Service (TOS) and Data Processing Agreement (DPA).

This Privacy Policy is designed to comply with the EU General Data Protection Regulation (GDPR). As a Finnish company, ScreenCI Oy also adheres to the Finnish Data Protection Act (1050/2018) and the guidelines provided by the Office of the Data Protection Ombudsman.

1. Data Controller

ScreenCI Oy (Ltd) is the data controller for the personal data of our website visitors and account holders.

Company Name: ScreenCI Oy (Ltd) (3614675-7) Address: Lauri Korpisen katu 6 F, 01370 Vantaa, Finland Contact: [email protected] Contact Person: Olli Paloviita

2. Information We Collect

We collect information to provide and improve our Service.

A. Information You Provide to Us

Account Information: Name, email address, and company name when you register for an account.
Customer Content: Code, scripts, and media assets you upload to the Service to generate videos.
Support Data: Information you provide when contacting our support team.

B. Information Collected via Third Parties

Payment Information: Payments are handled by Polar (our Merchant of Record). We do not store your credit card details; Polar provides us with transactional info (e.g., subscription status, VAT number, billing address).

C. Technical Data

Usage Data: IP addresses, browser type, device information, and logs of your activity within the Service to ensure security and performance. This data may be automatically collected by our infrastructure providers (such as Cloudflare) to ensure the security, stability, and performance of the Service.
Website Analytics: We use PostHog to understand how visitors use our website and to improve its performance and content. PostHog may use cookies or similar identifiers for analytics and product experience measurements, depending on our configuration and any consent choices you make. We do not use this analytics data to identify individual visitors, and we use analytics data primarily in aggregated or pseudonymized form.

3. How We Use Your Data

We process your data based on the following legal grounds:

Contract Performance: To provide the Service as defined in our Terms of Service (TOS) Legitimate Interest: To improve our Service, provide customer support, and ensure platform security. Legal Obligation: To comply with tax and accounting laws (primarily via Polar). Consent: For non-essential cookies and marketing communications.

We do not sell your personal data. We share personal data only with trusted service providers that help us operate and provide the Service:

Cloudflare (United States; may also process or store data in the EEA), for hosting, content delivery, serverless infrastructure, and object storage.
Convex (United States), for backend and database services.
Clerk (United States), for authentication, user accounts, and organization/workspace management.
PostHog (United States / EU), for website analytics, product analytics, and related service improvement.
Polar (United States), for subscription billing and payment-related services.
Google Cloud (United States), for text-to-speech and related audio generation services, where used.
Fly.io (United States), for rendering and processing infrastructure, where used in production.
Grafana Cloud (United States), for log aggregation, monitoring, and observability, where used in production.

For international transfers to the United States, including transfers involving Cloudflare, Convex, Clerk, Polar, Google Cloud, Fly.io, and Grafana Cloud, where applicable, we utilize Standard Contractual Clauses (SCCs) and other appropriate safeguards as described in our DPA.

We use a minimal number of cookies to provide our Service.

A. Essential Cookies Only

We only use “strictly necessary” cookies required for the Service to function (e.g., managing your secure login session and preventing fraud). Since these cookies are essential for the technical operation of ScreenCI, they do not require prior consent.

B. No Tracking Cookies

We do not use advertising or targeting cookies. We use essential cookies necessary for authentication, security, and checkout, and we may use analytics cookies or similar technologies for PostHog where permitted by law and any applicable consent choices.

C. Third-Party Cookies

Our payment provider (Polar) may set essential cookies during the checkout process to ensure secure transactions. PostHog may also set analytics cookies or similar identifiers for website usage measurement, subject to our configuration and applicable consent requirements.

You can manage or block cookies through your browser settings, but please note that the Service may not function correctly if essential cookies are disabled.

6. Data Security

We implement industry-standard security measures, including but not limited to:

Encryption: We use service providers that implement industry-standard security controls, including encryption in transit and, where applicable, encryption at rest.
Access Control: Access to customer data is limited to authorized personnel with a legitimate business need-to-know.
Infrastructure Security: We rely on security features and protections provided by our infrastructure and subprocessor providers, including Cloudflare.

7. Data Retention

We retain your personal data as long as your account is active or as needed to provide the Service, fulfill the purposes described in this Policy, and comply with applicable legal obligations.

Account Data: Deleted within a reasonable period following account termination, except where retention is required for legal, security, fraud-prevention, or billing purposes.
Video Projects: We retain video projects and related customer content for as long as necessary to provide the Service, maintain the customer account, and comply with our legal obligations. Such data may be deleted by the user earlier through the Service. Following account closure or subscription termination, we may retain certain data for a limited period where necessary for legitimate business purposes, legal compliance, fraud prevention, dispute resolution, enforcement of our agreements, or technical backup and recovery processes.
Legal Records: Financial data is kept for the period required by Finnish accounting law.

If you are a resident of the European Economic Area (EEA), you have the following rights under the GDPR.

Access: Request a copy of the data we hold about you. Rectification: Correct inaccurate data. Erasure: Request the deletion of your data (“Right to be forgotten”). Portability: Receive your data in a structured, machine-readable format. Objection: Object to processing based on legitimate interests.

To exercise these rights, contact us at [email protected].

9. Changes to this Policy

We may update this policy from time to time. Significant changes will be notified via email or a notification within the Product.