Privacy Policy
Last Updated: March 28, 2025
•Effective Date: April 1, 2025
📌 In Plain English
This policy explains:
- What information we collect when you use discuse
- How we use and protect that information
- Your rights over your information
- How we use content sent to our API to improve our AI models
- How to opt out if you don't want your data used for AI training
The most important things to know:
- We collect information you provide (like your account details) and information collected automatically (like how you use our service)
- We use content you send to our API to train our AI models, but you can opt out in your account settings
- We keep your data secure with encryption and strict access controls
- You can request access to, correction of, or deletion of your data at any time
- We don't sell your personal information to third parties
- We keep your data for specific periods (usually 90 days for API content, longer for account information)
This summary is just a friendly overview. The full policy below is the legally binding document.
1. Introduction
Showlabel Ltd ("we", "our", "us", or "the Company") is committed to protecting your privacy and the security of your personal information. We are a company registered in England and Wales (Company No. 12345678) with our registered office at 10 Technology Square, London, EC2A 1AB, United Kingdom.
This Privacy Policy explains what information we collect, how we use it, and the controls we give you to access, update, or delete your information. It applies to all services offered by discuse, including our website at discuse.com, our content moderation API, and any associated services (collectively, our "Services").
Please read this Privacy Policy carefully before using our Services or submitting personal information to us. By using the discuse Platform or any of our Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy.
If you have any questions or concerns about this Privacy Policy or our data practices, please contact our Data Protection Officer at dpo@discuse.com.
2. Information We Collect
We collect information in several ways depending on how you use our Services:
2.1 Information You Provide to Us
- Account Information: When you create an account, we collect your name, email address, password, and other information necessary to set up and manage your account.
- Profile Information: We collect information you provide in your profile settings, such as your profile picture, job title, and other optional details.
- Content: We collect and process content that you submit to our Services, including text, images, videos, and other media you send to our API for moderation purposes.
- Communications: When you communicate with us, we collect information such as your name, contact details, and the content of your communications.
- Payment Information: If you subscribe to our paid services, we collect payment information, which is processed by our payment processors. We do not store complete payment card information on our servers.
- Organization Information: If you create or manage an organization on our platform, we collect information about that organization and its members.
2.2 Information We Collect Automatically
- Usage Information: We collect information about how you use our Services, including your interactions with the platform, features you use, and time spent on the platform.
- Device Information: We collect information about the devices you use to access our Services, including hardware models, operating system and version, unique device identifiers, and mobile network information.
- Log Information: We collect log information when you use our Services, including browser type, access times, pages viewed, IP address, and referring/exit pages.
- Location Information: We collect general location information (such as country or city) based on your IP address. We do not collect precise location data unless you specifically authorize it.
- Cookies and Similar Technologies: We use cookies and similar technologies to collect information about your browsing behavior and preferences. For more information, please see our Cookie Policy.
- API Usage: When you use our API, we collect information about your API calls, including timestamps, request parameters, and response data.
2.3 Information from Third Parties
- Third-Party Integrations: If you connect your discuse account to a third-party service (such as social media platforms or content management systems), we may receive information from that service, such as your profile information and authentication details.
- Partners and Service Providers: We may receive information about you from our business partners and service providers, such as our payment processors, identity verification services, and analytics providers.
- Publicly Available Sources: We may collect information about you from publicly available sources, such as company websites, public social media profiles, and business registries.
3. How We Use Your Information
We use the information we collect for various purposes, including:
- Providing and Improving Our Services: To provide, maintain, and improve our Services, including processing content moderation requests, displaying relevant content, and developing new features.
- Account Management: To create and manage your account, authenticate your identity, and provide customer support.
- Communications: To communicate with you about our Services, respond to your inquiries, and send you important information, such as updates, security alerts, and administrative messages.
- Personalization: To personalize your experience, such as showing you content and offers that may be of interest to you.
- Analytics: To analyze and understand how users interact with our Services, improve user experience, and optimize performance.
- Marketing: To market our Services to you, including sending promotional communications, conducting surveys, and showing advertisements. You can opt out of marketing communications at any time.
- Security: To detect, prevent, and respond to security incidents, fraud, abuse, unauthorized access, and other security risks.
- Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests.
- Enforcing Our Rights: To enforce our Terms of Service and other legal rights and obligations.
- Business Operations: To conduct internal business operations, such as accounting, auditing, and reporting.
4. Legal Basis for Processing (UK and EEA Users)
If you are in the United Kingdom or European Economic Area (EEA), we collect and process your personal information based on one or more of the following legal bases:
- Contractual Necessity: Processing necessary to provide the Services you have requested or to fulfill a contract with you, such as providing content moderation services or managing your account.
- Legitimate Interests: Processing based on our legitimate interests or those of a third party, such as to improve our Services, prevent fraud, ensure network and information security, and for direct marketing. We balance our interests against your rights and freedoms and do not process your information if your rights override our interests.
