Privacy Policy

Last updated: May 31, 2026

This Privacy Policy describes how Digital Soul Morphing ("the Service", "we") at morphing.dsdigitalsoul.com collects, uses, and protects information when you use our morphing video generation widget and our Instagram autopost tooling.

1. Information We Collect

• Photos you upload: when you use the morphing widget, your photo is sent to our server and to our AI processing partner (fal.ai) to generate a morphing video. We do not use the photo for training, advertising, or any purpose other than producing the requested video. We do not run facial recognition, build a biometric template, or use your photo to identify you. Your uploaded photo is deleted automatically within 24 hours.
• Generated videos: we store the generated morphing video so you can download or share it. Videos are kept on our servers for up to 30 days, after which they are automatically deleted.
• Anonymous usage statistics: we record the number of generations, share actions, and basic feedback (rating and optional comment) for product improvement. No personally identifying information is attached to these records.
• Chat messages: after generating a morphing video you may chat with our AI companion. Your messages, our replies, and basic technical metadata (latency, token counts) are stored so we can improve the assistant. Messages are tied to a randomly generated session ID, not to your name or account, and we ask you not to share sensitive personal information in chat.
• Instagram content (autopost only): when an authorized administrator uses our autopost tooling, we read the linked Instagram Business account ID and publish content (photos or Reels) using the Instagram Graph API. We do not access private messages or follower data beyond what is needed to publish a post and read its public insights.

2. How We Use Information

• To generate the morphing video you requested
• To deliver the result back to your browser or share it via the system share dialog
• To publish content to our own Instagram Business account via the Instagram Graph API (only by authorized project administrators, only to accounts they own)
• To collect aggregate, anonymous usage data so we can improve the service

3. Data Sharing with Third Parties

We share the minimum information needed to provide the Service:

• fal.ai — receives the source photo to run the AI morphing model. See fal.ai privacy policy.
• Cloudflare — provides CDN and proxy services for video and image delivery. See Cloudflare privacy policy.
• Meta (Instagram) — receives content we publish via the Instagram Graph API only for posts the project administrator chooses to publish. See Meta privacy policy.
• OpenRouter and the upstream LLM provider it routes to (currently Anthropic for Claude models) — receive the text of your chat messages to generate AI replies. These providers do not retain your messages for training when accessed via API. See OpenRouter privacy policy and Anthropic privacy policy.

We do not sell or rent your data to anyone.

4. Data Retention

• Uploaded photos: deleted automatically within 24 hours of upload (enforced by an automated hourly cleanup; both the original and any processed copy are removed).
• Generated videos: retained up to 30 days, then deleted.
• Anonymous usage statistics: retained indefinitely in aggregate form.
• Chat messages: retained while the Service is operational so we can improve the assistant; can be deleted on request via the contact below.
• Instagram autopost records (post text, scheduled time, public permalink): retained while the Service is operational; can be deleted on request.

5. Your Rights

You may request deletion of any data tied to your use of the Service by contacting us at the address below. Where applicable law provides additional rights (such as access, correction, or portability under GDPR), we will honor them within a reasonable time frame.

6. Cookies and Tracking

The morphing widget itself does not set tracking cookies. Cloudflare may set technical cookies required for security and CDN delivery. We do not use third-party advertising or analytics trackers.

7. Children

The Service is not directed to children under 13. We do not knowingly collect data from children under 13. If you believe a child has used the Service, please contact us and we will delete associated data.

8. Security

We use HTTPS for all data in transit, restrict server access to authorized administrators, and apply standard security headers and rate limits to the public API. No method of transmission or storage is 100% secure, but we use industry-standard practices.

9. Changes to This Policy

We may update this Privacy Policy as the Service evolves. Material changes will be reflected by updating the "Last updated" date at the top of this page.