← Back

Privacy Policy

Last updated: February 27, 2026

At Lowerated, we take your privacy seriously. This Privacy Policy explains what information we collect, how we use it, and the choices you have. It applies to all users of the Lowerated platform, including our website and applications (the "Service").

1. Information We Collect

1.1 Information You Provide

When you create an account and use the Service, you may provide us with:

  • Account Information: Your name, email address, username, and password (or authentication via Google).
  • Profile Information: Profile photo, bio, social links, primary role, skills, and work status — all optional.
  • Payment Information: When you subscribe to a paid plan, Stripe (our payment processor) collects and securely handles your payment details. We do not store your full credit card number on our servers.
  • Content: Scripts, screenplays, character profiles, storyboards, production documents, images, and any other material you create or upload.
  • Communications: Messages you send to us through support channels or feedback forms.

1.2 Information Collected Automatically

When you use the Service, we automatically collect certain information, including:

  • Usage Data: Pages visited, features used, timestamps of activity, and interactions with the platform (such as AI feature usage and export counts).
  • Device Information: Browser type, operating system, device type, and screen resolution.
  • Log Data: IP addresses, referral URLs, and error logs for debugging and security purposes.
  • Cookies: We use essential cookies for authentication and session management. See Section 8 for more details.

1.3 Information from Third Parties

If you sign in using Google OAuth, we receive a limited set of information from your Google Account. Specifically, we request access to the following Google OAuth scopes:

  • Email address (email): Used to create and identify your Lowerated account.
  • Basic profile information (profile): Your name and profile photo, used to personalize your account.
  • OpenID Connect (openid): Used to authenticate your identity securely.

We do not request access to your Google Drive, Gmail, Calendar, Contacts, or any other Google services. We do not receive or store your Google password. For full details on how we handle Google user data, see Section 5 below.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service.
  • Process transactions and manage your subscriptions.
  • Personalize your experience, including AI-powered recommendations and suggestions.
  • Send you service-related communications (account verification, billing notifications, feature updates).
  • Monitor usage patterns to improve performance, fix bugs, and develop new features.
  • Enforce our Terms of Service and protect against misuse.
  • Comply with legal obligations.

We do not sell your personal information. We do not use Your Content (scripts, projects, etc.) to train AI models.

3. How We Share Your Information

We share your information only in the following limited circumstances:

  • Service Providers: We use trusted third-party services to operate the platform, including Stripe (payments), Microsoft Azure (hosting, storage, and AI services), and authentication providers. These services only receive the minimum information necessary to perform their function and are contractually obligated to protect your data.
  • Collaborators: When you invite collaborators to a project, they will be able to view your name, profile photo, and any content within that project based on their assigned role. You control who has access to your projects.
  • Community Features: If you set your profile to public, other users may see your name, bio, roles, portfolio links, and public projects. You can switch your profile to private at any time.
  • Legal Requirements: We may disclose information if required by law, court order, or government request, or if we believe disclosure is necessary to protect the rights, property, or safety of Lowerated, our users, or the public.

4. AI Features and Your Data

Lowerated uses AI services to power features like script assistance, story development, casting suggestions, and image generation. When you use AI features:

  • Your prompts and relevant context (such as scene text or character descriptions) are sent to our AI providers to generate responses.
  • We do not use Your Content to train, fine-tune, or improve AI models. Your creative work remains yours.
  • Our AI providers process data in accordance with their own data processing agreements, which prohibit the use of customer data for model training.

5. Google OAuth and Google User Data

Lowerated offers Google Sign-In as a convenient way to create an account and log in. This section provides specific details about how we access, use, store, and protect data received from Google APIs, in accordance with the Google API Services User Data Policy, including the Limited Use requirements.

5.1 Data We Access from Google

When you choose to sign in with Google, we request access only to the following information through Google OAuth 2.0:

  • Name: Your first and last name as set in your Google Account.
  • Email address: The primary email address associated with your Google Account.
  • Profile photo: Your Google Account profile picture.

We do not request access to your Google Drive files, Gmail messages, Google Calendar, Google Contacts, YouTube data, Google Photos, or any other Google service or content beyond the basic profile scopes listed above.

5.2 How We Use Google User Data

Data received from Google APIs is used strictly for the following purposes:

  • Account creation and authentication: Your email address is used as your unique account identifier. Your name is used to pre-populate your display name. Your profile photo is used as your default avatar within the platform.
  • Account security: Your email address is used to send account-related security notifications (such as login alerts or password reset requests, if applicable).

We do not use Google user data for advertising, marketing to third parties, or any purpose unrelated to providing and improving the Lowerated platform for you.

5.3 How We Store and Protect Google User Data

Google user data is stored in our primary database (Azure CosmosDB) alongside your Lowerated account record. It is protected by the same security measures described in Section 6 of this policy, including encryption at rest and in transit (TLS/HTTPS). Access to user data is restricted to authorized personnel and automated systems necessary to operate the Service.

5.4 Sharing of Google User Data

We do not sell, rent, or trade Google user data to any third party. Google user data is shared only in the following limited ways:

  • Within the platform: Your name and profile photo may be visible to project collaborators you invite and, if you choose to make your profile public, to other Lowerated users.
  • Service providers: Our hosting provider (Microsoft Azure) processes and stores this data on our behalf under strict data processing agreements. No other third-party service receives your Google user data.
  • Legal obligations: We may disclose data if required by law, as described in Section 3 of this policy.

5.5 Google API Services — Limited Use Disclosure

Lowerated's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Google user data to provide and improve user-facing features that are apparent to the user.
  • We do not transfer Google user data to third parties unless necessary to provide or improve user-facing features, to comply with applicable laws, or as part of a merger, acquisition, or asset sale with prior notice to users.
  • We do not use Google user data for serving advertisements, including retargeting, personalized advertising, or interest-based advertising.
  • We do not allow humans to read Google user data unless we have your affirmative agreement for specific messages, it is necessary for security purposes (such as investigating abuse), it is necessary to comply with applicable law, or our use is limited to internal operations and the data has been aggregated and anonymized.

5.6 Revoking Access and Deleting Google User Data

You can revoke Lowerated's access to your Google Account at any time by visiting your Google Account permissions page and removing Lowerated from the list of connected apps. Revoking access will prevent future Google Sign-In but will not automatically delete your Lowerated account or data.

To delete all Google user data stored by Lowerated, you may:

  • Delete your Lowerated account through your account settings, which will remove all associated data (including Google-sourced data) within 30 days.
  • Contact us at info@lowerated.com to request deletion of specific Google user data or your entire account.

Upon deletion, all Google user data (name, email, profile photo) will be permanently removed from our systems within 30 days. Certain anonymized or aggregated data that cannot be used to identify you may be retained for analytics purposes.

6. Data Storage and Security

Your data is stored using industry-standard infrastructure provided by Microsoft Azure, including:

  • Database: Account information, project data, and metadata are stored in Azure CosmosDB with encryption at rest.
  • File Storage: Uploaded documents, images, and media are stored in Azure Blob Storage with access controls.
  • Encryption: Data is encrypted in transit (TLS/HTTPS) and at rest.

While we implement commercially reasonable security measures, no system is 100% secure. We encourage you to use a strong, unique password and enable any available security features on your account.

7. Data Retention

We retain your information as follows:

  • Active Accounts: We retain your data for as long as your account is active and as needed to provide the Service.
  • After Account Deletion: When you delete your account, we will remove your personal data and Content within 30 days. Certain data may be retained longer if required for legal, security, or fraud-prevention purposes.
  • Billing Records: Transaction records may be retained for up to 7 years as required by tax and accounting regulations.

8. Cookies

We use a minimal set of cookies to operate the Service:

  • Session Cookies: Essential for authentication and maintaining your login state. These are strictly necessary and cannot be disabled.
  • Preference Cookies: Store your language and theme preferences.

We do not use advertising cookies or third-party tracking cookies. We do not participate in cross-site advertising networks.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete personal data.
  • Deletion: Request that we delete your personal data, subject to legal retention obligations.
  • Portability: Request your data in a commonly used, machine-readable format.
  • Restriction: Request that we limit how we process your data in certain circumstances.
  • Objection: Object to the processing of your data for specific purposes.

To exercise any of these rights, please contact us at info@lowerated.com. We will respond to your request within 30 days.

10. International Data Transfers

Your data may be processed and stored in regions outside your country of residence, including the United States and other jurisdictions where our service providers operate. When we transfer data internationally, we ensure appropriate safeguards are in place, including standard contractual clauses and data processing agreements with our providers.

11. Children's Privacy

The Service is not directed at children under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us and we will promptly delete that information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or through a prominent notice within the Service at least 14 days before the changes take effect. The "Last updated" date at the top of this page indicates when the policy was most recently revised.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: info@lowerated.com

By using Lowerated, you acknowledge that you have read and understood this Privacy Policy.