Login
Privacy Policy

Effective Date: November 23, 2025

Dream Vision Labs, Inc. ("Yapper", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile application, and services (collectively, the "Services"). Please read this policy carefully to understand our practices regarding your personal information.

1. Information We Collect

We collect various types of information in connection with the Services:

1.1 Personal Information

  • Authentication Information: We collect your name, email address, and profile information through third-party authentication services including Google Sign-In, Apple Sign-In, email/password authentication, and email link (magic link) authentication. When you sign in with Apple or Google, we receive the basic profile information you choose to share with us.
  • Account Information: We store your user ID, display name, email address, profile photo URL, and account creation and login timestamps.
  • Phone Number: If you choose to provide it, we may collect your phone number for account verification or communication purposes.

1.2 Content and Usage Data

  • Generated Content: We store all content you create using our Services, including deepfake videos, audio files, images, scripts, prompts, and any parameters or settings you select during content generation.
  • Uploaded Media: We store any images, videos, or audio files you upload to our platform, including metadata such as file type, size, dimensions, and duration.
  • Usage Analytics: We track your usage of the Services, including the number of videos and images generated, generation parameters, model selections, and features used.
  • Session Data: We maintain records of your generation sessions, including session history and associated content.

1.3 Payment Information

  • Payment processing is handled exclusively by Stripe and Apple In-App Purchases. We do not store your credit card numbers, banking information, or other sensitive payment details on our servers.
  • We maintain records of your subscription status, payment history, Stripe customer ID, credit balance, and purchase history for billing and support purposes.
  • If you purchase through third-party platforms such as AppSumo, we may receive and store license keys or access codes to validate your subscription.

1.4 Technical Information

  • We automatically collect technical information about your device and how you interact with our Services, including IP address, browser type, device type, operating system, and referral URLs.
  • We use cookies and similar tracking technologies to maintain your session and improve your experience.

1.5 Third-Party API Keys (BYOK)

  • If you choose to use our "Bring Your Own Key" (BYOK) feature, we collect and store your third-party API keys (such as Fal AI API keys) that you provide.
  • Encryption: Your API keys are encrypted using industry-standard AES-256-GCM envelope encryption before storage. This involves encrypting your key with a randomly generated envelope key, which is then encrypted with our master encryption key. Your API keys are never stored in plain text.
  • Access: Your encrypted API keys are only decrypted server-side when needed to make requests to the respective third-party API on your behalf. Keys are decrypted in memory and are not logged or persisted in decrypted form.
  • Display: After saving, only a masked version of your API key (showing the first few and last few characters) is displayed for identification purposes. The full key cannot be retrieved or viewed.
  • Security Limitations: While we employ robust encryption and security practices, no system is completely immune to all security threats. We cannot guarantee absolute protection against all potential data breaches, sophisticated cyber attacks, or unforeseen vulnerabilities. You acknowledge this limitation when storing your API keys with us.
  • Your Responsibility: You are responsible for managing your API keys with the third-party provider, including setting usage limits, monitoring for suspicious activity, and revoking keys if necessary. We recommend using dedicated API keys for Yapper that are not shared with other services.
  • Deletion: You may delete your stored API keys at any time through your account settings. Upon deletion, the encrypted key data is permanently removed from our active database.

2. How We Collect Information

  • Authentication Providers: Through Google Sign-In, Apple Sign-In, email/password authentication, and email link (magic link) authentication when you create an account or sign in.
  • Direct Input: When you enter information into forms, upload files, create content, or configure settings on our platform.
  • Automated Collection: Through cookies, log files, and similar technologies as you interact with our Services.
  • Third-Party Services: From payment processors (Stripe), analytics services, and other integrated service providers.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve the Services, including generating deepfake videos, images, and audio content based on your inputs.
  • Account Management: To create and manage your account, authenticate your identity, and enable account linking between our iOS app and web application.
  • Personalization: To customize your experience, remember your preferences, and provide personalized content and recommendations.
  • Billing and Payments: To process payments, manage subscriptions, track credits and usage, and handle refunds when applicable.
  • Customer Support: To respond to your inquiries, troubleshoot issues, and provide technical assistance.
  • Service Improvement: To analyze usage patterns, improve our algorithms and models, develop new features, and optimize performance.
  • Safety and Security: To detect and prevent fraud, abuse, illegal activities, and violations of our Terms of Service, including content moderation to ensure compliance with our content policies.
  • Legal Compliance: To comply with legal obligations, respond to legal requests, and enforce our agreements.
  • Communications: To send you service-related notifications, updates, security alerts, and administrative messages.
  • Marketing Communications: When you create an account, you are automatically subscribed to our newsletter and may receive promotional emails, product updates, feature announcements, and marketing communications. You can unsubscribe at any time by clicking the unsubscribe link in any email or by contacting us at support@yapper.so. We may continue to send you essential service-related communications regardless of your marketing preferences.

