Animotive Kimodo — Privacy Policy
Last updated: May 2026
1.1 Animotive Ltd ("we", "us", "our") is committed to protecting the privacy of our website visitors, registered users, and customers. This policy explains how we collect, use, store, and share your personal data when you use the Animotive Kimodo platform, website, and services (collectively, the "Services").
1.2 This policy applies where we act as a data controller in respect of your personal data — that is, where we determine the purposes and means of processing that data.
1.3 We use cookies on our website. Where cookies are not strictly necessary for the provision of the Services, we will ask for your consent before placing them.
1.4 In this policy, "you" refers to any individual whose personal data we process in connection with the Services, including registered Account holders and website visitors.
Animotive Ltd 2 Crescent Gardens Belfast, BT7 1NS Northern Ireland, United Kingdom Company No. NI663613
Email: contact@animotive.com Website: https://kimodo.animotive.com
When you create an Account, we collect your name, email address, and any other information you provide during registration. If you sign in using a third-party authentication provider (such as Google or GitHub), we receive basic profile information from that provider (name and email address).
If you subscribe to the Pro Plan, we collect information relating to your subscription, including your subscription tier, billing dates, and credit balance. Payment processing is handled by our third-party payment provider, Paddle. We do not receive or store your full payment card details; Paddle processes and stores these in accordance with their own privacy policy.
When you use the Plugin or API, we collect data about your generation requests, including:
This data is necessary to provide the Cloud Generation Service and to manage your Credit balance.
We automatically collect certain technical data when you access the Platform or use the Services, including your IP address, browser type and version, operating system, referral source, pages visited, and the timing and frequency of your use. This data is collected via our analytics systems and is used to monitor, maintain, and improve the Services.
If you contact us by email or via any other channel, we collect the content and metadata of those communications.
Where we need to collect personal data by law or under the terms of a Contract and you do not provide that data, we may not be able to provide the relevant Services to you.
We process your account data, usage data, and API data to operate the Platform, provide the Cloud Generation Service, manage your Credit balance, and fulfil your subscription. The legal basis for this processing is the performance of our Contract with you.
We process your subscription and transaction data to manage billing, renewals, cancellations, and failed-payment recovery in conjunction with our payment provider, Paddle. The legal basis is the performance of our Contract with you and compliance with our legal obligations.
We process your contact and communications data to respond to support requests, send service-related notifications (such as low Credit balance alerts, subscription renewal reminders, and policy update notices), and manage our relationship with you. The legal basis is our legitimate interests in maintaining effective customer communications and the proper administration of our Services.
We process technical and usage data to detect and prevent fraud, abuse (including multi-account Credit farming), and unauthorised access to our Services. The legal basis is our legitimate interests in protecting our Services, infrastructure, and other users.
We process usage data and anonymised/aggregated generation data to analyse how the Services are used, identify issues, and improve and develop features. We use HubSpot and may use additional analytics tools from time to time to support this. Where data is fully anonymised and cannot be linked back to you, it falls outside the scope of data protection law. The legal basis for processing non-anonymised usage data for this purpose is our legitimate interests in improving our Services.
Prompt and generation data may be retained in anonymised form (with all user identifiers removed) indefinitely for the purposes of product development and improving the quality of the Services.
With your consent, we may use your email address to send you news, product updates, and promotional communications about Animotive Kimodo and related Animotive products. You may withdraw your consent and unsubscribe at any time by clicking the unsubscribe link in any marketing email or by contacting us at contact@animotive.com. The legal basis for this processing is your consent.
We may process your personal data where necessary to comply with a legal obligation, respond to a lawful request from a public authority, or establish, exercise, or defend legal claims. The legal basis is compliance with a legal obligation or our legitimate interests in protecting our legal rights.
We share transaction and subscription data with Paddle, our payment provider and Merchant of Record, to the extent necessary to process payments, manage subscriptions, and handle billing disputes. Paddle processes this data in accordance with their own privacy policy at https://www.paddle.com/legal/privacy.
The Cloud Generation Service is hosted on Amazon Web Services (AWS) infrastructure in the eu-west-2 (London) region. Personal data processed as part of generation requests is handled within this infrastructure. AWS processes data as our data processor in accordance with AWS's data processing terms.
If you use Google or GitHub OAuth to sign in, we receive limited profile data from those providers as described in section 3.1. We do not share your personal data back to those providers beyond what is required for the authentication flow.
We use HubSpot and may use other analytics and marketing tools to monitor usage of the Platform and website and to support customer communications. Where these tools process personal data (such as IP addresses or browsing behaviour), we ensure appropriate data processing agreements are in place. You can find HubSpot's privacy policy at https://legal.hubspot.com/privacy-policy.
We may share personal data with our legal advisers, accountants, or insurers where necessary for professional advice, risk management, or insurance purposes.
We may disclose personal data to law enforcement, regulatory authorities, or courts where required by applicable law, court order, or regulatory obligation.
In the event of a merger, acquisition, or sale of all or part of our business or assets, personal data held by us may be transferred to the acquiring entity, subject to equivalent privacy protections.
We do not sell your personal data to third parties.
6.1 Our primary hosting infrastructure is located in the UK (AWS eu-west-2). Some of our third-party service providers (including Paddle and certain analytics tools) may process data outside the UK and EEA.
6.2 Where personal data is transferred outside the UK or EEA, we ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the relevant data protection authority, or transfers to countries that benefit from an adequacy decision.
7.1 We retain personal data only for as long as necessary for the purposes for which it was collected, or as required by law.
7.2 Our standard retention periods are:
(a) Account data: retained for the duration of your Account and for 12 months following Account closure or deletion;
(b) Subscription and transaction data: retained for 7 years from the date of the transaction to comply with financial record-keeping obligations;
(c) Generation request data (prompts, parameters, job logs): retained in identifiable form for 90 days from the date of generation. After 90 days, all user identifiers are removed and the anonymised prompt and generation metadata may be retained indefinitely for product development and service improvement purposes;
(d) Generated Content files: stored in our cloud infrastructure for 90 days following generation, after which they are automatically deleted. It is your responsibility to download and retain any Generated Content you wish to keep;
(e) Communications data: retained for 12 months from the date of the communication;
(f) Usage and technical data: retained for 12 months from the date of collection.
7.3 We may retain personal data for longer than the periods above where necessary to comply with a legal obligation, resolve a dispute, or enforce our agreements.
Under applicable data protection law, you have the following rights in relation to your personal data:
(a) Right of access — you may request a copy of the personal data we hold about you;
(b) Right to rectification — you may ask us to correct inaccurate or incomplete personal data;
(c) Right to erasure — you may ask us to delete your personal data in certain circumstances;
(d) Right to restrict processing — you may ask us to restrict how we process your personal data in certain circumstances;
(e) Right to object — you may object to our processing of your personal data where we rely on legitimate interests as our legal basis;
(f) Right to data portability — you may ask us to provide your personal data in a structured, machine-readable format;
(g) Right to withdraw consent — where we rely on consent as our legal basis, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal;
(h) Right to complain — you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at https://ico.org.uk if you believe we have not handled your personal data in accordance with applicable law.
To exercise any of the above rights, please contact us at contact@animotive.com. We will respond within one month of receiving your request. We may need to verify your identity before processing your request.
You may request deletion of your Account and associated personal data (subject to our legal retention obligations) by contacting us at contact@animotive.com or using the account deletion feature on the Platform.
A cookie is a small text file stored by your browser when you visit a website. Cookies help us recognise you, remember your preferences, and understand how you use our Services.
We use the following categories of cookies:
(a) Strictly necessary cookies — required for the Platform to function, including session management and authentication. These do not require your consent.
(b) Analytics cookies — used to collect information about how visitors use our website, such as pages visited, time spent, and referral sources. We use this information to understand user behaviour and improve the Platform. We currently use HubSpot for this purpose and may use additional analytics tools from time to time. These require your consent.
(c) Marketing and tracking cookies — used by us or our service providers (including HubSpot) to track visits across sessions and support targeted communications. These require your consent.
(d) Preference cookies — used to remember your settings and preferences. These require your consent.
You can control and manage cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Platform. You can find guidance on managing cookies at:
10.1 We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, alteration, or disclosure. These measures include encryption in transit (HTTPS/TLS), access controls, and regular security reviews.
10.2 We use AWS infrastructure with industry-standard security configurations. Generated Content files are stored in private S3 buckets accessible only via time-limited signed URLs.
10.3 No method of transmission over the internet is completely secure. While we take reasonable precautions, we cannot guarantee the absolute security of your personal data.
10.4 In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO and, where required, affected individuals, in accordance with our obligations under applicable data protection law.
The Services are not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that we have collected personal data from a child under 13 without parental consent, we will delete it promptly. If you believe we may hold personal data about a child under 13, please contact us at contact@animotive.com.
Our website and Platform may contain links to third-party websites and services (including the FAB marketplace, NVIDIA's documentation, and Discord). This Privacy Policy does not apply to those third-party services, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services you use.
13.1 We may update this Privacy Policy from time to time. The most current version will always be available at https://kimodo.animotive.com/privacy, with the "Last updated" date revised accordingly.
13.2 Where changes are material, we will notify you by email or by a prominent notice on the Platform before the changes take effect.
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:
Animotive Ltd 2 Crescent Gardens Belfast, BT7 1NS Northern Ireland, United Kingdom
Email: contact@animotive.com
If you are not satisfied with our response, you have the right to complain to the Information Commissioner's Office (ICO):
Information Commissioner's Office Wycliffe House, Water Lane Wilmslow, Cheshire SK9 5AF Website: https://ico.org.uk Helpline: 0303 123 1113