Home/Privacy Policy

LiveGen Privacy Policy

1. Introduction / Who we are

LiveGen (livegen.ai) is a browser-based, zero-install web app for real-time interactive AI video. You open your camera — or upload a video or image — and the Services transform it live, using one of our six modes: Face Swap, Outfit Swap, Style Morph, Bring to Life, Summon (AR), and Freestyle. Because this involves your camera, your face, and your likeness, we want to be very clear and specific about what happens to your data. This Privacy Policy explains what we collect, why, who we share it with, how long we keep it, and the choices and rights you have.

Who we are. In this Policy, "LiveGen," "we," "us," "our" means comiaos, LLC, whose registered address is 131 Continental Dr, Suite 305, Newark, DE 19713, US. For personal data governed by the EU GDPR, the UK GDPR, and similar laws, LiveGen is the controller of the personal data described here, except where we act as a processor on behalf of a business customer.

Scope. This Policy applies to the "Services" — the LiveGen website(s) at livegen.ai, our apps, and related products and features. Some defined terms used throughout:

How to contact us. For any privacy question, or to exercise your rights, email privacy@livegen.ai. Data-protection matters can also be sent to our data protection contact at dpo@livegen.ai. Our full contact details, including any EU/UK representative, are in Section 14.

This Privacy Policy works together with our Terms of Service. Please read them together — the Terms of Service incorporate this Privacy Policy by reference and describe your rights and responsibilities when using the Services.

2. The data we collect

We collect the following categories of data.

(a) Data you provide

(b) Data collected automatically

When you use the Services, we and our providers collect certain data automatically:

(c) Camera and biometric / facial data — please read carefully

This is the most sensitive category of data we handle, so we describe the data flow precisely.

(d) Data from third parties

We use personal data for the purposes below. Where the EU/UK GDPR or similar laws apply, the relevant legal basis is shown in bold.

PurposeWhat this involvesLegal basis
Provide the ServicesCreate and manage your Account, run the six modes, generate Output, save and share Creations, provide supportPerformance of a contract with you
Real-time generationStream your Inputs (including the camera feed) to Xmax to produce Output and render it back to youPerformance of a contract with you; and, for the facial/biometric element, your consent
Biometric / facial processingAnalyze facial features in the live feed to power Face Swap and the other modesYour explicit consent (Section 2(c))
Billing and creditsProcess payments, track credit balances (1 credit = 1 second of generation), manage subscriptions and free creditsPerformance of a contract; legal obligation for tax and accounting records
Safety and content moderationDetect and act on prohibited content, enforce our Acceptable Use rules (including consent requirements for face-swaps of real people), and report unlawful content where requiredLegitimate interests in a safe service and in protecting others; legal obligation where reporting is required; substantial public interest where applicable to sensitive data
Fraud prevention and securityDetect abuse, secure Accounts, prevent unauthorized access, and protect the ServicesLegitimate interests in keeping the Services secure
Analytics and product improvementUnderstand usage, fix errors, and improve features (using aggregated or de-identified data where feasible)Consent where required (for example, non-essential cookies); otherwise legitimate interests
Marketing and communicationsSend service messages and, where you have opted in, product updates and offersConsent for marketing where required; legitimate interests for service messages
Legal complianceRespond to lawful requests, enforce our Terms, and establish, exercise, or defend legal claimsLegal obligation; legitimate interests

Where we rely on consent, you can withdraw it at any time (Section 9). Where we rely on legitimate interests, you can object (Section 9), and we have balanced our interests against your rights.

4. AI processing and model training

Because LiveGen is an AI product, we want to be explicit about how your data is used in generation and training.

5. How we share data

We share personal data only as described here. We do not sell your personal data, and we do not "share" it for cross-context behavioral advertising as those terms are defined under California law.

We require service providers to protect personal data and to use it only to provide services to us.

6. Cookies and similar technologies

We use cookies, local storage, and similar technologies to keep you signed in, remember preferences, secure the Services, and understand usage. We group them as:

Where required by law, we ask for your consent before setting non-essential cookies, and you can change your choices at any time through our cookie controls or your browser settings. Disabling some cookies may affect how the Services work.

