DemoBitesPrivacy Policy
Last updated: March 25, 2026
1. Introduction
Funelabs Ltd (“Company,” “we,” “us,” or “our”) operates the DemoBites platform (“Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Service.
2. Information We Collect
Account Information
When you create an account, we collect your name, email address, and authentication credentials (managed through our authentication provider, Clerk). If you purchase a paid plan, payment information is collected and processed by Paddle, our Merchant of Record — we do not store payment card details.
User Content
We store screen recordings, video files, and related media that you upload or create through the Service. This content may incidentally contain information visible on your screen at the time of recording. You are responsible for ensuring that recordings do not capture sensitive personal data of third parties without appropriate consent.
Usage Data
We automatically collect information about how you interact with the Service, including pages viewed, features used, session duration, browser type, operating system, and IP address.
Pulse Widget Data
The Pulse in-app widget uses an anonymous identifier stored in the end user's browser (via localStorage or a cookie) to track the last visit timestamp. This is used solely to determine which content is “new” for that visitor. No personally identifiable information is collected by the Pulse widget in its default (non-gated) configuration.
Gated Workspace Data
In private (gated) workspaces where SSO authentication is enabled, we collect and store the authenticated user's email address and viewing activity for the purpose of engagement tracking and reporting.
3. How We Use Your Information
- To provide, operate, and maintain the Service
- To process your transactions via Paddle
- To send transactional communications (account confirmations, billing notices, support responses)
- To analyze usage patterns and improve the Service
- To provide AI-powered features (narration, translation, re-scripting) by processing your content through third-party AI providers
- To provide analytics and engagement tracking within Workspaces
- To enforce our Terms & Conditions and protect against abuse
4. Third-Party Service Providers
We use the following third-party services to operate the platform. Your data may be processed by these providers in accordance with their respective privacy policies:
| Provider | Purpose |
|---|---|
| Amazon Web Services (AWS) | Hosting, storage, and infrastructure (US region) |
| Paddle | Payment processing, billing, and Merchant of Record |
| Clerk | User authentication and session management |
| Remotion | Server-side video rendering |
| Resend | Transactional email delivery |
| Microsoft Azure | AI and cloud processing services |
| Google Cloud Platform | AI and cloud processing services |
| Anthropic | AI text processing and generation |
| OpenAI | AI text processing and generation |
5. Data Storage & Security
Your data is stored on Amazon Web Services infrastructure located in the United States. We implement industry-standard security measures including encryption in transit (TLS) and at rest, access controls, and regular security reviews.
While we take reasonable measures to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.
6. Data Retention
We retain your account information and User Content for as long as your account is active. If you cancel your subscription and your content exceeds the free tier limits, excess content may be deleted in accordance with our Terms & Conditions.
If you delete your account, we will delete your personal information and User Content within 30 days, except where retention is required by law or for legitimate business purposes (such as resolving disputes or enforcing our agreements).
7. Your Rights (GDPR)
If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):
- Access: Request a copy of the personal data we hold about you
- Rectification: Request correction of inaccurate personal data
- Erasure: Request deletion of your personal data
- Restriction: Request restriction of processing of your personal data
- Portability: Request a machine-readable copy of your personal data
- Objection: Object to processing of your personal data
To exercise any of these rights, contact us at team@demobites.com. We will respond within 30 days.
8. International Data Transfers
Your data may be transferred to and processed in countries outside your country of residence, including the United States and Israel. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.
9. Children's Privacy
The Service is not directed at children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the “Last updated” date.
11. Contact
For questions about this Privacy Policy or to exercise your data rights, contact us at team@demobites.com.