POTATO AI General Privacy Policy
Last Updated: 24 March, 2025
This Privacy Policy (“Policy”) governs how FASTPOTATO PTE. LTD. (collectively referred to as “POTATO,” “we,” “us,” or “our”) and its affiliated AI products, including ChatMax and VideoMax (collectively, the “Services”), collect, use, store, and share your personal data. This Policy consolidates privacy practices applicable to all Potato AI products and shall prevail in the event of any conflict with individual product-specific privacy policies. This Policy does not apply to certain non-AI products, such as PotatoVPN, unless stated otherwise.
By using our Services, you agree to the terms outlined in this Policy.
Introduce
We are committed to protecting your privacy and ensuring robust safeguards around your personal data. This Policy outlines the data we collect, why we collect it, how we use and protect it, your rights as a user, and your choices with regard to your personal information.
Data We Collect
We collect and process the following categories of data to provide, improve, and personalize our Services:
Data Provided by You
| Data Type | Collected Data | Purpose of use |
|---|
| Account Data | Email Address | To deliver personalized services and support authentication processes. |
| Payment Data | Subscription status, payment methods, subscribed packages, subscription time, and transaction ID | To manage subscriptions, provide VIP services, and facilitate troubleshooting support. |
| Image Data | Uploaded images, including screenshots or photos | To enable quality AI feature enhancements, such as question processing or image-based generation. |
| Document Data | Files uploaded (e.g., PDFs, other document formats) | To support document-based features and enhance service quality. |
| User Queries | Messages, email content, images, or other materials submitted via email | To optimize Services, respond to inquiries, and for analytical purposes. |
Data Collected Automatically
| Data Type | Collected Data | Purpose of use |
|---|
| Usage Data | User interaction data with the Services | To gain insights on usage patterns, improve Services, and enhance user experience. |
| Analytics Data | Crash logs, diagnostics, and error reports | To ensure performance stability, address issues efficiently, and enhance usability. |
| Device Information | Device model, operating system version, application version, time zone, and random ID | To provide essential features and compatibility support for the Services. |
| Security Data | IP addresses (collected through websites only) | To prevent network misuse, such as severing connections during potential attacks. |
Third-Party Data
Above data will be automatically collected in process of purchasing. We use them for purpose of user support and troubleshooting only.
Third-parties collection: when you place an order on a third-party platform, your information (e.g., geolocation, cardholder last name and last four digits of Credit card) might be collected by it. To understand what information a third party may collect, please refer to the respective privacy policy.
We do not share any personally identifiable information (such as usernames and email addresses) with third-party AI model providers or developers. However, in the course of using the API for chat or content generation on our produc, third-party developers may have the ability to view and store anonymized user chat transcripts on their servers for the purposes of model training.
Additionally, we may utilize user interactions on our products to enhance and personalize the user experience. This includes, but is not limited to, recommending the usage of other bots or suggesting discussion topics. These enhancements are conducted without disclosing any personally identifiable information to third parties.
We utilize various advertising and traffic-related APIs to enhance the user experience and improve the effectiveness of our services. These APIs enable us to analyze traffic to our users. Our partners in this endeavor are well-established platforms known for their reliability and global presence.
These platforms have a global presence and a reputable track record. They have also committed that the use and transfer of any information received from Google APIs to any other application will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
This section lists the third-party APIs we use, their related privacy policy links, and a description of the services they provide.
