Back

Privacy Policy

Horizons Foundry LLC — a Texas limited liability company

Effective date: May 10, 2026 Last updated: May 10, 2026

1. Introduction

This Privacy Policy describes how Horizons Foundry LLC ("Horizons Foundry," "we," "us," or "our") collects, uses, shares, and protects information when you use horizonsfoundry.ai (the "Service"). It also explains your privacy choices and rights.

By using the Service, you agree to the practices described in this Privacy Policy. If you do not agree, do not use the Service. This Privacy Policy is incorporated into and forms part of our Terms of Service.

The Service ships physical products only within the United States. However, this Privacy Policy applies to anyone who visits or uses the Service, regardless of location, because we may receive limited information (such as IP addresses) from website visitors located outside the United States.

2. Information We Collect

2.1 Information you provide directly

  • Account information: When you sign in via Google OAuth, we receive your name, email address, profile picture URL, and Google account ID from Google's authentication service.
  • Order information: Your shipping address, recipient name, and order details when you place a print order.
  • Prompts and generated content: The text prompts you submit and the images generated in response (collectively, "Your Content" as defined in our Terms of Service).
  • Communications: Information you provide when you email customer support or contact us through other channels.
  • Newsletter subscriptions: Your email address if you opt in to our newsletter.
  • Beta access: The beta code you enter to access the Service during the beta period, and the timestamp of entry.

2.2 Information we collect automatically

  • Usage data: IP address, browser type and version, device type and operating system, referring URL, pages visited, time spent on pages, and similar telemetry.
  • Cookies and similar technologies: Authentication cookies (to keep you signed in), preference cookies (to remember settings), and analytics cookies (to understand aggregate usage). See Section 7 for details.
  • Performance and error data: Diagnostic information collected by Sentry when errors occur, including stack traces and contextual data about the error.

2.3 Information we do NOT collect

  • Payment card details: We do not see, store, or process your full credit or debit card number. Stripe handles all payments and may store your payment method per their own privacy policy.
  • Sensitive personal information: We do not knowingly collect Social Security numbers, government-issued IDs, biometric data, or precise geolocation.
  • Information about minors: Our Service is intended for adults (18+). We do not knowingly collect information from children.

3. How We Use Information

We use the information we collect to:

  • Provide, operate, and maintain the Service — including AI image generation, account management, and order fulfillment.
  • Process payments and ship physical orders within the United States, including sharing your shipping address with our fulfillment partner Gelato.
  • Communicate with you about transactions — order confirmations, shipping notifications, refund updates, and security alerts. These are operational and not subject to opt-out.
  • Send marketing communications — only if you have opted in (e.g., subscribed to our newsletter). Every marketing email includes a one-click unsubscribe link and our physical postal address, as required by the CAN-SPAM Act. You can unsubscribe at any time.
  • Detect, investigate, and prevent fraud, abuse, or violations of our Terms of Service.
  • Improve the Service in aggregate or anonymized form. Horizons Foundry itself does NOT use your prompts or generated content to train AI models. Prompts are sent to third-party AI model providers solely to generate the requested image; we have selected providers that do not train on submitted content by default, but each provider's handling of your prompts is governed by its own terms and privacy policy, which we do not control.
  • Comply with legal obligations, respond to lawful requests, and enforce our agreements.

4. How We Share Information

We share information only as described below. We do not sell or rent personal information.

4.1 Service providers

We share specific categories of information with vendors that help us operate the Service. Each is bound by contractual confidentiality and data-protection obligations.

  • Google (authentication): When you sign in via Google OAuth, you authenticate directly with Google. We receive only the limited profile information described in Section 2.1.
  • Supabase (database and storage): Hosts your account information, your prompts, your generated images, and order records.
  • Vercel (hosting): Hosts the application and processes incoming requests. Vercel may retain server access logs.
  • Third-party AI model providers (image generation): Receive your prompts to generate images. Generated images are returned to us and stored on Supabase. These providers process prompts under their own terms; we have selected providers that do not use submitted content to train models without explicit consent.
  • Stripe (payments): Processes credit card transactions. Stripe receives the payment-related personal and financial information needed to charge your card.
  • Gelato (printing and fulfillment): Receives your US shipping address, recipient name, and order specifications (size, frame, paper) so they can produce and ship your print.
  • Sentry (error monitoring): Receives error and performance data. This may include the URL of the page where the error occurred, the browser and device type, your IP address, a unique user identifier tied to your account, and stack-trace context. Sentry does not receive your prompts, generated images, shipping address, or payment information.
  • Email service provider (transactional and marketing email): Our third-party email service provider receives recipient email addresses and message content for delivery.
  • Analytics (Vercel Speed Insights): Receives aggregate usage and performance data.

4.2 Legal disclosures

We may disclose information when we believe in good faith that disclosure is necessary to (a) comply with applicable law, regulation, legal process, or governmental request; (b) enforce our Terms of Service; (c) detect or prevent fraud, security, or technical issues; or (d) protect against harm to our rights, property, or safety, or that of our users or the public.

4.3 Business transfers

If Horizons Foundry is involved in a merger, acquisition, asset sale, or similar transaction, your information may be transferred as part of the transaction. We will provide notice of any such change.

4.4 With your consent

We may share information for any other purpose with your explicit consent.