7. International data transfers

LiveGen's application and object storage run on Cloudflare infrastructure in the United States. We do not use Chinese cloud infrastructure and do not route or store your data in China. When we transfer personal data across borders — including from the EEA, the UK, or Switzerland to the United States or another country — we rely on a lawful transfer mechanism, such as an adequacy decision or data-transfer framework where available, or the Standard Contractual Clauses (SCCs) / UK International Data Transfer Agreement, together with supplementary measures where needed. Where Xmax processes your streamed Inputs to generate Output, it does so under its own terms, and we put appropriate safeguards (such as the SCCs) in place where required. You can contact us at privacy@livegen.ai for more information about the safeguards we use.

8. Data retention

We keep personal data only as long as needed for the purposes in this Policy, then delete or de-identify it.

Where we cannot fully delete data (for example, in backups), we isolate it and protect it until deletion is possible.

9. Your rights and choices

Subject to your location and applicable law, you may have the right to:

GDPR / UK GDPR. If you are in the EEA, the UK, or Switzerland, you have the rights above, and we rely on the legal bases in Section 3. Because facial/biometric processing relies on your explicit consent, you can withdraw it at any time by stopping camera use and, where offered, revoking the permission.

California (CCPA/CPRA). If you are a California resident, you have rights to know, access, correct, and delete personal information, and to limit the use of sensitive personal information (which can include biometric/facial data). We do not sell or share your personal information for cross-context behavioral advertising. We will not discriminate against you for exercising your rights.

Other US states. If you are a resident of a US state with a comprehensive privacy law (such as Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and others), you may have rights to access, correct, delete, and port your data, to opt out of targeted advertising and any sale, and to limit processing of sensitive data. We honor these where they apply.

How to exercise your rights. Email privacy@livegen.ai or use the controls in your Account. We may need to verify your identity before acting, and you can use an authorized agent where the law allows. We respond within the timeframes required by applicable law and will not charge a fee except where permitted.

10. Security

We use technical and organizational measures designed to protect personal data, including encryption in transit (including for the WebRTC stream and stored reference files), access controls, authentication safeguards, logging and monitoring, and least-privilege practices for our team and providers. No method of transmission or storage is completely secure, so we cannot guarantee absolute security. If we become aware of a personal-data breach that affects you, we will notify you and the relevant authorities as required by law. Please keep your Account credentials confidential and contact support@livegen.ai if you suspect unauthorized access.

11. Children's privacy

The Services are not directed to children below the applicable minimum age. You must be at least 13 years old to use the Services, at least 16 in the EEA, the UK, and Switzerland, or older where your local law sets a higher minimum age. We do not knowingly collect personal data — including camera or facial data — from children below the applicable age. Given the biometric nature of our product, we take under-age use seriously: if we learn that a child below the applicable age has provided personal data, we will delete it and close the Account. If you believe a child has used the Services, contact privacy@livegen.ai.

12. Third-party sites and services

The Services may link to, or interoperate with, third-party websites and services (for example, identity providers, payment processors, and platforms where you share Creations). Those third parties have their own privacy practices, which we do not control. This Policy does not cover them, and we encourage you to review their privacy notices.

13. Changes to this Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date above and, where required, provide additional notice (for example, by email or an in-product notice) and, for changes that require it, seek your renewed consent. Your continued use of the Services after an update takes effect means you accept the revised Policy, except where consent is required.

14. Contact

For privacy questions, requests, or complaints:

15. Region-specific notices

EEA, UK, and Switzerland. LiveGen (or its appointed representative) is the controller for the processing described here. Our legal bases are in Section 3; facial/biometric processing relies on your explicit consent. You may lodge a complaint with your local supervisory authority (in the UK, the Information Commissioner's Office). Where an EU/UK representative is required under Article 27 GDPR, we will appoint and identify one; in the meantime, EEA/UK users can contact our data protection team at dpo@livegen.ai.

California. This section supplements the above for California residents under the CCPA/CPRA. We collect the categories of personal information described in Section 2 (including identifiers, commercial information, internet activity, geolocation (approximate), and sensitive personal information such as account credentials and biometric/facial data used to run the transforms), for the purposes in Section 3, and disclose them to the recipients in Section 5. We do not sell or share personal information, and we do not use sensitive personal information for purposes beyond those allowed without a right-to-limit. California residents may exercise the rights in Section 9 by contacting privacy@livegen.ai.

Other US states. Residents of other US states with comprehensive privacy laws have the rights described in Section 9, exercisable by contacting privacy@livegen.ai. Where a state law provides an appeal process for a denied request, we will honor it.

This Privacy Policy is cross-referenced by, and should be read together with, the LiveGen Terms of Service.