← Back to qwelto

Privacy Policy

Last updated: June 8, 2026

1. Overview

This Privacy Policy explains how El Yazid Tebbaa ("we", "us", or "our"), doing business as qwelto, collects, uses, and protects information when you use our website, AI-assisted brand identity tools, and related services.

2. Information we collect

We may collect account information such as your email address, Google sign-in details, product preferences, project inputs, generated brand assets, saved designs, support messages, and Founder Pass entitlement status. We may also collect technical data such as device information, browser type, IP address, approximate location, pages visited, and usage events.

3. Payment information

Payments are processed by Paddle, our Merchant of Record and payment provider. We do not store full payment card numbers on our own servers. Paddle may collect billing information, tax details, payment method details, and transaction data needed to process orders, issue receipts, handle refunds, prevent fraud, and comply with legal obligations. We store limited payment metadata such as transaction IDs, customer email, product, status, and audit events so we can activate access and provide support.

4. How we use information

We use information to provide and improve qwelto, authenticate users, save projects, generate brand assets, process payments, prevent abuse, analyze performance, respond to support requests, and comply with legal requirements.

5. AI processing

Your prompts, project choices, and design preferences may be processed by AI systems to generate logos, banners, brand directions, and related outputs. Do not submit confidential, sensitive, or third-party information unless you have the right to use it.

6. Cookies and analytics

We use local storage and similar technologies for essential functions such as sign-in, session continuity, and remembering product state. We use PostHog analytics only after you accept optional analytics storage. You can decline analytics without losing access to core Qwelto features.

7. Sharing information

We may share information with service providers that help us operate qwelto, including Google for sign-in, Paddle for payments and tax handling, PostHog for optional analytics, Vercel for website hosting, Hugging Face for backend hosting, and infrastructure providers used for AI-assisted generation and system operations. We may also disclose information if required by law, to protect users, to enforce our terms, or to prevent fraud and abuse.

8. Data retention

We retain information for as long as needed to provide the service, comply with legal obligations, resolve disputes, prevent abuse, and enforce agreements. Temporary generation sessions may be cleaned up after about 30 days. Saved designs and taste preferences are kept until you delete them or delete your account. Payment and audit records may be retained for longer when needed for tax, accounting, refund, fraud-prevention, chargeback, and legal reasons. When account deletion is requested, we delete user-owned project data and redact retained payment events where possible.

9. Security

We use reasonable technical and organizational measures to protect information. However, no internet service can guarantee absolute security.

10. Your rights

Depending on your location, you may have rights to access, correct, delete, export, restrict, or object to certain processing of your personal information. To make a request, contact us using the email below from the email address connected to your Qwelto or Paddle account. We may need to verify your identity before acting on a request.

11. Children

qwelto is not intended for children under 13. We do not knowingly collect personal information from children under 13.

12. Changes to this policy

We may update this Privacy Policy as qwelto evolves. The updated version will be posted on this page with a new “Last updated” date.

13. Contact

Privacy questions or requests can be sent to: support@qwelto.online.