Privacy Policy
Last updated: 29 April 2026
1. Data controller
Chorus is operated by El Mehdi Louihrani, trading as Chorus, Auto-Entrepreneur registered in Morocco (ICE: 003492560000012). Registered address: Hay Wifak, Résidence Nassim 2, Rabat, Morocco.
Contact: contact@chorushq.net
2. Data we collect
When you create an account and use Chorus, we collect:
- Account data — name, email address, profile picture (if signing in with Google).
- Campaign data — the briefs, strategies, and ad copy you generate using the service.
- Usage data — credit consumption and timestamps for each agent run.
- Billing data — subscription status and transaction history, managed by Paddle as the merchant of record. We do not store payment card details.
- Technical data — a hashed IP address, collected at account creation solely to detect and prevent signup abuse. It is not stored in raw form and is not linked to your account profile. Our hosting providers (Vercel, Railway) receive standard server request logs as part of operating the infrastructure.
3. How we use your data
We use your data to:
- Provide and operate the Chorus platform.
- Process payments via Paddle (merchant of record).
- Manage your credit balance and subscription.
- Send transactional emails (receipts, low-credit alerts).
- Detect and prevent fraud and abuse.
- Comply with legal obligations.
We do not use your campaign briefs or generated copy to train AI models. We do not sell your personal data to third parties.
4. Third-party processors
We share data with the following sub-processors:
| Provider | Purpose | Data |
|---|---|---|
| Google Firebase | Authentication, database (Firestore) | Account data, campaign data |
| Anthropic | AI campaign generation (Claude API) | Campaign briefs (anonymised where possible) |
| Paddle | Billing, tax compliance, payouts | Name, email, billing country |
| Railway | Backend hosting (FastAPI agent) | Campaign processing data (in-flight) |
| Vercel | Frontend hosting | Request logs |
| Upstash | Credit balance counter (Redis) | User ID, credit balance |
5. Data retention
We retain your account data for as long as your account is active. Campaign data is retained for 12 months after the last activity, then deleted. If you delete your account, we delete all associated data within 30 days, except where retention is required by law.
6. Your rights
You have the right to:
- Access your personal data held by Chorus.
- Correct inaccurate or incomplete data.
- Delete your account and associated data.
- Export your campaign data (available from the dashboard).
- Object to certain processing activities.
To exercise these rights, email contact@chorushq.net. We will respond within 30 days.
7. Cookies
Chorus uses a single session cookie (chorus-session) to maintain your login state. No advertising or tracking cookies are used.
8. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be communicated by email or by a notice in the application. Continued use of Chorus after the effective date constitutes acceptance of the updated policy.
9. Contact
For privacy questions or to exercise your rights: contact@chorushq.net