Legal

Privacy Policy

Last updated: February 2026

01

Data Controller

Tilewise is operated from Norway. For privacy inquiries, contact us at hello@tilewise.ai.

02

What We Collect

Account data: Email address and display name when you create an account.

Usage data: Projects, prompts, settings, and generated content associated with your account.

Analytics data: Anonymized visitor data (page views, referrers, country, device type) collected without cookies. This data cannot identify individual users.

Payment data: If you purchase a paid plan, payment is processed by our payment provider. We do not store credit card details.

03

Why We Process Your Data

We process your data on the following legal bases under GDPR:

Contract (Art. 6(1)(b)): Account data and usage data are necessary to provide the service — generating and storing your textures.

Legitimate interest (Art. 6(1)(f)): Anonymized analytics to understand site usage and improve the service. Fraud prevention and security.

Consent (Art. 6(1)(a)): Marketing communications, if you opt in. You can withdraw consent at any time.

04

Sub-Processors

Your data is processed by the following categories of third-party providers:

Cloud infrastructure and authentication. AI generation services — prompts and reference images are sent to a third-party provider for processing. Hosting and analytics. Payment processing via a PCI-compliant provider.

We have Data Processing Agreements in place with all sub-processors. A detailed list is available on request.

05

Data Transfers

Some of our sub-processors are based outside the EEA. Where this is the case, transfers are safeguarded by EU Standard Contractual Clauses or equivalent mechanisms in accordance with GDPR Chapter V.

06

Data Retention

Account data and content: Retained for as long as your account is active. Upon account deletion, your data is removed within 30 days.

Analytics data: Anonymized and not linked to individuals. Retained in aggregate form.

Payment records: Retained as required by Norwegian accounting law (bokføringsloven), currently 5 years.

07

Your Rights

Under GDPR, you have the right to: access your personal data, correct inaccurate data, delete your account and associated data, export your data in a portable format, object to processing based on legitimate interest, withdraw consent for optional processing, and lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet).

To exercise any of these rights, email hello@tilewise.ai. We will respond within 30 days.

08

Cookies

Tilewise does not use cookies. Our analytics are cookie-free and do not track users across sites or sessions.

09

Age Requirement

Tilewise is intended for users aged 18 or older. We do not knowingly collect data from anyone under 18.

10

Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews.

11

Changes

We may update this policy from time to time. Material changes will be communicated via email or a notice in the service.

Questions? Reach out at hello@tilewise.ai