Picture Optimizer
Picture Optimizer

Privacy Policy

Last updated: March 2026

1. Information We Collect

Picture Optimizer collects the following data when you create an account and use our services:

  • Account information — name, email address, and authentication credentials (password hash or OAuth provider tokens).
  • Billing information — payment details processed through Stripe. We do not store credit card numbers on our servers.
  • Usage data — credit consumption, API call logs, processing timestamps, and session metadata.
  • Image data — images uploaded for processing are stored temporarily during the active session and deleted after processing completes or the session expires.

2. How We Use Your Data

  • Provide, maintain, and improve the Picture Optimizer service.
  • Process image optimization requests and deliver results.
  • Handle billing, invoicing, and credit management.
  • Send transactional emails (account confirmation, billing receipts, service notifications).
  • Monitor service health and prevent abuse.

3. Image Processing and Storage

Images uploaded to Picture Optimizer are processed on our servers and transmitted to AI vision providers for metadata generation. Processed images are stored temporarily and deleted after download or session expiration (maximum 24 hours). We do not retain copies of your images beyond the active processing session.

AI analysis providers may process image data according to their own privacy policies. We use providers that do not retain or train on customer image data.

4. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing purposes. We share data only with:

  • Payment processors — Stripe for payment handling.
  • AI providers — for image analysis (metadata generation only, not storage).
  • Infrastructure providers — cloud hosting for service operation.
  • Law enforcement — when required by valid legal process.

5. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies. Analytics cookies may be used to understand service usage patterns — these are anonymized and aggregated.

6. Data Security

We implement industry-standard security measures: TLS encryption in transit, encrypted storage at rest, access controls, and regular security audits. API keys are hashed before storage.

7. Data Retention

  • Account data — retained while your account is active. Deleted within 30 days of account deletion request.
  • Processing logs — retained for 90 days for debugging and billing reconciliation.
  • Images — deleted within 24 hours of processing completion or session expiration.

8. Your Rights

You have the right to access, correct, export, or delete your personal data. Contact us at [email protected] to exercise these rights. We respond to data requests within 30 days.

9. Changes to This Policy

We may update this privacy policy periodically. Material changes will be communicated via email to registered users. Continued use of the service after changes constitutes acceptance.

10. Contact

For privacy-related inquiries, contact: [email protected]