- Consent: Processing based on your consent, such as for certain types of marketing communications or for using your content for AI training purposes. You can withdraw your consent at any time.
- Legal Obligation: Processing to comply with our legal obligations, such as responding to lawful requests from public authorities or maintaining tax records.
5. Model Training and AI Development
We may use content submitted to our API to improve our AI models. This is an important part of how we enhance our content moderation capabilities and develop new features.
5.1 How We Use Your Content for Training
When you submit content (such as text, images, or other media) to our API, we may use this content to:
- Train new versions of our content moderation AI models
- Test and validate the performance of our moderation systems
- Develop new features for detecting harmful or inappropriate content
- Improve classification accuracy for different types of content
- Research new approaches to content moderation
5.2 Safeguards We Implement
We implement several safeguards when using your content for training purposes:
- We anonymize and de-identify content where possible before using it for training
- We implement strict access controls to limit who can access training data
- We do not use content containing special categories of personal data (such as health information) for training without explicit consent
- We do not attribute training data to specific users or organizations in our models
- We maintain records of what types of data are used in training for accountability
5.3 Your Choices
You have control over whether your content is used for training:
- You can opt out of having your content used for training by enabling the "Exclude from AI Training" option in your account settings
- You can contact us at privacy@discuse.com to request that we exclude your content from training
- Organizations can specify in their contract with us if they do not want their content used for training
- Opting out will not affect the quality or availability of our content moderation services for you
Important note: If you opt out, we will still process your content to provide our moderation services, but we will not use it to train or improve our AI models.
6. How We Share Your Information
We may share your information in the following circumstances:
- With Your Consent: We share information with third parties when you give us permission to do so.
- With Service Providers: We share information with vendors, consultants, and other service providers who need access to such information to carry out work on our behalf. These include:
- Cloud hosting providers (e.g., AWS, Google Cloud)
- Payment processors (e.g., Stripe, PayPal)
- Customer support services
- Analytics providers
- Email and communication service providers
- Security and fraud prevention services
- Within Your Organization: If you use our Services through an organization account, your information and activity may be visible to administrators and other members of your organization according to your organization's settings.
- For Legal Reasons: We may share information if we believe it's necessary to:
- Comply with applicable laws, regulations, legal processes, or governmental requests
- Enforce our Terms of Service and other agreements
- Protect the rights, property, or safety of discuse, our users, or others
- Detect, investigate, or prevent fraud, security breaches, or technical issues
- Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
- Aggregated or De-identified Information: We may share aggregated or de-identified information, which cannot reasonably be used to identify you, with third parties for research, marketing, analytics, and other purposes.
We do not sell your personal information to third parties for their direct marketing purposes.
7. International Data Transfers
discuse is based in the United Kingdom, and we process and store data both within and outside the UK and European Economic Area (EEA). Therefore, we and our service providers may transfer your personal information to, or access it in, jurisdictions that may not provide levels of data protection equivalent to those in your home country.
When we transfer personal information outside the UK or EEA, we implement appropriate safeguards to ensure your data remains protected. These safeguards include:
- Using standard contractual clauses approved by the UK Information Commissioner's Office or the European Commission
- Transferring to countries that have been deemed to provide an adequate level of protection
- Obtaining your explicit consent for certain transfers, where appropriate
- Implementing appropriate technical and organizational measures to ensure a level of security appropriate to the risk
You can request a copy of the safeguards we use to transfer personal information by contacting our Data Protection Officer at dpo@discuse.com.
8. Data Retention
We retain your personal information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements. The specific retention periods depend on the nature of the information and legal requirements.
Type of Information | Retention Period |
---|---|
Account information | For the duration of your account plus up to 12 months after account closure |
Content submitted via API | Up to 90 days for operational purposes; longer if used for AI training (unless you opt out) |
Payment information | Up to 7 years for tax and accounting purposes |
Usage logs | Up to 24 months |
Communications with us | Up to 3 years after your last communication |
We will securely delete or anonymize your personal information when it is no longer needed for the purposes for which it was collected, unless we are legally required to retain it for a longer period.
If you wish to request deletion of your information before the end of the applicable retention period, please refer to the "Your Rights and Controls" section below.
9. Data Security
We implement appropriate technical and organizational measures to protect your information against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures include:
- Encryption of personal information both in transit and at rest
- Regular security assessments and penetration testing
- Access controls and authentication requirements
- Regular backups and data recovery procedures
- Staff training on data protection and security
- Physical security measures for our premises and servers
While we work hard to protect your information, no security system is 100% secure, and we cannot guarantee the absolute security of your data. If you have reason to believe that your interaction with us is no longer secure, please contact us immediately at security@discuse.com.
Data Breach Notification: In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay and in accordance with applicable laws.
10. Your Rights and Controls
Depending on your location, you have certain rights regarding your personal information. These may include:
- Access: You have the right to request a copy of the personal information we hold about you.
- Correction: You have the right to request correction of your personal information if it is inaccurate or incomplete.
