1. Introduction
Welcome to Slidemia. We operate the website and services available at slidemia.com (collectively, the "Services"). We understand that when you use our Services — whether to sharpen a presentation, get feedback on a pitch deck, or generate new content — you are placing real trust in us. This Privacy Policy is our commitment to honoring that trust. It explains in plain language what personal information we collect, why we collect it, how we use and protect it, who we share it with, and what choices you have.
Slidemia provides three core categories of service. First, we publish educational content: tips, guides, and structured frameworks to help individuals and teams improve the quality, clarity, and impact of their presentations. Second, we offer an AI-powered document analysis service: you can upload a pitch deck or presentation file and receive detailed, actionable recommendations covering structure, narrative flow, visual design, and persuasiveness. Third, we offer content generation: using AI, we help you draft slides, summaries, executive overviews, and other presentation-related text based on prompts or uploaded source material.
Because the analysis and generation features rely on large language models provided by third-party AI companies, this Policy gives particular attention to how your submitted content is handled when it passes through those systems. We encourage you to read this Policy in full before using those features, and to contact us at [email protected] if you have any questions before you begin.
This Policy applies to all users of the Services worldwide. Where local law grants you specific rights — for instance under the European General Data Protection Regulation, the UK GDPR, or the California Consumer Privacy Act — additional detail on those rights is provided in Section 9.
2. Information We Collect
We collect information in three principal ways: information you actively give us, content you submit for processing, and information our systems collect automatically when you interact with the Services. Each category is described below.
2.1 Account and Registration Information
When you create a Slidemia account, we collect the information you provide during sign-up. This typically includes your name, email address, and a password (stored in hashed form). If you sign up using a third-party authentication provider such as Google, we receive a limited profile from that provider — generally your name, email address, and profile image — in accordance with your settings on that platform. You may also optionally provide additional profile details such as your job title, organization, or the type of presentations you most commonly work on. This contextual information helps us tailor recommendations and examples to your specific professional context.
2.2 Content You Submit for Analysis or Generation
When you use Slidemia's document analysis or content generation features, you upload or paste content for our systems to process. This submitted content may include pitch decks, business presentations, investor materials, product roadmaps, slide outlines, written briefs, or any other document you choose to provide. We treat submitted content as the primary input to the AI features and handle it with care, as described in Section 5.
You are solely responsible for ensuring that any content you submit is content you have the right to share. You should not submit documents containing sensitive personal data about third parties (such as health records, financial details, or identification numbers), legally privileged communications, trade secrets belonging to others, or any information whose disclosure to an AI processing system would violate a contractual or legal obligation. Submitted content may be retained for a limited period to allow you to review your analysis history and access prior outputs, as described in Section 7.
2.3 Communications and Support Interactions
When you contact us by email or through a support channel, we collect and retain the content of your message, your email address, and any attachments you include. We use this information to respond to your inquiry, investigate and resolve the issue you raised, and improve our support processes. Support communications may be reviewed by our team members and may be referenced when following up on related issues.
2.4 Automatically Collected Technical Data
When you access the Services, our servers and analytics systems automatically record certain technical information about your session. This includes your IP address; your browser type, language, and version; the operating system and device type you are using; the URL of the page that referred you to our site; the pages you visit within the Services and the duration of each visit; links and interface elements you interact with; and the date and time of each request. This data is collected via standard server logs, first-party cookies, and analytics tools, and is used to operate the Services reliably, diagnose technical problems, understand how users navigate the product, and inform decisions about design and feature development.
2.5 Cookies and Tracking Technologies
We use cookies — small text files stored on your device — and related technologies such as web beacons and local storage to support the operation of the Services. Some cookies are strictly necessary: they maintain your login session, remember your preferences, and protect against cross-site request forgery. Others are functional cookies that remember choices you have made, such as your preferred language or display settings. We also use analytics cookies that help us measure aggregate usage patterns — for example, how many users accessed a particular guide, or at what point in the analysis workflow users tend to drop off.
You can control cookie behavior through your browser settings. Most browsers allow you to block third-party cookies, delete cookies on exit, or prompt you before accepting cookies. Note that disabling certain cookies may affect the functionality of the Services — for example, you may be required to log in again on each visit, or certain personalization features may not work. A full list of the cookies we use, their purpose, and their retention periods is available upon request.
