Legal
Last updated: February 28, 2026 · GDPR Compliant
FanShield provides automated DMCA takedown services for content creators. We comply with GDPR, CCPA, and all applicable data protection laws.
Account data: name, email, model name, platform usernames, subscription plan. Reference photos: up to 10 photos, encrypted, used exclusively for AI leak detection, never shared. Whitelist: your authorized domains. Usage data: IP address, browser, pages visited (anonymized). Payment: processed by Stripe - we never store card numbers.
Service delivery (scanning, DMCA filing, reporting), facial recognition for leak detection (consent-based), communications and notifications, service improvement, and legal compliance.
Contract performance, explicit consent for facial recognition, legitimate interest for security, legal obligation for DMCA compliance.
256-bit SSL/TLS encryption in transit, AES-256 encryption at rest, regular security audits, role-based access controls, encrypted backups.
Account data: active period + 30 days. Reference photos: deleted within 7 days of account closure or on request. DMCA records: 2 years. Payment records: 7 years (tax).
You have the right to: access, rectification, erasure ("right to be forgotten"), data portability, restriction, objection, and withdrawal of consent. Contact: privacy@fanshield.com. Response within 30 days.
We never sell personal data. Shared only with: encrypted hosting providers, Stripe for payments, anonymized analytics. Never shared: photos, scan results, personal content.
Essential cookies only by default. Analytics with consent. Manage in browser settings.
EU/US servers. Standard Contractual Clauses for transfers outside EU/EEA.
18+ only. Any data from minors discovered will be immediately deleted.
Within 72 hours per GDPR Article 33.
privacy@fanshield.com. You may also lodge a complaint with your local supervisory authority.