Third-Party Providers
| Provider | Service Description | Privacy Policy Link |
|---|
| OpenAI | Provides advanced natural language processing and generation AI models | Privacy Policy |
| Perplexity | Provides advanced search and question-answering AI models | Privacy Policy |
| Singular | Third-party attribution analysis for ad placements | Privacy Policy |
| Kling AI | Provides advanced video generation AI models | Privacy Policy |
| Google | Google Sign-In: Authentication and authorization services | Privacy Policy |
| NANONOBLE | Provides advanced image and video generation AI models | Privacy Policy |
Cookies
| Name | Purpose | Provider | Expires |
|---|
| 3hgj7aadzg | To help us know whether cookies popovers have been shown. | VideoMax, ChatMax | 360Days |
| id | To identify users' unique ID and login status. | VideoMax, ChatMax | 360Days |
| token_fm63sx87pd | To collect users' UserID and DeviceID to maintain login status and improve security. | VideoMax, ChatMax | 360Days |
| a5mqtrqjkh | To manage the information collection options popup | VideoMax, ChatMax | 360Days |
| You can disable cookies through your browser settings, but doing so may affect functionality. |
Data Retention
How we share your data
- Your Usage Data will only be stored for no more than 48 hours, after which it will be automatically deleted.
- Other personal data will only be retained as long as it is needed or required by law.
Where We Store Your Data
When you use our Service, you may be using servers located in a variety of different countries. However, there is a difference between use and storage. The data we collect are mostly stored in servers located in the European Union.
Since we are a Singapore company, we may access the data outside from the EU when necessary, for example, when user support is required.
In all cases, we follow generally accepted standards and security measures to protect the personal data submitted to us, both during transmission and once we receive it. We always strive to protect your data to the maximum extent we can.
Data Security
We implement stringent safeguards to protect your data, including the following measures:
- Physical, administrative, and technical security protocols to prevent unauthorized access.
- Regular audits of our data handling practices to identify and rectify vulnerabilities.
- Mandatory employee data protection training.
- A dedicated incident response protocol to address security breaches promptly.
Your Privacy Rights
Your Rights Under GDPR
The General Data Protection Regulation (GDPR) of the European Union (EU) requires us to specifically underline users' rights in the EU, which are:
- The right to be informed.
- The right to access.
- The right of rectification.
- The right to erasure, or the right to be forgotten.
- The right to restrict processing.
- The right to data portability.
- The right to object.
- Rights in relation to automated decision-making and profiling.
Legal Basis
POTATO is committed to user privacy globally, and our existing practices reflect that through minimal collection of data and ensuring users have control over their personal information. GDPR requires us to outline those practices in a specific manner for users in the EU.
In line with the GDPR, we collect and process the data outlined in this Privacy Policy on one of the following bases, depending on the circumstances:
- For the purposes of fulfilling our contractual obligations to users, including:
- Providing users with the Services and Apps they have requested.
- Managing user subscriptions and processing payments.
- Providing customer support.
- For a legitimate interest associated with the operation of our business, including:
- Enhancing the quality, reliability, and effectiveness of our Site, Services, and Apps.
- Communicating with customers to provide information and seek feedback related to our Services and Apps.
You can exercise your rights under GDPR to access, transfer, correct, delete, or object to the processing of your personal information by contacting us at
[email protected].
Your Rights Under CCPA
If you are a California resident, your privacy rights are outlined in the California Consumer Privacy Act (CCPA). As per definitions in CCPA, POTATO does not sell your personal information to non-affiliated third parties.
If you would like to know further information regarding your legal rights under California law or would like to exercise any of them, please contact us at:
[email protected].
General User Rights
You have the right to access, correct, delete, or object to the processing of your personal information by contacting us at
[email protected].
It should be noted that you may make up to 3 requests to us per year and we may charge a reasonable fee for each additional request to exercise any such right during such 12-month period. We will respond to your request within 30 days. If reasonably necessary, we may extend this by a further 30 days on notice to you. However, deleting information may prevent you from continuing using our Services.
Age Restriction
Potato AI Services are designed for users aged 18 years or older. Consent from a parent or legal guardian is required for minors wishing to use these Services.
Updates to This Privacy Policy
We may revise this Policy periodically to reflect changes in laws, business practices, or technology. Updates will be notified on this page with a revised "Last Updated" date.
Contact Us
Feel free to reach out for inquiries or concerns: