Privacy Policy

Effective Date: May 3, 2026

1. Introduction

ReelKey ("we" or "us") values your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our services. ReelKey is a BYOK (Bring Your Own Key) AI video generation workspace. You connect your own fal.ai API key, and all generation requests are billed directly to your fal.ai account — our servers do not store your key.

2. Information We Collect

We collect only the following necessary information:

  • Account Information: When you register via Google OAuth, we collect your email address, username, and profile picture.
  • License Information: Your purchase record and license status, used to verify your access entitlements.
  • Video Generation Records: The text prompts you submit, model parameters you select, generated video file URLs, and generation timestamps. We do not use your video content for model training.
  • Usage Data: IP address, browser type, access times, page interactions, and session behavior for security, troubleshooting, and service improvement purposes.
  • Payment Information: Payment processing is handled entirely by Creem (creem.io). We do not store your credit card number or payment credentials. We receive only a purchase confirmation and customer ID from Creem.

3. Your API Key — How It Is Stored and Used

Your fal.ai API key is stored solely in your browser's localStorage. It is never transmitted to or stored on our servers or databases.

Here is exactly how it works:

  • Your API key is stored locally in your device's browser localStorage, under your own control.
  • When you start a video generation, your browser includes the key in the request header sent to our proxy endpoint.
  • Our server uses the key in-memory for that single request to forward the call to fal.ai, then immediately discards it. No persistent storage occurs.
  • Our database contains no record of your API key at any point.
  • You can delete the locally stored key at any time by clearing your browser's localStorage or using the key management panel in your account settings.

4. How We Use Your Information

  • To provide, maintain, and improve our services.
  • To verify your license status and unlock the corresponding features.
  • To store your generated video files in the cloud (permanent storage feature for paid users only).
  • To send you service notifications and security alerts.
  • To detect and prevent fraud and abuse.

5. Third-Party Services

We do not sell your personal information. To operate our service, we use the following third-party providers:

  • fal.ai: AI video generation provider. Your generation requests are forwarded to fal.ai using your own API key. fal.ai bills costs directly to your fal.ai account, not to ReelKey. Please review fal.ai's privacy policy for details on how they handle your data.
  • Cloudflare R2: Cloud storage for generated video files (permanent storage feature for paid users).
  • Creem (creem.io): Payment processing and license management.
  • Google OAuth: Account authentication.
  • Vercel: Website hosting and deployment.
  • Microsoft Clarity: Usage analytics, heatmaps, and session recordings to understand page interactions, troubleshoot experience issues, and improve the product.
  • Plausible Analytics: Privacy-focused website analytics to understand aggregate traffic and product usage without cross-site tracking.
  • Resend: Transactional email delivery (e.g., purchase confirmation emails).

Each provider processes your data only to the extent necessary to provide their service, and we require them to comply with applicable data protection laws.

6. Browser Local Storage

We use your browser's localStorage to store your fal.ai API key locally on your device. This data exists only on your device — ReelKey's servers have no access to it. If you clear your browser data or use incognito mode, the key will no longer be available and you will need to re-enter it.

7. Data Security

We implement reasonable technical and organizational measures to protect your information, including HTTPS encryption and access controls. However, no internet transmission method is 100% secure. Please also take care to protect your own account credentials.

8. Your Rights

Depending on applicable laws (including GDPR and US state privacy laws), you may have the right to access, correct, delete, or export the personal information we hold about you. Please contact us at privacy@reelkey.app to exercise these rights.

9. Children's Privacy

Our services are not intended for children under 13 (or the applicable age in your jurisdiction). If we discover we have collected personal information from a child, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via an in-service notice or email before the changes take effect. Your continued use of the service after notification constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at: privacy@reelkey.app

Privacy Policy - ReelKey | ReelKey