3. How We Use Your Information
We use the information we collect for specific, legitimate purposes directly related to operating and improving the Services. We do not use your information for purposes that are incompatible with those described in this Policy, and we do not engage in the sale of personal information.
We use your account and registration information to create and manage your account, authenticate you when you log in, and associate your analysis history and generated content with your profile. We use your name and email address to communicate with you about your account, including transactional emails such as password reset requests, billing confirmations (where applicable), and important changes to the Services or this Policy.
We use submitted content — your uploaded documents and text inputs — exclusively to fulfill the specific feature you have requested. When you submit a pitch deck for analysis, your content is sent to an AI provider to generate recommendations; the output is then returned to you through the Services. When you request content generation, your prompt or source material is processed by an AI model to produce the requested text. We do not use your submitted content to train our own AI models, nor do we use it for advertising purposes.
We use automatically collected technical data and analytics data to monitor the health and performance of our infrastructure, identify bugs and errors, understand feature usage patterns, and make informed product development decisions. This data is analyzed primarily in aggregate or pseudonymous form. Individual-level behavioral data is not used to make decisions that have legal or similarly significant effects on you.
We may use your email address to send you service-related announcements — for example, if we change this Privacy Policy, introduce new features that significantly affect how your data is handled, or if we identify a security incident that may have affected your account. Where permitted by applicable law, we may also send you product newsletters, usage tips, or information about new Slidemia features. You may opt out of marketing communications at any time by clicking the unsubscribe link in any marketing email or by contacting us at [email protected].
4. Artificial Intelligence and Third-Party AI Providers
The analysis and content generation features of Slidemia are powered by large language models (LLMs) provided by third-party AI companies. This section explains who those providers are, what data is shared with them, how that data is governed, and the steps we take to limit exposure of your content.
4.1 Our AI Provider Partners
We currently use the following AI providers to power features of the Services:
OpenAI (openai.com) provides large language model capabilities used for pitch deck analysis and content generation. OpenAI's data handling practices are governed by its Privacy Policy and, where applicable, its Data Processing Agreement. More information is available at openai.com/policies.
Google (google.com) provides AI and machine learning services, potentially including document understanding and natural language processing capabilities. Google's data handling practices are governed by its Google Cloud Privacy Notice and applicable service terms, available at cloud.google.com/terms/cloud-privacy-notice.
Anthropic (anthropic.com) provides large language model capabilities, including through its Claude model family, which may be used for document analysis and generation tasks. Anthropic's data handling practices are governed by its Privacy Policy available at anthropic.com/privacy.
The specific AI provider used for any given feature may vary depending on the nature of the request, the feature in question, and our ongoing evaluation of quality and reliability. We may add or change AI providers in the future, and we will update this Policy when we do so.
4.2 What Data Is Shared with AI Providers
When you use an AI-powered feature, we transmit to the relevant provider the content input required to fulfill your request. For pitch deck analysis, this means the text and structure extracted from your uploaded document, along with a prompt that instructs the AI to generate analysis and recommendations. For content generation, this means the prompt or source material you have provided. We do not transmit your name, email address, or other account identifiers to AI providers as part of routine feature requests. Requests are made via API calls that are associated with our platform account rather than with your individual identity.
4.3 How AI Providers Handle Submitted Content
Each AI provider has its own policies regarding the retention, use, and confidentiality of data submitted via their APIs. In general, enterprise and API-tier customers of these providers benefit from terms that prohibit the provider from using submitted content to train their general models without explicit consent. We operate under such terms where available. However, you should be aware that we cannot fully control or audit the internal practices of third-party providers, and we encourage you to review the relevant privacy documentation for each provider listed above.
4.4 Your Responsibilities Regarding Submitted Content
Because your submitted content is transmitted to third-party AI systems, you bear responsibility for the content you choose to upload. We strongly advise against submitting documents that contain: personally identifiable information about third parties (such as client names, employee records, or customer data); sensitive financial or health-related information; legally privileged communications; credentials, passwords, or API keys; or any content whose disclosure would violate a non-disclosure agreement or other legal obligation. If you need to submit a document containing such elements, we recommend redacting sensitive information before uploading.
5. Sharing and Disclosure of Information
We do not sell, rent, or trade your personal information to third parties for their own commercial purposes. We share your information only in the limited circumstances described in this section.
We share data with the third-party AI providers described in Section 4 in order to fulfill the specific AI-powered features you request. This sharing is governed by our agreements with those providers and is limited to the content necessary for the feature in question.
