Security

Built to be trusted.

Surrealism.ai is a streaming platform. We don't store video data locally. Payments are handled by Stripe. Streaming is served over HTTPS/HLS. Here's what that means in practice.

How it works

Four pillars.

Payments via Stripe

PCI DSS compliant payment processing. We never see or store your card number. All payment data is handled entirely by Stripe — including card entry, tokenization, and processing. Surrealism.ai receives only a Stripe customer ID and subscription status.

HTTPS / HLS streaming

All video content is delivered over HTTPS with HLS (HTTP Live Streaming). Traffic is encrypted in transit. The stream is segmented and served from a CDN — no single large file is ever downloaded to your browser.

No local video storage

Video files are not downloaded or cached on your device. Streaming only. Content cannot be extracted from the player. This protects both subscriber bandwidth and creator IP.

No tracking pixels

The video player does not embed third-party tracking scripts. No ad network pixels, no retargeting tags, no social media SDKs on the player page. Analytics are limited to first-party session data for platform improvement only.

Data practices

What we collect. What we don't.

What we collect

  • Email address
  • Stripe customer ID
  • Subscription plan and status
  • Basic session analytics (page views, not individual scene views)

What we don't collect

  • Credit card or payment details (handled entirely by Stripe)
  • Video viewing history at the individual scene level
  • Browsing behavior beyond core first-party analytics
  • Location data beyond country-level (for billing purposes)
  • Device fingerprints or cross-site tracking identifiers

Report a concern

Found a security issue?

If you've discovered a potential security vulnerability or have a concern about how your data is handled, please reach out directly. We take these reports seriously and will respond promptly.

support@surrealism.ai