CRE8IVE AI — PRIVACY POLICY | Effective: February 19, 2026
Privacy Policy
Cre8ive AI
1. Scope and Applicability
This Privacy Policy applies to Cre8ive AI (“Cre8ive AI,” “we,” “us,” or “our”) and governs how we collect, use, disclose, and protect information in connection with the Cre8ive AI B2B lead generation and marketing platform (“Platform”), accessible at www.cre8iveai.com.
This Policy covers two categories of individuals: (a) Business Clients (“Clients”) who subscribe to the Platform; and (b) End Users (“Leads”) whose information is collected through Client-deployed White-Label lead capture tools. Because the Platform is white-labeled, End Users interact only with Client’s branding — they do not see Cre8ive AI’s identity.
We operate globally and comply with all applicable U.S. federal and state privacy laws, including the California Consumer Privacy Act (CCPA/CPRA), and with the European Union’s General Data Protection Regulation (GDPR) and UK GDPR where applicable.
2. Information We Collect
2.1 From Business Clients
When a business registers for and uses the Platform, we collect:
- Business name, type, and contact information;
- Account credentials (name, email address, password) of authorized users;
- Billing and payment information, processed securely through Stripe (we do not store full payment card numbers);
- Usage data, activity logs, and Platform interaction records;
- Support communications submitted to Cre8ive AI via [email protected].
2.2 Consumer Lead Data Collected Through the Platform
Through Client White-Label Deployments, the following consumer data may be collected from End Users:
- Full name;
- Email address;
- Phone number;
- Travel preferences and interests;
- TCPA consent records, including consent timestamps, consent language presented, and device/session identifiers;
- IP address, browser type, device identifiers, and geolocation data collected via cookies and tracking pixels;
- Any other information voluntarily submitted through lead capture forms.
2.3 Automatically Collected Technical Data
We automatically collect technical data when the Platform is accessed, including IP addresses, browser type, operating system, referral URLs, page views, session duration, and cookie/pixel data. This data supports Platform operations, analytics, security, and advertising functions.
3. How We Use Information
We use collected information for the following purposes:
- To provide, operate, maintain, and improve the Platform and Services;
- To process payments via Stripe and manage Client Subscriptions;
- To authenticate users and secure accounts;
- To communicate with Clients about accounts, billing, updates, and support;
- To share or sell Consumer Lead data with authorized third parties as described in Section 4;
- To send marketing communications to Clients (with opt-out available);
- To comply with TCPA, CCPA/CPRA, GDPR, CAN-SPAM, and other applicable laws;
- To detect and prevent fraud, security incidents, and abuse;
- To analyze usage trends and develop new Platform features;
- To fulfill SMS communication services through Twilio;
- To support CRM integrations through HubSpot or Salesforce;
- For any other purpose disclosed at the time of collection or with consent.
4. Data Sharing and Sale of Lead Data
4.1 Third-Party Data Sharing
Sharing Consumer Lead data with third parties is a core component of the Cre8ive AI business model. We may share Consumer Lead data with travel companies, advertisers, marketing partners, data aggregators, and related service providers. All data recipients are required to use shared data lawfully and in compliance with applicable privacy law.
4.2 Named Third-Party Service Providers and Partners
We work with the following third-party providers who may receive or process data in connection with the Platform:
- Google Analytics — website and Platform usage analytics;
- Google Ads / Google Tag Manager — advertising measurement, conversion tracking, and tag management;
- Meta Pixel (Facebook) — advertising attribution, retargeting, and conversion measurement;
- Stripe — payment processing and subscription billing;
- Twilio — SMS and voice communication services;
- HubSpot / Salesforce — CRM, lead management, and client communication.
Each provider operates under its own privacy policy and data processing terms. We encourage you to review their policies.
4.3 CCPA — Sale and Sharing of Personal Information
Under the CCPA and CPRA, sharing Consumer Data for valuable consideration may constitute a “sale” or “sharing” of personal information. Cre8ive AI and its Clients may engage in such activities. California residents have the right to opt out by contacting us at [email protected] or following opt-out mechanisms available in Client’s White-Label Deployment. We do not knowingly sell personal information of consumers under age 16.
4.4 GDPR — International Data Transfers
Consumer Data originating from EEA or UK individuals transferred to third-party recipients outside the EEA/UK will be conducted pursuant to Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms under GDPR and UK GDPR.
4.5 Legal Compliance and Safety
We may disclose information as required by applicable law, regulation, court order, or governmental authority, or to protect the rights, property, or safety of Cre8ive AI, our Clients, or others.
4.6 Business Transfers
In the event of a merger, acquisition, or asset sale, Client and consumer data may be transferred as part of that transaction. Affected parties will be notified as required by applicable law.
All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties, excluding aggregators and providers of the text message services.
5. Cookies and Tracking Technologies
The Platform uses cookies, web beacons, tracking pixels, and similar technologies for session management, analytics, advertising attribution, and TCPA consent documentation. Specific tools used include Google Analytics, Google Tag Manager, and Meta Pixel. For full details on cookie types, retention periods, and your opt-out rights, please review our Cookie Policy at www.cre8iveai.com/cookie-policy.
6. Your Privacy Rights
6.1 California Residents — CCPA/CPRA
California residents have the right to: know what personal information is collected, used, or sold; request deletion of personal information; correct inaccurate information; opt out of the sale or sharing of personal information; limit use of sensitive personal information; and not be discriminated against for exercising these rights. To submit a request, contact us at [email protected]. We respond within 45 days of a verified request.
6.2 EEA and UK Residents — GDPR / UK GDPR
EEA and UK residents have rights including: access; rectification; erasure; restriction of processing; data portability; objection to processing; and rights regarding automated decision-making. To exercise these rights, contact [email protected]. EEA/UK residents may also lodge complaints with their local supervisory authority.
6.3 Nevada Residents
Nevada residents may opt out of the sale of covered personal information by contacting us at [email protected]. We will respond within 60 days.
6.4 All Users — Marketing Opt-Out
To opt out of marketing communications from Cre8ive AI, click the unsubscribe link in any email or contact us at [email protected]. Opt-outs from SMS communications can be made by replying STOP to any message sent via our platform.
7. Data Hosting and Security
The Platform and associated data are hosted on secure cloud infrastructure. We implement commercially reasonable technical and organizational safeguards, including encryption in transit and at rest, access controls, and security monitoring, to protect information from unauthorized access or disclosure. No security system is completely impenetrable. In the event of a data breach, we will notify affected Clients in accordance with applicable breach notification laws.
8. Data Retention
Client account data is retained for the duration of the Client relationship and for a reasonable period thereafter for business and legal purposes. Consumer Lead data is retained as needed for the purposes described in this Policy and to satisfy legal retention requirements. Upon Client account termination, Client Lead data is available for export for thirty (30) days, after which it may be deleted. TCPA consent records are retained for a minimum of four (4) years.
9. Children’s Privacy
The Platform is designed exclusively for B2B use by adult business operators. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that a minor’s data has been collected, we will delete it promptly. To report a concern, contact [email protected].
10. Changes to This Privacy Policy
We may update this Privacy Policy at any time. Material changes will be communicated by email to Clients’ registered addresses and/or by in-Platform notice at least thirty (30) days before taking effect. Continued use of the Platform after the effective date of changes constitutes acceptance.
11. Contact and Data Inquiries
For questions, access requests, or privacy concerns, please contact: