Legal

Legal centre.

StoryHQ’s legal and trust pages explain the current product, data handling, security posture, copyright process, data-processing terms, and subprocessors.

Last updated 1 June 2026

01

What is covered here

The Terms page explains account, workspace, subscription, uploaded-material, AI-output, and acceptable-use rules.

The Privacy page explains the categories of data StoryHQ processes and how that data is used to provide the product.

The Security page describes current controls, including workspace isolation, MFA/session gates, private material serving, watermarking, provider processing, and security-header protections. It is explicit about what StoryHQ does not yet claim.

02

Additional policy pages

The DMCA page explains how copyright notices and counter-notices can be submitted. The DPA page describes the data-processing terms that apply where StoryHQ processes personal data on behalf of a workspace customer. The Subprocessors page lists the infrastructure, billing, email, AI, observability, and authentication providers currently used to operate StoryHQ.

03

Important limitation

These pages are written to be accurate to StoryHQ’s current product and operating posture. They are not a substitute for legal advice, and larger customers may require a separate written agreement, security review, or negotiated DPA before using StoryHQ for highly sensitive productions.