4. Account Linking

We enable account linking between our iOS mobile application and web application to provide a seamless experience across platforms:

  • When you sign in with the same authentication method (Google, Apple, or email) on both the iOS app and web application, we automatically link your accounts using your unique user identifier from Firebase Authentication.
  • Account linking allows you to access your content, credits, subscriptions, and generation history across both platforms.
  • We use secure token-based authentication to enable cross-platform access while maintaining security.
  • Your subscription purchased through Apple In-App Purchases on iOS or through Stripe on the web will be accessible on both platforms once accounts are linked.

5. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information only in the following limited circumstances:

  • Service Providers: We share information with trusted third-party service providers who assist us in operating our Services, including Google Cloud Platform (for hosting and storage), Firebase (for authentication and database), Stripe (for payment processing), and AI model providers (for content generation). These providers are contractually obligated to protect your information and use it only for the purposes we specify.
  • Legal Requirements: We may disclose information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, prevent fraud, or ensure safety.
  • Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.
  • Content Moderation: We may use automated systems and human review to analyze user-generated content to detect violations of our Terms of Service and applicable laws.
  • With Your Consent: We may share information with your explicit consent or at your direction.

6. Data Storage and Security

  • Your information is securely stored on Google Cloud Platform using Firebase services, which employ industry-standard security measures including encryption in transit and at rest.
  • We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction.
  • Authentication is managed through Firebase Authentication, which uses secure protocols and industry best practices.
  • While we strive to protect your information, no method of electronic storage or transmission over the internet is 100% secure. We cannot guarantee absolute security.
  • Your content and generated media remain stored in our systems until you delete them or request account deletion.

7. Cookies and Tracking Technologies

  • We use cookies and similar tracking technologies to maintain user sessions, remember your preferences, and improve the functionality of our Services.
  • Session cookies are used during authentication to prevent repeated login prompts and maintain your signed-in state.
  • We may use analytics cookies to understand how users interact with our Services and identify areas for improvement.
  • We use referral tracking (via Rewardful) to attribute sign-ups to referral partners when applicable.
  • You can control cookie preferences through your browser settings, though disabling cookies may limit some functionality of the Services.

8. Data Retention

  • We retain your personal information for as long as your account is active or as needed to provide you with the Services.
  • Generated content, uploaded media, and associated metadata are retained until you delete them or close your account.
  • We may retain certain information for longer periods as required by law, for legitimate business purposes, or to resolve disputes and enforce our agreements.
  • Credits purchased as one-time bundles never expire. Subscription credits reset monthly according to your billing cycle.

9. Your Rights and Privacy Regulations

You have the following rights regarding your personal information:

  • Access and Correction: You can access and update your account information through your account settings or by contacting us at support@yapper.so.
  • Deletion: You can request deletion of your personal information and account by contacting us. Some information may be retained as required by law or for legitimate business purposes.
  • Data Portability: You may request a copy of your data in a portable format.
  • Opt-Out: You can opt out of promotional communications by following the unsubscribe instructions. You cannot opt out of service-related communications necessary for account management.

We comply with GDPR (for EEA and UK residents), CCPA (for California residents), and other applicable privacy regulations. Depending on your location, you may have additional rights including the right to object to processing, restrict processing, withdraw consent, and lodge complaints with supervisory authorities. We do not sell your personal information. To exercise any of these rights, contact us at support@yapper.so. We will respond within the timeframes required by law.

10. Children's Privacy

Our Services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you are between 13 and 17 years old, you must have parental or guardian consent to use our services. If you become aware that a child under 13 has provided us with personal information, please contact us at support@yapper.so, and we will take steps to delete such information.

Users under 18 may not enter into paid subscriptions or make purchases without parental consent and supervision. We comply with the Children's Online Privacy Protection Act (COPPA) and do not knowingly collect personal information from children under 13.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. We take appropriate measures to ensure that your personal information remains protected in accordance with this Privacy Policy when transferred internationally.

13. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing them with any information.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the effective date. For significant changes, we may provide additional notice such as through email or a prominent notice on our Services. Your continued use of the Services after the effective date of the updated policy constitutes your acceptance of the changes.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

  • Dream Vision Labs, Inc.
  • Email: support@yapper.so
  • Website: withyapper.com

15. Consent

By creating an account and using our Services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, disclosure, and processing of your information as described herein.