Privacy Policy

Last Updated: February 15, 2026

Welcome to Morphara. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our 3D character creation platform.

1. Information We Collect

1.1 Account Information

Email Address: Required for account creation, authentication, and communication
Password: Stored securely using industry-standard encryption (bcrypt hashing)
User ID: Automatically generated unique identifier

1.2 Payment Information

Stripe Payment Data: We use Stripe for payment processing. We do NOT store your credit card details on our servers
Billing Information: Name, billing address, and email (stored by Stripe, not by us)
Transaction History: Records of purchases, subscriptions, and credit usage

1.3 Usage Data

Character Data: 3D models you create, blend shapes, clothing configurations (stored temporarily during your session)
Export History: Records of exports for credit deduction tracking
Session Data: Login timestamps, IP addresses for security purposes
Analytics: We may collect anonymous usage statistics to improve our service

1.4 Newsletter Data

Email Address: If you subscribe to our newsletter (optional)

2. How We Use Your Information

Account Management: Create and maintain your account, authenticate logins
Service Delivery: Provide access to base meshes, clothing, animations, and export functionality
Payment Processing: Process purchases, manage subscriptions, allocate credits
Communication: Send transactional emails (purchase confirmations, subscription updates), optional newsletters
Security: Detect and prevent fraud, unauthorized access, and abuse
Improvement: Analyze usage patterns to enhance features and user experience
Legal Compliance: Comply with applicable laws and regulations

3. Data Storage and Security

Database: User data stored in Supabase (PostgreSQL) with encryption at rest and in transit
Cloud Storage: 3D assets stored in Cloudflare R2 with access control
Authentication: JWT-based tokens with secure session management
Encryption: All passwords hashed using bcrypt, HTTPS/TLS for all connections
Access Control: Role-based permissions, minimal data exposure

4. Data Sharing and Third Parties

We do NOT sell your personal data. We only share data with:

Stripe: Payment processing (subject to Stripe's Privacy Policy)
Supabase: Database and authentication services (subject to Supabase's Privacy Policy)
Cloudflare: Infrastructure and CDN services (subject to Cloudflare's Privacy Policy)
Legal Authorities: If required by law or to protect our rights

5. Your Rights

Access: Request a copy of your personal data
Correction: Update or correct inaccurate information
Deletion: Request deletion of your account and associated data
Portability: Export your data in a machine-readable format
Withdraw Consent: Unsubscribe from newsletters, cancel subscriptions
Object: Object to certain data processing activities

To exercise these rights, contact us at ayuodev@gmail.com

6. Data Retention

Active Accounts: Data retained while your account is active
Deleted Accounts: Personal data deleted within 30 days of account deletion request
Transaction Records: Retained for 7 years for legal and accounting compliance
Backup Data: May persist in backups for up to 90 days before permanent deletion

7. Cookies and Tracking

We use minimal cookies and local storage for:

Authentication: Maintain login sessions (JWT tokens in httpOnly cookies)
Preferences: Remember your settings and UI state
Analytics: Anonymous usage statistics (no personal identification)

You can disable cookies in your browser, but this may affect functionality.

8. Children's Privacy

Morphara is not intended for users under 13 years old. We do not knowingly collect data from children. If you believe a child has provided us with personal information, contact us immediately at ayuodev@gmail.com

9. International Data Transfers

Your data may be transferred to and processed in countries outside your jurisdiction. We ensure appropriate safeguards are in place to protect your data in compliance with applicable laws.

10. Changes to This Policy

We may update this privacy policy periodically. Changes will be posted on this page with an updated "Last Updated" date. Continued use of Morphara after changes constitutes acceptance of the updated policy.

11. Contact Us

For questions, concerns, or requests regarding this privacy policy or your data:

Email: ayuodev@gmail.com
Discord: discord.gg/morphara
Twitter: @morphara

This privacy policy complies with GDPR, CCPA, and other applicable privacy regulations. By using Morphara, you agree to the collection and use of information in accordance with this policy.

← Back to Home