Data we collect
We collect account information (name, email, password hash), photos you upload, order and payment metadata (via Creem when live), technical logs (IP, user agent), and support communications.
Biometric and special category data (EU/UK)
Wedding photos may reveal biometric characteristics. Where required, we rely on your explicit consent (checkboxes before upload) to process this data for AI generation.
How we use data
- Provide and improve the Service
- Process payments and deliver downloads
- Send transactional email (confirmations, ready notifications, expiry reminders)
- Prevent fraud and enforce policies
Processors
We use trusted providers: Replicate (AI inference), Cloudflare R2 (storage), Brevo (email), Creem (payments when enabled), and infrastructure hosts. They process data only on our instructions.
Retention
Uploaded photos and generated outputs are stored for approximately 30 days after purchase unless extended. We delete expired content from storage and databases on a scheduled basis.
Security
We use encryption in transit, access controls, and private storage buckets. No method is 100% secure; contact us if you suspect unauthorized access.
Your rights
Depending on your location, you may request access, correction, deletion, portability, or restriction of processing. EU/UK users may lodge complaints with a supervisory authority. California residents may have CCPA rights — contact us to exercise them.
Children
The Service is not directed to anyone under 18. We do not knowingly collect data from minors.
International transfers
Data may be processed in the United States and other countries where our providers operate. We use appropriate safeguards where required.