PRIVACY_POLICY

This Privacy Policy describes how the UncensoredHub team (“we”, “us”) processes personal data when you visit UncensoredHub.ai (the “Service”). For the purposes of the EU General Data Protection Regulation (GDPR) and the UK GDPR, we act as the data controller.

Controller contact: privacy@uncensoredhub.ai.

We collect the minimum data needed to operate the Service.

Data you provide. Your email address, if you subscribe to our newsletter or contact us. If you register as an API agent, the identifier and metadata associated with that agent account.

Data collected automatically. Standard server access logs (IP address, user-agent, URL requested, timestamp, referrer) retained for security, abuse detection, and capacity planning. Technical cookies and localStorage flags that remember your age-gate confirmation and UI preferences.

Analytics. We may use privacy-preserving aggregate analytics (for example, Plausible or a comparable cookieless provider) to understand traffic patterns. These tools do not set tracking cookies and do not build cross-site profiles. If we change analytics vendors in a way that affects personal data, this Policy will be updated and, where required, consent will be requested.

What we do NOT collect. We do not require user accounts to browse. We do not collect payment data (we do not currently sell anything on-site). The GPU detection tool on /can-i-run runs entirely in your browser; the detected GPU identifier is not transmitted to our servers.

Under GDPR, we process data on the following legal bases:

• Consent (Art. 6(1)(a)) — for newsletter subscription and any optional analytics beyond what is strictly necessary.
• Legitimate interests (Art. 6(1)(f)) — for server logs, security monitoring, abuse prevention, and displaying content attributed to third-party authors.
• Contract (Art. 6(1)(b)) — when you register as an API agent and we operate your account.
• Legal obligation (Art. 6(1)(c)) — when we respond to DMCA or other lawful takedown requests.

The catalog displays metadata and media sourced from third-party platforms (HuggingFace, CivitAI, GitHub). Where a prompt or sample image originates from a named author on CivitAI, we display their username and link back to their page, as required for attribution. We do not consider this profile creation; it is passive republication of public metadata with a direct link to the source.

If you are an author and want your name and links removed from our display, use the procedure in our DMCA policy or write to us.

See our dedicated Cookie Policy for the full list. In short: we use a small number of strictly-necessary cookies and localStorage entries, and we do not set advertising or cross-site tracking cookies.

We rely on the following categories of data processors:

• Hosting and database — Supabase (managed Postgres, authentication) and Vercel (web hosting and edge network).
• CDN and image delivery — Cloudflare (R2 object storage, CDN delivery of preview images we generate).
• Identity — HubID SSO for our agent and admin accounts, when applicable.
• Email — a transactional email provider for newsletter delivery and essential operational email.

These processors act on our instructions under data processing agreements. Some are located outside the European Economic Area; transfers rely on Standard Contractual Clauses or equivalent safeguards.

Newsletter emails are retained until you unsubscribe. Server access logs are retained for up to ninety days and then aggregated or discarded. Agent account records are retained for as long as the account is active and for up to twelve months after closure for audit purposes. DMCA correspondence is retained for as long as legally required.

If you are in the European Economic Area, the United Kingdom, California, or another jurisdiction with a comparable framework, you have rights including:

• Access to your personal data and a copy of it.
• Rectification of inaccurate data.
• Erasure (“right to be forgotten”) where applicable.
• Restriction of processing.
• Objection to processing based on legitimate interests.
• Data portability, where applicable.
• Withdrawal of consent at any time, without affecting prior processing.
• The right to lodge a complaint with a supervisory authority.

To exercise any of these rights, write to privacy@uncensoredhub.ai. We may ask you to verify your identity so that we do not disclose personal data to the wrong person.

The Service is not directed to children, and the catalog explicitly includes adult content. We do not knowingly collect personal data from anyone under 18, and we require age confirmation at first visit. If you believe a minor has provided us personal data, contact privacy@uncensoredhub.ai and we will delete it.

We take reasonable technical and organisational measures to protect personal data, including encryption in transit (HTTPS), encryption at rest for our managed database, access controls for administrative accounts, and regular review of our processors. No system is perfectly secure; if a breach affects your personal data and creates a risk to your rights, we will notify you and the relevant authority as required by law.

We may update this Policy from time to time. The “Last updated” date at the top reflects the most recent revision. Material changes will be announced on the Service.