Privacy and Data Policy

In this document, we try to tell you exactly

what data we collect and
what we do with your data

so that you can make an informed decision on whether to continue using the service or not.

1. Data we collect

your email address
photos you upload
usage data
any data collected by Google Analytics and shared with us
any data collected by Stripe and shared with us

2. Data Protection

Your data

is transmitted through SSL
is stored as plain (unencrypted) data on disk (except the password we generated for you).

When you use the service as an anonymous user, each photo and artifact is protected by a set of unique secret URLs. However, anyone who knows the set of URLs can get access to your photo and artifact.

When you use the service as a logged-in user, the set of URLs for your photos and artifacts is also protected by your login details: you have to be logged in as you to be able to access them.

It is always possible that an unauthorized person can gain access to your data, for example,

Someone gains access to our disk or VPC rented from our cloud service providers.
You use a public computer and you forget to logout before you leave.

We are not responsible for your data loss in these and other circumstances.

3. Data Retention

User data may be deleted without notice: if you want to keep your artifacts then please download them.

4. Data Deletion

As a beta service, we have not implemented a data deletion process yet.

5. General Advice

It's totally fine if you want to sign up a separate email account, other than the one you normally use, and use this new email address only for this service. We can understand that you are not ready to trust us with your data yet.

If you choose to buy coins, your payment information is with Stripe and the trust of that information is also with Stripe.