We use third-party infrastructure and service providers to operate the Services, including cloud hosting providers, database services, email delivery services, and payment processors. These providers are authorized to process your information only as necessary to perform the specific service we have engaged them to provide, and they are prohibited by contract from using your data for their own independent purposes.
We may use third-party analytics services — such as web analytics platforms — to help us understand how the Services are used in aggregate. Where possible, we configure these services to anonymize or pseudonymize data before it is shared. We do not permit analytics providers to use the data we share with them for advertising or tracking purposes beyond our Services.
We may disclose your personal information if we are required to do so by a valid legal obligation, such as a court order, subpoena, or government request with appropriate legal authority. Before complying with any such request, we will assess its legal validity and, where permitted by law, notify you of the request so that you have an opportunity to object. Where we are legally prohibited from notifying you, we will comply with the obligation and keep a record of the disclosure.
In the event that Slidemia is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring party as part of that transaction. We will notify you of any such change in ownership or control via the Services or by email, and we will ensure that any successor entity is bound by privacy commitments substantially similar to those in this Policy or that you are given the opportunity to delete your data before the transfer takes effect.
6. International Data Transfers
Slidemia and its service providers operate in multiple countries. If you are located in the European Economic Area, the United Kingdom, or another jurisdiction with data transfer restrictions, your personal information may be transferred to and processed in countries — including the United States — that may not provide the same level of data protection as your home jurisdiction.
Where we transfer personal data from the EEA or the UK to a third country, we rely on appropriate legal mechanisms to legitimize the transfer. These mechanisms include the European Commission's Standard Contractual Clauses (SCCs) and, for transfers to the UK, the International Data Transfer Agreement (IDTA). We ensure that our AI providers and other key data processors have signed appropriate SCCs or equivalent protections where required.
If you have questions about the specific mechanisms we use for international transfers, or if you would like to receive a copy of the relevant contractual protections, please contact us at [email protected].
7. Data Retention
We retain personal information for as long as is necessary to fulfill the purposes for which it was collected, to maintain and improve the Services, to comply with our legal and regulatory obligations, to resolve disputes, and to enforce our agreements.
Account information is retained for the duration of your account's active status. If you delete your account, we will begin the process of deleting your account data within a reasonable period following your request, subject to the exceptions described below.
Content you have submitted for analysis or generation — including uploaded documents and generated outputs — is retained in your account history for a period sufficient to allow you to review and retrieve past work. We may retain anonymized or aggregated metadata derived from submitted content (such as file size, document category, or feature usage statistics) for a longer period for analytical purposes, but this metadata cannot be used to reconstruct your original content or identify you.
We may retain certain information for longer periods where required by law — for example, billing records may be retained for the period required by applicable tax or accounting regulations. We may also retain limited information for a reasonable period after account deletion in order to detect and prevent fraud, resolve disputes, or comply with legal obligations.
If you wish to request early deletion of your data, please contact us at [email protected] with the subject line "Data Deletion Request." We will confirm receipt of your request and complete the deletion within the timeframe required by applicable law.
8. Data Security
We take the security of your personal information seriously and implement a range of technical and organizational measures to protect it from unauthorized access, disclosure, alteration, or destruction.
All data transmitted between your device and the Slidemia platform is encrypted in transit using TLS (Transport Layer Security). Data stored on our infrastructure is encrypted at rest. Access to production systems and databases is restricted to authorized personnel on a need-to-know basis, and access controls are reviewed regularly. We use secure, reputable cloud infrastructure providers that maintain their own comprehensive security programs and comply with recognized security certifications.
We conduct periodic reviews of our security practices and work to address vulnerabilities promptly. Despite these measures, no system connected to the internet is completely immune to security threats. We cannot guarantee the absolute security of your information, and you should be aware that submitting data over the internet always carries some inherent risk.
You play an important role in keeping your account secure. Please use a strong, unique password for your Slidemia account, do not share your credentials with others, and log out of your account when using shared devices. If you believe your account has been compromised or that your information has been accessed without authorization, please contact us immediately at [email protected] so that we can take appropriate action.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authorities as required by applicable law, including within the 72-hour window required by the GDPR where that regulation applies.
9. Your Rights and Choices
Depending on where you are located, you may have specific legal rights with respect to the personal information we hold about you. We take these rights seriously and will respond to all legitimate requests within the timeframes required by applicable law.
