Sizzle
Make it sizzleDescribe → design → sizzleHooks · ad visuals · reelsUSD subscriptions, no creditsMake it sizzleDescribe → design → sizzleHooks · ad visuals · reelsUSD subscriptions, no creditsMake it sizzleDescribe → design → sizzleHooks · ad visuals · reelsUSD subscriptions, no creditsMake it sizzleDescribe → design → sizzleHooks · ad visuals · reelsUSD subscriptions, no credits

Policy

Privacy Policy

This policy explains what personal data we collect when you use the Sizzle workshop, why we use it, who we share it with, and the rights you have. It is written to meet UK GDPR, EU GDPR and the CCPA/CPRA.

Last updated: 14 July 2026 · SIZZLE ONLINE LTD · Governing law: England and Wales

1. Who is responsible (data controller)

SIZZLE ONLINE LTD is the data controller for personal data processed through this website and the Sizzle workshop.

  • Registered office: 82 James Carter Road, Mildenhall, Suffolk, IP28 7DE, United Kingdom
  • Email: support@sizzonli.shop
  • Phone: +44 7493260443
  • Website: sizzonli.shop

You can reach our privacy contact using any of the details above.

2. What we collect

  • Account data: email address, plan, and authentication identifiers.
  • Billing data: subscription tier, billing country and the last four digits and card brand as returned by our payment processor. We never receive or store your full card number.
  • Workshop inputs: the product briefs, prompts, tone/platform choices and any product images, logos or brand assets you upload to generate content.
  • Generated outputs: the hooks, captions, ad visuals, storyboards and reels produced from your inputs.
  • Support data: messages you send through the contact or support forms and related correspondence.
  • Technical data: IP address, device and browser type, and usage/analytics events.

3. Collection sources (where we collect it from)

Our collection sources are:

  • Directly from you: when you sign up, subscribe, enter briefs or user input into the workshop, upload product images or files, or contact us.
  • Automatically from your device: cookies and similar technologies capture technical and usage data.
  • From our payment processor: billing outcomes and limited card metadata.
  • From our service providers: the hosting, email, database and AI provider processors that operate the service on our behalf.

We do not buy personal data from third-party data brokers.

4. Why we use it and legal bases

  • Provide the service (generate and export content, run your account) — performance of a contract.
  • Process subscriptions and prevent fraud — contract and legitimate interests.
  • Support and communications about your account — contract and legitimate interests.
  • Improve and secure the service, including anonymised quality improvement — legitimate interests.
  • Analytics and non-essential cookies — consent, which you can withdraw at any time.
  • Legal and tax compliance — legal obligation.

5. Payment provider boundary

Payments are handled by our third-party payment processor (Stripe). Card details are entered on the processor's secured, PCI-DSS compliant checkout. We do not see, receive or store your full card number, CVC or expiry. We only receive confirmation of the payment, your subscription status and limited metadata (such as card brand and last four digits) needed for billing and refunds.

6. Who we share it with (processors)

We share personal data only with vendors that process it on our behalf under contract:

  • Hosting & delivery: our cloud hosting and content-delivery provider.
  • Payments: Stripe, for subscription billing and refunds.
  • Email: our transactional email provider for receipts and support replies.
  • AI provider: the third-party AI provider(s) and AI model provider(s) that process your prompts and uploads to produce outputs.
  • Database & storage: our managed database and object storage for account, lead and asset data.
  • Analytics: our privacy-conscious analytics provider (subject to your cookie consent).

We disclose data to authorities only where legally required. We do not sell your personal data.

7. AI data: your user input, outputs and uploaded files

User input — the prompts, briefs, product descriptions, tone and platform choices you enter — together with any product images, logos or files you upload, is sent to our third-party AI provider to generate your marketing content (hooks, captions, ad visuals, storyboards and reels).

Retention and deletion: uploaded source files and sample data are cached only to run generation and are cleared by default within 30 days, unless you delete them sooner or keep them in your workspace. Generated outputs remain in your account until you delete them. You can request deletion of your user input and outputs at any time.

We do not use your user input, uploads or generated outputs to train foundation AI models, and our code does not send them for model training. We may process anonymised, non-identifying signals only to monitor and improve output quality and safety.

8. International transfers

Some processors operate outside the UK/EEA. Where personal data is transferred internationally, we rely on adequacy decisions or Standard Contractual Clauses (with the UK Addendum) and appropriate safeguards.

9. How long we keep it

  • Account data: for the life of your account and up to 24 months after closure.
  • Uploaded source files: cleared by default within 30 days of processing.
  • Billing and tax records: up to 6 years, as required by law.
  • Support messages: up to 24 months.

10. Security

We use encryption in transit, access controls, and reputable infrastructure providers. Secret keys are stored in server-side environment configuration, never exposed to the browser. No method of transmission is perfectly secure, but we work to protect your data and will notify you and regulators of a qualifying breach where required.

11. Your rights

UK/EU GDPR: access, rectification, erasure, restriction, portability, objection, and the right to withdraw consent.

California (CCPA/CPRA): the right to know, delete, correct, and to opt out of sale or sharing of personal information, without discrimination.

Do Not Sell or Share: we do not sell or share personal information for cross-context behavioural advertising. To exercise any right, email support@sizzonli.shop.

12. Automated decisions and children

We do not make solely automated decisions with legal or similarly significant effects about you. The workshop is not directed at children. It is not for anyone under 13, and users aged 13–17 must have verifiable parental or guardian consent. We do not knowingly collect data from children under 13; contact us to remove it.

13. Cookies

We use strictly necessary cookies to run the service and, with your consent, analytics cookies. See the Cookie Policy for details and controls.

14. Changes and how to complain

We may update this policy and will change the date above. You can complain to us first at support@sizzonli.shop. UK residents may also complain to the Information Commissioner's Office (ICO); EU residents to their local supervisory authority.

Questions about this policy?

Contact support@sizzonli.shop or write to SIZZLE ONLINE LTD, 82 James Carter Road, Mildenhall, Suffolk, IP28 7DE, United Kingdom. See also the contact page.