Skip to main content
Welcome to imini Open Platform (hereinafter “imini”, “the Platform”, “we”, or “us”). We understand the importance of personal information and respect and protect the personal information and data security of all users (hereinafter “you”) of this Platform. This Privacy Policy (hereinafter “this Policy”) explains how we collect, use, store, share, and protect your information, as well as the rights you have with respect to your personal information. Please read and fully understand this Policy before using the Platform. By using the Platform’s services, you acknowledge that you have read and agree to all the terms of this Policy. If you do not agree with any part of this Policy, please discontinue use of the Platform’s services immediately.

1. Scope

This Policy applies to all services provided by imini Open Platform (collectively, the “Services”), including AIGC image generation, video generation, task management, and account management, accessed via the website, API, SDK, developer console, or other means. This Policy does not apply to products or services independently provided to you by third parties (including but not limited to underlying model providers, payment institutions, or identity verification providers). When using such third-party services, you should read and comply with their respective privacy policies.

2. Definitions

  • Personal Information: Information that, alone or in combination with other information, can identify a specific natural person.
  • Interaction Data: The input content you submit to the Platform through the API (prompts, reference images, reference videos) and the output content returned by the underlying models (generated images, videos, etc.).

3. Information We Collect

3.1 Information you provide to us

  • Account information: Email, password (encrypted), company/team name (if applicable).
  • Payment and billing information: Top-up records, invoice title, tax ID. We do not store your full bank card number or payment password; such information is handled by third-party payment institutions.
  • Contact and feedback information: Content you voluntarily provide when submitting tickets or contacting support.

3.2 Information we collect automatically when you use the Services

  • Device and log information: IP address, access time, API call records, error logs, User-Agent, request origin.
  • Usage data: API Key usage, models called, credits consumed, task status, and summaries of request parameters.

3.3 Interaction data

The prompts, reference images, and reference videos you submit via the API, along with the images and videos generated by the models, constitute interaction data. Our handling of interaction data follows these principles:
  • We only process it to the extent necessary to provide you with the Services, including forwarding requests to the underlying models, returning results to you, and short-term caching as needed;
  • Interaction data will be sent to the underlying model providers for processing, which is also subject to their respective privacy policies;
  • We do not use your interaction data to train our own models, nor do we use it for purposes unrelated to providing the Services.

4. How We Use Information

We collect information for the following purposes:
  • Providing and maintaining the Services: Registration, API call routing, task scheduling, and billing settlement.
  • Securing accounts and the Services: Detecting abnormal logins, preventing malicious calls, and identifying and handling abuse.
  • Improving the service experience: Analyzing usage data to optimize interface performance and to detect and fix defects.
  • Service notifications: Sending necessary maintenance announcements, change notices, billing reminders, and similar communications (you may unsubscribe from non-essential notifications).
  • Fulfilling legal obligations: Retaining logs and cooperating with lawful investigations as required by applicable laws, regulations, and regulatory requirements.

5. How We Share Information

We pledge not to sell your personal information to any third party. We may share your information only in the following circumstances:
  • Where we have your explicit consent.
  • Where necessary to provide the Services: Forwarding interaction data to underlying model providers; forwarding payment information to payment institutions.
  • Sharing with affiliates: Limited to what is necessary to provide the Services, subject to the same restrictions as this Policy.
  • Sharing with service vendors: For example, cloud computing, data storage, SMS services, or identity verification providers. We require them to maintain confidentiality and take appropriate security measures.
  • Legal requirements: Pursuant to laws, regulations, legal proceedings, or mandatory government requests.
  • Business changes: In the event of a merger, acquisition, or asset transfer, we will require the new holder to continue to be bound by this Policy.

6. Data Storage and Cross-Border Transfer

6.1 Storage locations

Our servers are deployed in the Operator’s place of registration and the regions of its partner cloud providers (which may include but are not limited to Hong Kong, Singapore, the United States, and the European Union). Your information may be transferred and stored between these regions.

6.2 Retention periods

We only retain your personal information for as long as necessary to achieve the purposes described in this Policy. Typical retention periods are:
Information categoryRetention period
Account registration information (email, password, etc.)Duration of the account plus the statutory retention period after account deletion
Transaction and billing informationAs required by applicable tax and accounting laws (typically no less than 7 years)
API call logs and usage dataGenerally no more than 3 months; abnormal or security logs may be extended to 12 months
Support tickets and correspondenceDuration of the account, for after-sales and dispute handling
Interaction data (prompts, generated content)Short-term caching after task completion and delivery; not retained long-term unless necessary
Where otherwise required by laws or regulations, those requirements prevail. After the retention period, we will delete or anonymize your personal information.

6.3 Cross-border transfer

Because underlying model providers and cloud infrastructure are distributed across multiple countries/regions, your interaction data and some personal information may be transferred outside the Operator’s place of registration for processing. We will use lawful mechanisms consistent with applicable law (such as standard contractual clauses or user consent) to secure such transfers.

7. Data Security

We take industry-standard technical and organizational measures to protect your information, including but not limited to:
  • HTTPS / TLS encryption at the transport layer;
  • One-way encryption or segmented storage of sensitive fields (such as passwords and API Keys);
  • Role-based access control and the principle of least privilege;
  • Regular security audits, vulnerability scans, and penetration testing;
  • Employee confidentiality agreements and data access logging.
Despite our best commercial efforts, please understand that the internet environment is not absolutely secure. In the event of a personal information security incident, we will notify you and the regulator as required by law.

8. Your Rights

Within the limits allowed by laws and regulations, you have the following rights with respect to your personal information:
  • Right of access: View your account information, call records, and billing details.
  • Right of rectification: Correct inaccurate or incomplete personal information.
  • Right of deletion: Request deletion of your personal information where legally permitted.
  • Right to withdraw consent: For information processed on the basis of consent, you may withdraw consent at any time.
  • Right to close your account: You may close your account at any time via the console or by contacting support. After closure, except as required by law, we will delete or anonymize your personal information.
  • Right to complain and report: If you believe your lawful rights have been infringed, you may lodge a complaint with us or report it to the competent authority.
You may exercise the above rights through the methods provided in the “Contact Us” section of this Policy. We will verify and handle your request within 15 business days of receipt.

9. Third-Party Services

The underlying models integrated into the Platform are operated by third-party model providers. When interaction data is forwarded to them for processing, it is also subject to their respective privacy policies. We evaluate the security and compliance posture of third-party providers when selecting them, but we are not liable for their independent actions.

10. Minors

The Platform is intended for developers and business customers only, and is not provided to minors under 18. If we learn that an account is actually used by a minor, we reserve the right to suspend the account and delete the related information.

11. Changes to This Policy

We may revise this Policy from time to time. For material changes, we will notify you through in-product notices, email, or prominent announcements. If you continue to use the Services after the changes take effect, you will be deemed to accept the revised Policy.

12. Contact Us

If you have any questions, comments, or suggestions regarding this Policy, or wish to exercise your rights over your personal information, please contact us through the following channels: We will respond as soon as possible after receiving your request.