Skip to content

Privacy Policy

Last updated: March 30, 2026

1. Introduction

MorphingLabs ("we", "us", "our"), established in the Netherlands, respects your privacy and processes personal data in accordance with the General Data Protection Regulation (GDPR). This policy describes what data we collect, why we collect it, and how we protect it.

2. What data we collect

  • Account data: Name, email address, and optionally a profile picture upon registration via Supabase Auth.
  • Payment data: Processed by Stripe. We store your Stripe Customer ID and subscription status, but never your credit card details.
  • Site data: The websites, niches, locations, and language preferences you configure.
  • Generated content: Articles, metadata, and source references generated through our platform.
  • Usage data: IP address, browser information, and page visits for security and analytics purposes.

3. Purposes of processing

  • Providing and improving our service.
  • Processing payments and managing subscriptions.
  • Generating AI-powered SEO articles through our platform.
  • Ensuring the security of your account.
  • Complying with legal obligations.

4. Legal bases

We process your data on the basis of: (a) performance of the contract (delivering the service), (b) legitimate interest (security, fraud prevention), and (c) legal obligation (accounting, taxation).

5. Sub-processors

We use the following third-party services:

  • Supabase (Frankfurt, EU) — authentication and database hosting.
  • Stripe (US, EU SCCs) — payment processing.
  • Vercel (US, EU SCCs) — application hosting and CDN.

6. Retention periods

Account data is retained for as long as your account is active. Payment data is retained for 7 years in accordance with fiscal legislation. Generated articles are retained until you delete them or close your account. Audit logs are retained for a maximum of 12 months.

7. Your rights

Under the GDPR, you have the following rights:

  • Access:You can export all your data via Dashboard > Settings > Export Data.
  • Rectification: You can update your profile information in your account settings.
  • Erasure:You can delete your account and all associated data via Dashboard > Settings.
  • Portability: You can export your data as JSON.
  • Objection: Please contact us at the email address below.

8. Cookies

We use essential cookies for authentication (Supabase session) and functional cookies for your preferences (cookie consent). We do not use tracking or advertising cookies.

9. Security

We protect your data with encryption in transit (TLS) and at rest (AES-256 via Supabase). API keys are stored hashed (SHA-256). Access to production systems is restricted and logged.

10. Contact

For questions about this privacy policy or to exercise your rights, please contact us at: privacy@morphinglabs.com