Privacy Policy

Last updated: March 3, 2026

1. Information We Collect

Account Information

When you create an account via Clerk (our authentication provider), we receive your email address and user identifier. If you use social login (Google, GitHub, Apple), we receive the profile information you authorize.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or bank account details. We store Stripe customer IDs and Connect account IDs to manage payments and artist payouts.

Artwork & Submissions

Submitted artwork is stored on IPFS (via Pinata). We store metadata including image dimensions, file size, perceptual hashes (for duplicate detection), and DINOv2 visual embeddings (1024-dimensional vectors used for scoring).

Blockchain Data

A custodial Polygon wallet is created for each user. Wallet addresses and encrypted keystores are stored in our database. NFT transaction hashes and token IDs are recorded.

2. How We Use Your Information

  • To operate the competition cycles and score submissions
  • To process payments and artist payouts via Stripe
  • To mint and manage NFTs on the Polygon blockchain
  • To send transactional emails (offer notifications, payout confirmations)
  • To detect duplicate or fraudulent submissions
  • To evolve OURAI's taste DNA (visual embeddings are used in aggregate)
  • To display your artwork in the gallery and competition views

3. Third-Party Services

We share data with the following services as necessary to operate the Platform:

  • Clerk — Authentication and user management
  • Stripe — Payment processing and artist payouts
  • Supabase — Database hosting (PostgreSQL)
  • Pinata — IPFS storage for artwork and NFT metadata
  • RunPod — AI model inference (DINOv2 scoring, image generation)
  • Resend — Transactional email delivery
  • Vercel — Application hosting
  • Polygon — Blockchain network for NFT minting

Each service has its own privacy policy. We only share the minimum data necessary for each service to function.

4. Data Retention

Account data is retained for the lifetime of your account. Submission data (embeddings, scores, metadata) is retained indefinitely as part of OURAI's historical record and on-chain provenance. Payment records are retained as required by financial regulations.

You may request account deletion by contacting us. Upon deletion, your account and personal data will be removed. Blockchain records (NFT transactions) cannot be deleted as they are immutable on-chain.

5. Security

We use industry-standard security practices including encrypted connections (HTTPS), encrypted wallet keystores, hashed authentication via Clerk (SOC 2 compliant), and row-level security on our database. However, no system is 100% secure and we cannot guarantee absolute security.

6. Cookies

We use essential cookies for authentication (managed by Clerk). We do not use tracking cookies or third-party advertising cookies. No analytics or marketing trackers are present on the Platform.

7. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your data in a portable format
  • Withdraw consent for non-essential data processing

To exercise these rights, contact us at privacy@museanium.com.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a notice on the Platform. Continued use after changes constitutes acceptance.

9. Contact

For privacy-related questions, contact us at privacy@museanium.com.

Terms of ServiceHome