5. Data Retention

We retain personal information only as long as necessary to fulfill the purposes for which it was collected and to comply with our legal obligations.

  • Account information: retained while your account is active. Deleted within 30 days of account closure, except where retention is required by law (e.g., to fulfill pending orders under the Terms of Service Section 11, or to meet tax-record retention requirements).
  • Order and transaction records: retained for at least 7 years after the transaction date for tax, accounting, and legal compliance. This retention persists even if your account is closed.
  • Prompts and generated content: retained while in your account. On your request or upon account closure, deleted from active systems consistent with Section 4.4 of the Terms of Service, subject to (a) fulfillment of any pending orders, (b) sublicenses already granted to print partners, and (c) operational backups retained for up to 90 days.
  • Newsletter subscriptions: retained until you unsubscribe.
  • Server logs and error data: retained for up to 90 days, except where needed for security investigation.
  • Backups: may persist for up to 90 days after deletion of source data.

6. Your Rights and Choices

Depending on where you live, you have certain rights regarding your personal information.

6.1 All users

  • Access: You can view most of the information in your account through the profile or account settings page.
  • Correction: Update inaccurate information through your account, or by contacting us.
  • Deletion: Delete your account at any time. We will delete your information consistent with the retention rules in Section 5.
  • Portability: Request a copy of the information you provided in a structured, machine-readable format.
  • Marketing email opt-out: Unsubscribe from marketing emails at any time using the link in any marketing message, or by contacting us. (This is separate from the opt-in described in Terms of Service Section 4.3(e), which governs whether we may feature your generated artwork as a marketing sample. Withdrawing that content-marketing consent is a different request and can be made by contacting support@horizonsfoundry.ai.)

6.2 California residents (CCPA / CPRA)

California residents have the following additional rights:

  • Right to know: request the categories and specific pieces of personal information we have collected about you.
  • Right to delete: request deletion of personal information we have collected.
  • Right to correct: request correction of inaccurate personal information.
  • Right to opt out of sale or sharing: we do not sell or share personal information for cross-context behavioral advertising. No opt-out is required, but you have the right to confirm this.
  • Right to limit use of sensitive personal information: we do not use sensitive personal information for purposes that require this opt-out.
  • Non-discrimination: we will not discriminate against you for exercising these rights.

To exercise California rights, contact us at support@horizonsfoundry.ai. We may verify your identity before fulfilling the request.

6.3 EU/UK visitors (GDPR / UK GDPR)

Although we currently ship physical products only within the United States, the Service is accessible from outside the US, including the European Economic Area, the United Kingdom, and Switzerland. If you visit the Service from one of those jurisdictions, you have additional rights under the GDPR or UK GDPR, including:

  • The right of access, rectification, erasure ("right to be forgotten"), restriction of processing, data portability, and objection.
  • The right to withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing prior to withdrawal.
  • The right to lodge a complaint with your local data protection authority.

Lawful bases. We rely on the following lawful bases under GDPR Article 6: (a) contract — to provide the Service you requested; (b) legitimate interests — to operate, secure, and improve the Service; (c) consent — for marketing communications and certain cookies; (d) legal obligation — to comply with applicable law.

7. Cookies and Similar Technologies

We use cookies and similar technologies to operate the Service and understand how it is used.

  • Strictly necessary cookies: authentication, security, and basic functionality. Cannot be disabled without breaking the Service.
  • Preference cookies: remember settings such as your last-used frame size or paper choice.
  • Analytics cookies: help us understand aggregate usage. We use Vercel Speed Insights.

You can control cookies through your browser settings. Disabling necessary cookies will prevent the Service from functioning properly.

8. International Data Transfers

Horizons Foundry is based in the United States. Service providers and infrastructure may be located in the US, EU, UK, or other jurisdictions. By using the Service, you consent to the transfer of your information to the United States and other jurisdictions, which may have data protection laws different from those in your home country.

For transfers from the EU/UK/Switzerland to the United States, we rely on appropriate safeguards including Standard Contractual Clauses where applicable.

9. Security

We use commercially reasonable administrative, technical, and physical safeguards to protect personal information, including encryption in transit (TLS), encrypted storage where applicable, access controls, and monitoring. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

If we become aware of a security incident affecting your information, we will notify you and applicable authorities as required by law.

10. Children

Our Service is intended for users 18 years of age and older. Use by anyone under 18 is prohibited by our Terms of Service. We reference the federal Children's Online Privacy Protection Act (COPPA) threshold of 13 and the GDPR threshold of 16 for transparency, but our actual age floor for the Service is 18. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected information from someone under 18, we will delete it. If you believe we have collected information from a minor, contact us at support@horizonsfoundry.ai.

11. Third-Party Links

The Service may contain links to third-party websites or services that are not operated by us. This Privacy Policy does not apply to those third parties. Review their privacy policies before providing them with information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated version with a new "Last updated" date and, where required, by additional notice (such as email). Your continued use of the Service after the effective date of an updated Privacy Policy constitutes acceptance of the changes.

13. Contact Us

Questions, requests, or complaints about this Privacy Policy or our data practices can be directed to:

Horizons Foundry LLC 5900 Balcones Drive, Suite 100 Austin, TX 78731 Email: support@horizonsfoundry.ai

Support