Privacy Policy

This website and service (“Mods Editor”) is operated by GPH Revline Motors LTD, a company registered in Cyprus with registration number HE488892, and its registered address at Agios Ioannis, Nicosia, Cyprus (“we”, “us”).

For the purposes of applicable data protection law (including the EU General Data Protection Regulation), we are the controller of personal data processed in connection with Mods Editor, except where we act solely as a processor on behalf of another party (for example, where a third-party service processes data under its own terms).

This policy describes how we handle personal data when you use Mods Editor at mods.gphrevline.com. It does not cover other GPH Revline Motors websites or services unless those services link to this policy.

• Email address, name, and profile image when you sign in (for example via Google or Facebook) or create an account using passkeys (WebAuthn). We use these to identify your account and display your profile where the app shows them.
• OAuth provider identifiers (which providers you connected) to manage linked sign-in methods.
• Passkey (WebAuthn) data: we store cryptographic credential identifiers and public keys needed for passkey sign-in. We do not receive or store your biometric data; that remains on your device.
• Sessions: we use browser cookies to keep you signed in. A short-lived cookie may be used during passkey registration or login to complete the WebAuthn challenge.
• Email-based sign-in: if we issue a one-time or temporary login token, we process your email and that token only for the purpose of completing sign-in.

• Credits balance and related records to operate the credit-based features.
• Transaction history (for example purchases, usage deductions, welcome bonus), including descriptions and technical usage metadata such as token counts and model identifiers where applicable.
• Payments: if you purchase credits, we use Stripe to process payments. We receive and store information needed to fulfil your order (such as a Stripe customer identifier linked to your account and transaction references). Payment card details are handled by Stripe in accordance with Stripe’s privacy policy.

• Prompts and images you submit for image generation or editing are processed to provide the service. That includes sending content to Google (Gemini / Generative AI APIs) for generation and related checks, and may involve pulling prompt configuration from LangChain / LangSmith Hub as implemented in our application. See LangChain’s privacy policy.
• Vehicle projects (“cars”): we store project names, image URLs, modification history (including prompts and resulting image URLs), and associate them with your account (typically by email). Images may be stored in Google Cloud Storage and served via public URLs.

• Welcome or onboarding flags (for example whether a welcome message was dismissed) to avoid showing the same prompt repeatedly.

• We use Google Analytics (when configured) to understand how the site is used. Analytics may set cookies and collect information such as pages viewed and device/browser characteristics. See Google’s documentation for how Google uses data from sites that use their services.

Depending on the processing, we rely on one or more of:

• Performance of a contract — to provide Mods Editor, accounts, credits, and paid features you request.
• Legitimate interests — for example securing the service, fraud prevention, improving the product, and analytics in a way that respects your rights.
• Consent — where required (for example non-essential cookies or marketing, if we use them on that basis).
• Legal obligation — where we must process data to comply with the law.

We retain personal data only as long as needed for the purposes above, including legal, accounting, and dispute resolution requirements. Account and transaction data are typically kept for the life of your account and a reasonable period afterwards. Server logs and analytics data are retained according to our infrastructure and analytics settings.

We use trusted service providers to run Mods Editor. They may process data in Cyprus, the EEA, the United Kingdom, the United States, or other countries where they operate. Where personal data is transferred outside the EEA/UK, we use appropriate safeguards (such as standard contractual clauses) where required by law.

Categories of recipients include, depending on your use:

• Database hosting — we store account and application data in MongoDB (hosted according to our deployment configuration);
• Google (authentication, AI, cloud storage, analytics);
• Meta (Facebook login);
• Stripe (payments) — see Stripe’s privacy policy;
• LangChain / LangSmith (prompt tooling as used by the app) — see LangChain’s privacy policy;

We implement appropriate technical and organisational measures to protect personal data. No method of transmission or storage is completely secure; we work to safeguard your information proportionate to the risk.

Depending on your location, you may have rights to access, rectify, delete, or restrict processing of your personal data, to data portability, and to object to certain processing. You may also have the right to lodge a complaint with a supervisory authority.

To exercise your rights or ask privacy questions, please contact us using the official contact form (preferred):

We may update this policy from time to time. The “Effective date” at the top will be revised when we do. Continued use of Mods Editor after changes means you acknowledge the updated policy, where permitted by law.