9.1 Rights Available to All Users
Regardless of your location, you may contact us at [email protected] to request access to the personal information we hold about you, to request correction of information that is inaccurate or incomplete, or to request deletion of your account and associated data. We will respond to all such requests and will work in good faith to fulfill them, subject to any legal obligations that require us to retain certain information.
You may opt out of marketing emails at any time by clicking the "unsubscribe" link included in every marketing message, or by emailing [email protected]. You may manage your cookie preferences through your browser settings. If you wish to withdraw any consent you have previously given, you may do so by contacting us, though withdrawal of consent does not affect the lawfulness of processing that occurred prior to the withdrawal.
9.2 Rights Under the GDPR and UK GDPR
If you are located in the European Economic Area or the United Kingdom, you have the following additional rights under applicable data protection law. You have the right to access a copy of the personal data we hold about you. You have the right to have inaccurate personal data corrected and, in some circumstances, incomplete data completed. You have the right to erasure ("the right to be forgotten") where the data is no longer necessary for the purpose for which it was collected, where you withdraw consent and there is no other legal basis for processing, or where the data has been unlawfully processed. You have the right to restrict processing in certain circumstances, such as while we investigate a challenge to the accuracy of your data. You have the right to data portability, meaning the right to receive personal data you have provided to us in a structured, commonly used, machine-readable format and to transmit it to another controller. You have the right to object to processing based on our legitimate interests, including profiling based on those interests. Where we process data based on your consent, you have the right to withdraw that consent at any time.
If you believe that we have not handled your personal data in accordance with applicable law, you also have the right to lodge a complaint with your local supervisory authority — for example, the Information Commissioner's Office (ICO) in the UK, or the relevant data protection authority in your EU member state.
9.3 Rights Under the California Consumer Privacy Act (CCPA)
If you are a California resident, the CCPA grants you the right to know what categories of personal information we have collected about you and for what purposes, the right to know whether we have sold or disclosed your personal information and to whom (we do not sell personal information), the right to request deletion of personal information subject to certain exceptions, and the right not to be discriminated against for exercising your CCPA rights. To exercise your rights under the CCPA, please contact us at [email protected]. We will verify your identity before processing your request and will respond within the timeframes required by California law.
10. Children's Privacy
The Services are intended for adults and are not directed to individuals under the age of 16. We do not knowingly collect, process, or retain personal information from children under 16 without verifiable parental or guardian consent. If you are a parent or guardian and you believe that your child has provided us with personal information without your consent, please contact us immediately at [email protected]. Upon receiving such a report, we will take steps to verify the situation and, where confirmed, to delete the relevant information as promptly as possible.
If you are under 16 years of age, please do not register for an account, submit any personal information through the Services, or use any AI-powered features without the direct involvement and consent of a parent or guardian.
11. Links to Third-Party Websites and Services
The Services may contain links to third-party websites, resources, or tools — for example, links to publicly available guides, partner platforms, or the websites of our AI providers. These links are provided for your convenience and informational purposes only. We do not operate or control these third-party sites, and this Privacy Policy does not apply to them. We encourage you to review the privacy policies of any third-party website or service you visit via a link from the Services, as their data practices may differ significantly from ours.
12. Contact Us
If you have any questions, comments, or concerns about this Privacy Policy, about how we handle your personal information, or about exercising your rights, our support team is here to help. We aim to respond to all privacy inquiries promptly and constructively.
Email: [email protected] Website: slidemia.comIf your concern relates to a formal request under data protection law — such as a GDPR subject access request or a CCPA deletion request — please indicate this clearly in the subject line of your email so that we can route it to the appropriate team and ensure it is handled within the required timeframe.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time as our Services evolve, as we add or change third-party providers, as applicable law changes, or as we improve our data practices. When we make changes, we will update the "Last Updated" date at the top of this document.
For changes that are material — meaning changes that significantly affect how we collect, use, or share your personal information — we will provide more prominent notice, either by sending an email to the address associated with your account or by displaying a notice within the Services. We will give you a reasonable opportunity to review material changes before they take effect.
For non-material changes, such as typographical corrections or clarifications that do not alter the substance of our practices, the updated Policy will take effect on the date indicated. Your continued use of the Services after any changes to this Privacy Policy become effective constitutes your acknowledgment of the updated terms. If you do not agree to the revised Policy, you should discontinue use of the Services and may request deletion of your account and data by contacting [email protected].