← Back to Shield AI

Privacy Policy

Last Updated: January 31, 2026 | Effective Date: February 1, 2026

1. Introduction

Shield AI Inc. ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

This policy applies to all users worldwide, including users in the European Union (GDPR), California (CCPA), and other jurisdictions with data protection laws.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email, password, profile picture
  • Identity Verification: Government ID, selfie (for KYC compliance)
  • Payment Information: Credit card details, billing address (processed by Stripe)
  • Platform Connections: OAuth tokens for YouTube, TikTok, etc.
  • Content: Videos, images, and text you upload
  • Communications: Support tickets, feedback, and correspondence

2.2 Information Collected Automatically

  • Device Information: Browser type, OS, device identifiers
  • Usage Data: Pages visited, features used, time spent
  • Log Data: IP address, access times, referring URLs
  • Cookies: Session cookies, analytics cookies, preference cookies

2.3 Blockchain Data

  • Wallet Addresses: Public addresses you connect
  • Transaction History: On-chain transactions (publicly visible)
  • Token Balances: $TWIN and NFT holdings

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Platform
  • Process transactions and send related information
  • Verify your identity and prevent fraud
  • Analyze platform usage to improve features
  • Send administrative communications and updates
  • Comply with legal obligations
  • Train and improve our AI models (with your consent)
  • Personalize your experience and recommendations

4. Legal Bases for Processing (GDPR)

Contract Performance: Processing necessary to provide our services (account management, payments, platform features).

Legitimate Interests: Fraud prevention, security, platform improvement, and marketing (you can opt out).

Consent: AI model training, marketing communications, non-essential cookies.

Legal Compliance: Tax reporting, AML/KYC requirements, court orders.

5. Data Sharing and Disclosure

We may share your information with:

Service Providers

  • • Supabase (database hosting)
  • • Stripe (payment processing)
  • • NVIDIA (AI processing)
  • • Fly.io (infrastructure)
  • • Sentry (error tracking)

Platform Partners

  • • YouTube, TikTok, Twitch (OAuth integrations)
  • • Affiliate networks (commerce tracking)

Legal Requirements

  • • Law enforcement (with valid legal process)
  • • Tax authorities (financial reporting)
  • • Regulatory bodies (compliance audits)

We do NOT sell your personal information.

6. Your Rights

6.1 GDPR Rights (EU Users)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate information
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a machine-readable format
  • Restriction: Limit processing of your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Revoke previously given consent

6.2 CCPA Rights (California Users)

  • Know: What personal information we collect and how it's used
  • Delete: Request deletion of your personal information
  • Opt-Out: Opt out of the "sale" of personal information (we don't sell data)
  • Non-Discrimination: Equal service regardless of privacy choices

To exercise your rights: Visit Settings → Privacy or email privacy@shield-ai.com

7. Data Retention

Account Data: Retained while your account is active, plus 30 days after deletion request.

Financial Records: 7 years (tax compliance).

Fraud Prevention: 3 years after account closure.

Analytics: 26 months (anonymized after).

Blockchain Data: Permanent (immutable by nature).

8. Data Security

We implement industry-standard security measures:

  • TLS 1.3 encryption for data in transit
  • AES-256 encryption for data at rest
  • Multi-factor authentication (MFA) support
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance (in progress)
  • Bug bounty program for responsible disclosure

9. International Data Transfers

Your data may be transferred to and processed in the United States. For EU users, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to ensure adequate protection for international transfers.

10. Children's Privacy

Shield AI is not intended for users under 18. We do not knowingly collect personal information from children. If we discover we have collected data from a minor, we will delete it promptly.

11. Cookies and Tracking

We use cookies and similar technologies. See our Cookie Policy for details on types of cookies used and how to manage preferences.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or platform notification at least 30 days before taking effect. Your continued use after changes constitutes acceptance.

13. Contact Us

For privacy-related inquiries:

Data Protection Officer: privacy@shield-ai.com

Shield AI Inc.

123 Creator Avenue

San Francisco, CA 94105, USA

EU Representative: For EU users, our representative is Shield AI EU Ltd., Dublin, Ireland (eurepresentative@shield-ai.com).

14. Supervisory Authority

EU users have the right to lodge a complaint with their local data protection authority. A list of EU DPAs can be found at https://edpb.europa.eu.

© 2026 Shield AI Inc. All rights reserved.

Terms of Service|Cookie Policy|DMCA Policy