Legal

Privacy Policy.

Last updated: 26 June 2026

1. Who we are

Raven (“we”) is the data controller for the personal data described here. For privacy requests, contact privacy@raven.app.

2. What we collect

Account data — your email and authentication identifiers, managed by our auth provider (Clerk).
Content — the stories, prompts, drafts, and worlds you create.
Usage data — model-usage records and credit ledger entries needed to operate and bill the service.

3. Lawful basis (GDPR Art. 6)

We process account and content data to perform our contract with you (to provide the service). We process usage and billing data on the basis of our legitimate interests in operating and securing the service and where required to comply with legal obligations. Where consent is the basis (e.g. optional communications), you may withdraw it at any time.

4. AI processing & sub-processors

To generate, edit, and retrieve text, your prompts and the relevant manuscript context are sent to third-party providers acting as our processors. We rely on the following sub-processors:

• xAI (Grok models) — text generation, editing & classification.
• Anthropic (Claude models) — higher-effort text generation & editing.
• Voyage AI — text embeddings for retrieval over your worlds and stories.
• Tavily — optional web search when a flow requests external context.
• Clerk — account authentication and identity.
• Convex — backend application database and hosting.
• Paddle — payment processing and billing (merchant of record; see §4a).

We do not sell your personal data. We do not use your content to train our own models, and our AI sub-processors process your content under their API/enterprise terms solely to return results to you and do not use it to train their models. Some sub-processors may be located outside the EEA; such transfers are covered by appropriate safeguards (e.g. Standard Contractual Clauses). We maintain a current list of sub-processors and will give notice of material changes as required by law.

4a. Payments

Our order process and payments are conducted by Paddle.com, which acts as the merchant of record (the reseller and seller of record) for all purchases. When you buy a paid plan or credits, your purchase and any payment-method, billing, and tax details are collected and processed by Paddle under Paddle’s Buyer Terms and Paddle’s Privacy Policy. We receive only the transaction and subscription information needed to provision your account and keep our credit ledger; we do not store full payment-card numbers.

5. Retention

We retain your content for as long as your account is active. When you delete content or your account, we delete the associated data, subject to short backup and legal-retention windows.

6. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, and port your personal data, and to object to certain processing. To exercise these rights, email privacy@raven.app. You also have the right to lodge a complaint with your local supervisory authority.

7. Security

Data is encrypted in transit. Access is restricted to what is needed to operate the service. No system is perfectly secure, but we take reasonable measures to protect your data.

8. Changes

We may update this policy; material changes will be notified in the app or by email.

See also our Terms of Service and Refund & Cancellation Policy.