← Back to GrabUGC

Privacy Policy

Last updated: 27 May 2026

This Privacy Policy explains how Abersoft Technologies AB, organisation number 559241-9823, registered in Sweden (“Abersoft”, “we”, “us”), collects and processes your personal data when you use GrabUGC (the “Service”). We are the data controller for the purposes of the EU General Data Protection Regulation (GDPR).

1. Data we collect

We collect only what we need to run the Service:

  • Account data: your email address and authentication credentials, which you provide when you register.
  • Purchase data: a record of which clips you have purchased, and the associated payment reference, so we can grant you access to your downloads.
  • Payment data: payments are handled by Stripe. We do not receive or store your full card number. We receive only limited transaction metadata (such as confirmation of a successful payment) from Stripe.
  • Technical data: standard server and security logs generated when you use the Service, which may include your IP address and basic device information.

2. How we use your data, and our legal basis

  • To provide the Service — creating your account, processing purchases, and delivering your downloads. Legal basis: performance of a contract.
  • To process payments and prevent fraud. Legal basis: performance of a contract and our legitimate interests.
  • To maintain the security and integrity of the Service. Legal basis: our legitimate interests.
  • To comply with legal and accounting obligations, such as retaining transaction records. Legal basis: legal obligation.
  • To contact you about your account or a purchase when necessary. Legal basis: performance of a contract.

3. Service providers (sub-processors)

We use a small number of trusted providers to operate the Service. They process data on our behalf under appropriate data protection terms:

  • Supabase — database, authentication, and file storage.
  • Stripe — payment processing.
  • Vercel — application hosting and delivery.

Some of these providers may process data outside the European Economic Area. Where that happens, the transfer is protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

4. How long we keep your data

We keep your account and purchase data for as long as your account is active, and afterwards only as long as needed to meet legal, accounting, or legitimate-interest requirements. Security logs are kept for a limited period and then deleted or anonymised.

5. Your rights

Under the GDPR, you have the right to access, correct, delete, or export your personal data, to object to or restrict certain processing, and to withdraw consent where processing is based on consent. To exercise any of these rights, contact us at info@abersoft.se. You also have the right to lodge a complaint with your local data protection authority; in Sweden this is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY).

6. Cookies and similar technologies

We use only the cookies and local storage necessary to keep you signed in and to operate the Service securely. We do not use advertising or third-party tracking cookies. If this changes, we will update this policy and, where required, ask for your consent.

7. Children

The Service is not directed to children. You must be at least 18 years old, or the age of majority in your jurisdiction, to use the Service. We do not knowingly collect data from children.

8. Changes to this policy

We may update this Privacy Policy from time to time. The “last updated” date above reflects the current version. If we make material changes, we will take reasonable steps to inform you.

9. Contact

Abersoft Technologies AB
Organisation number: 559241-9823
Email: info@abersoft.se