- Deletion: You have the right to request that we delete your personal information in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.
- Restriction: You have the right to request that we restrict the processing of your personal information in certain circumstances, such as when you contest the accuracy of the data.
- Data Portability: You have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format and to transmit that information to another controller.
- Objection: You have the right to object to the processing of your personal information in certain circumstances, including processing for direct marketing or profiling.
- Withdraw Consent: If we process your information based on your consent, you have the right to withdraw that consent at any time.
- Complaint: You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal information violates applicable law.
To exercise these rights, please contact our Data Protection Officer at dpo@discuse.com or submit a request through our Data Request Form. We will respond to your request within one month, although we may extend this period by up to two additional months if necessary, taking into account the complexity and number of requests.
We may ask for additional information to verify your identity before processing your request. In some cases, we may deny your request if permitted by law, such as when the request is manifestly unfounded or excessive, or if it would adversely affect the rights of others.
11. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to collect information about your browsing activities on our website and to provide certain features of our Services. Cookies are small text files that are stored on your device when you visit a website.
We use the following types of cookies:
- Essential Cookies: These cookies are necessary for our website to function properly and cannot be switched off. They are usually set in response to actions you take, such as setting your privacy preferences, logging in, or filling in forms.
- Analytical/Performance Cookies: These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us know which pages are the most and least popular and see how visitors move around the site.
- Functionality Cookies: These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third-party providers whose services we have added to our pages.
- Targeting Cookies: These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant advertisements on other sites.
You can control cookies through your browser settings and other tools. For more information about our use of cookies and how to manage them, please see our Cookie Policy.
Do Not Track: Some browsers have a "Do Not Track" feature that signals to websites that you visit that you do not want to have your online activity tracked. Our website does not currently respond to "Do Not Track" signals.
12. Children's Privacy
Our Services are not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16 without parental consent where such consent would be required, we will take steps to delete such information as quickly as possible.
If you believe that we might have any information from or about a child under 16, please contact us at privacy@discuse.com.
13. Third-Party Services and Links
Our Services may contain links to third-party websites, products, or services. We are not responsible for the privacy practices of these third parties, and we recommend reviewing their privacy policies before providing them with any personal information.
Some examples of third-party services we may link to include:
- Social media platforms (e.g., Twitter, LinkedIn, GitHub)
- Payment processors
- Analytics providers
- Content delivery networks
- Integration partners
When you use third-party integrations with our Services, both our Privacy Policy and the third party's privacy policy may apply to your data.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will notify you through our Services, by email, or by other means before the changes take effect.
We encourage you to review this Privacy Policy periodically to stay informed about our data practices. Your continued use of our Services after any changes to this Privacy Policy constitutes your acceptance of the revised Privacy Policy.
When we make updates, we will revise the "Last Updated" date at the top of this policy. For significant changes, we will provide more prominent notice and, where required by law, seek your consent.
15. Region-Specific Provisions
15.1 United Kingdom and European Economic Area
If you are located in the United Kingdom or European Economic Area (EEA), the following additional provisions apply:
- Data Controller: Showlabel Ltd (Company No. 09342249) is the data controller of your personal information. Our registered office is at 10 Technology Square, London, EC2A 1AB, United Kingdom.
- Data Protection Officer: You can contact our Data Protection Officer at dpo@discuse.com or by mail at our registered office address.
- Supervisory Authority: You have the right to lodge a complaint with a supervisory authority. In the UK, this is the Information Commissioner's Office (ICO), which can be contacted at ico.org.uk or by phone at 0303 123 1113.
- Legal Basis: We process your personal information as described in the "Legal Basis for Processing" section above.
- International Transfers: When we transfer your personal information outside the UK or EEA, we ensure appropriate safeguards are in place, as described in the "International Data Transfers" section above.
- Automated Decision-Making: We do not make decisions based solely on automated processing, including profiling, that produce legal effects concerning you or similarly significantly affect you, unless you have given explicit consent or where authorized by law.
15.2 California Residents
If you are a California resident, the California Consumer Privacy Act (CCPA) grants you specific rights regarding your personal information, in addition to those described in this Privacy Policy:
- Right to Know: You have the right to request that we disclose certain information about our collection and use of your personal information over the past 12 months.
- Right to Delete: You have the right to request that we delete your personal information that we have collected from you and retained, subject to certain exceptions.
- Right to Opt-Out of Sale: You have the right to opt out of the sale of your personal information. We do not sell your personal information as defined by the CCPA.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.
To exercise your rights under the CCPA, please contact us at privacy@discuse.com or through our Data Request Form.
16. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Data Protection Officer
Email: dpo@discuse.com
General Privacy Inquiries
Email: privacy@discuse.com
Postal Address
Showlabel Ltd
Attention: Privacy Department
85 Great Portland Street
London
United Kingdom
We will respond to your inquiry within one month, although we may extend this period by up to two additional months if necessary, taking into account the complexity and number of requests.