TULPAR FOUNDRY / KLIPO LEGAL ← Back to apps

Klipo / Legal

Klipo Privacy Policy

Effective date: July 15, 2026 · Last updated: July 15, 2026

1. About this policy

This Privacy Policy explains how Furkan Tosun ("Furkan Tosun," "I," "me," or "my") handles information when you use the Klipo iOS application and related services (together, the "Service"). Klipo lets you create AI-generated images and videos from photos that you choose or capture.

Klipo automatically creates an anonymous guest account so it can protect your media, generation history, credits, and subscription state. You do not need to provide an email address, phone number, or social-media login to use Klipo. Although the account is anonymous in the everyday sense, its random account and device identifiers can still link records to the same user or device and are treated as personal data where applicable.

2. Information Klipo handles

Photos, videos, and other user content

Klipo does not automatically upload your entire photo library. It receives only the photo or video that you choose for a feature that requires it.

Your photos may show faces or other sensitive information. Klipo does not use them to identify people, create a face-recognition profile, or create a biometric identity template. If you upload a photo of another person, you are responsible for having the permission required to use and process that photo.

Anonymous account and device identifiers

Purchases, subscriptions, and credits

Apple and Adapty process in-app subscription purchases. Klipo receives product, transaction, entitlement, billing-period, and subscription-status information and maintains a credit ledger. Klipo does not receive your full payment-card or bank-account details from Apple.

Usage and diagnostics

Klipo stores operational information needed to provide the Service, such as the selected template, generation status, timestamps, credit use, subscription state, and Library history. PostHog may receive pseudonymous error and crash diagnostics, including a bounded error fingerprint, error code, affected component, app/device technical properties, and stack information where available. Session replay and automatic app-lifecycle capture are disabled.

Network information

When Klipo communicates with a service provider, that provider may receive network information such as an IP address, request metadata, and approximate region as part of delivering and securing its service. Klipo's application tables are not designed to store IP addresses. Provider logging and retention are governed by the applicable provider's privacy notice and service configuration.

3. How Klipo uses information

4. AI processing and consent

Before the first AI generation, Klipo asks for permission to send the selected photo to its AI processing service. If you decline, you can continue browsing Klipo but cannot start that generation. You can revoke AI data consent in Settings; revocation blocks new AI generations but does not by itself delete existing videos.

The selected input photo and generation inputs are sent to fal.ai to produce the requested output. Klipo does not use your uploaded content to train Klipo-owned AI models or for advertising. fal.ai and any model providers or subprocessors involved in the selected pipeline may process the content under their own terms and privacy notice.

5. Service providers and sharing

Klipo shares information only with providers needed to operate the Service, complete a user-requested generation, process a purchase, deliver a notification, or diagnose a technical problem. Klipo does not sell your personal data.

ProviderRole
SupabaseAnonymous authentication, database, Edge Functions, Realtime, and private storage for account data, credits, jobs, reports, and media.
fal.aiAI image/video generation. Receives the selected input media, generation instructions, intermediate inputs, and request identifiers needed to return the result.
AdaptyPaywalls, purchases, subscriptions, entitlements, and purchase restoration. Receives the random customer identifier and purchase-related information.
PostHogFirst-party diagnostics and, where configured, product analytics. Receives pseudonymous identifiers and bounded diagnostic or interaction properties.
AppleApp Store/StoreKit purchases, APNs delivery, and user-directed saves to the iOS Photo Library. Klipo does not receive full payment-card details.

These providers may use subprocessors or independently collect information when you use their services. Their own privacy notices apply to their independent processing. Where Klipo directs a provider to process Klipo data, the provider is expected to protect that data consistently with this policy and applicable law.

6. Tracking, advertising, and IDFA

Klipo does not use the Identifier for Advertisers (IDFA), does not sell personal data, and does not combine Klipo data with data from other companies' apps, websites, or offline properties for targeted advertising or advertising measurement. Klipo's analytics are first-party analytics and diagnostics, not cross-app tracking. Klipo does not request App Tracking Transparency permission for tracking.

7. Storage and retention

fal.ai, Supabase, Adapty, PostHog, Apple, and their subprocessors may have separate backup, security-log, and service-retention periods. Those periods are governed by their applicable terms and privacy notices.

8. On-device information and permissions

Klipo uses the iOS Keychain/Secure Store for the anonymous device identifier, session material, and deletion receipt. It uses local files and MMKV for consent, onboarding, feed/Library snapshots, pending generation state, and bounded media caches. Camera and Photo Library access is used only when you choose a photo, capture a photo, or save a generated video. Notifications are optional and can be disabled in iOS Settings.

Uninstalling Klipo does not necessarily delete your server-side account or media. Use Settings → Delete Account to request account-wide deletion.

9. Account and data deletion

Because Klipo automatically creates an anonymous guest account, you can initiate deletion directly in the app. Go to Settings → Delete Account and complete the confirmation steps. You do not need to email support to start the deletion.

Once accepted, the request immediately blocks new generation, credit, job, and private-media activity. Klipo processes the asynchronous deletion within 30 days of acceptance and shows the status in the app.

Deletion removes Klipo-controlled photos and videos, jobs, reports, APNs registration, profile data, local files and caches, the former Keychain identifier, and the Adapty profile. In PostHog, Klipo retains historical analytics while removing all person-profile properties, applying a generic anonymous name, and destroying Klipo-side mappings to the former random identifier. The identifier is not reused for a fresh account. The old anonymous account is deleted after the cleanup stages complete. A separate opaque receipt lets the app show only pending, completed, or failed status after a restart; the server stores only a hash of that receipt.

The minimum de-identified financial records described in Section 7 may remain for the stated retention period. A copy saved to the iOS Photo Library remains under your control and must be deleted by you from the Photo Library if desired.

Deleting Klipo data does not cancel an Apple auto-renewable subscription. If you have an active or trial subscription, Klipo provides a Manage Subscription option, or you can manage it at Apple's subscription page. You may still delete your Klipo account immediately.

10. Your choices and privacy rights

Depending on where you live, you may have rights to access, correct, delete, restrict, object to, or receive a copy of personal data, and to appeal a decision about a privacy request. You can:

Because Klipo uses an anonymous account, I may ask for the account or device identifier shown in Settings to locate an active account. After deletion is accepted, status checks use only the opaque deletion receipt.

11. Security

Klipo uses HTTPS/TLS in transit, iOS Keychain/Secure Store for sensitive local session material, private storage buckets, authenticated access controls, row-level security, and bounded local retention. No method of transmission or storage is completely secure. If you believe your information has been misused or your account is compromised, contact support@tulparfoundry.com.

12. International processing

Klipo and its service providers may process information in countries other than the country where you live. Where required, transfers are made using safeguards recognized by applicable data-protection law. You can contact me for more information about the safeguards applicable to your request.

13. Children

Klipo is not directed to children under 13, and I do not knowingly collect personal data from children under 13. If you believe a child has provided personal data to Klipo, contact support@tulparfoundry.com.

14. Changes to this policy

I may update this policy when Klipo's features, providers, data practices, or legal obligations change. The effective date at the top of this page will be updated, and additional notice will be provided where required by law. App Store privacy disclosures will also be updated when the app's data practices change.

15. Contact and data controller

Data controller / operator: Furkan Tosun (independent developer)

Email: support@tulparfoundry.com