Privacy Policy

Last Updated: October 2025

At Narpix, we take your privacy seriously. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our AI-powered image editing platform.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address (required for account creation)
• Name (if provided)
• Password (encrypted and never stored in plain text)
• Profile information (optional)

1.2 Images and Content

When you use our Service, we process:

• Uploaded images (temporarily stored for processing)
• Image metadata (file size, format, upload timestamp)
• AI processing history (tools used, settings applied)

Important: Your uploaded images are automatically deleted based on your account type: 24 hours for free users, 30 days for paid users. We do NOT use your images to train AI models or for any purpose other than providing the requested service.

1.3 Usage Data

We automatically collect:

• Technical information: IP address (anonymized after 90 days), browser type, device information, operating system
• Usage patterns: Features used, processing time, error logs
• Analytics data: Page views, session duration, navigation paths (aggregated and anonymized)

1.4 Payment Information

For paid subscriptions:

• Billing information is processed by our payment provider (Stripe)
• We do NOT store full credit card numbers
• We store billing history and subscription status

1.5 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to provide and improve our Service:

How to Control Cookies:

• Browser Settings: Most browsers allow you to refuse or delete cookies. See your browser's Help documentation.
• Opt-Out Tools:
  • Google Analytics Opt-Out: https://tools.google.com/dlpage/gaoptout
  • Do Not Track (DNT): We respect DNT browser signals
• Cookie Preferences: Manage your cookie preferences in your account settings

Note: Disabling essential cookies may limit Service functionality.

2. How We Use Your Information

2.1 To Provide the Service

• Process your images using AI tools
• Deliver AI output (background removal, upscaling, style transfer)
• Store images temporarily during processing
• Manage your account and subscriptions

2.2 To Improve the Service

• Analyze usage patterns to improve features
• Monitor performance and fix technical issues
• Develop new AI models (using aggregated, non-identifying data only)
• Conduct A/B testing for user experience improvements

2.3 To Communicate With You

• Send account-related notifications (password resets, billing)
• Provide customer support responses
• Send service updates and important announcements
• Send marketing emails (opt-out available)

2.4 For Security and Legal Compliance

• Prevent fraud and abuse
• Enforce our Terms of Service
• Comply with legal obligations (DMCA takedowns, court orders)
• Protect our rights and property

3. How We Share Your Information

3.1 We Do NOT Sell Your Data

We will never sell your personal information or images to third parties.

3.2 Service Providers

We share data with trusted third parties who help operate our Service:

All service providers are:

• GDPR-compliant where applicable
• Bound by Data Processing Agreements (DPAs)
• Required to protect your data and use it only for specified purposes
• Prohibited from using your data for their own purposes

3.3 Legal Requirements

We may disclose information if required by law:

• In response to valid legal requests (subpoenas, court orders)
• To protect our legal rights or safety of users
• To prevent fraud or illegal activity
• In connection with business transfers (mergers, acquisitions)

4. Image Privacy and Security

4.1 Automatic Deletion

• Free users: Images automatically deleted within 24 hours of upload
• Paid users: Images automatically deleted within 30 days of upload
• Processing: Images are deleted from processing servers immediately after completion
• Manual deletion: You can manually delete images anytime through your account dashboard

4.2 Secure Transmission and Storage

• Encryption in Transit: All data transmission uses HTTPS with TLS 1.3 encryption
• Encryption at Rest: Images are encrypted using AES-256 encryption while stored
• Secure Servers: Images are stored on secure cloud infrastructure with restricted access
• Access Control: Access to stored images is restricted to:
  • You (account owner)
  • Authorized AI processing systems (automated, no human access)
  • Essential maintenance personnel (only in exceptional circumstances with logging)

4.3 No AI Training on Your Images

We do NOT use your uploaded images to train our AI models.

Specifically:

• ✅ Your images are used ONLY to provide the requested editing service
• ✅ No image data is fed back into model training pipelines
• ✅ No third parties receive your images for AI training purposes
• ✅ We use pre-trained, publicly available AI models or proprietary models trained on licensed datasets
• ❌ We do NOT create datasets from user images
• ❌ We do NOT sell or share images with AI research organizations

Aggregated Analytics Only: We may collect anonymized, non-image metadata (e.g., "X% of users used background removal") for service improvement, but this contains no identifiable image content.

4.4 AI Processing Details

When you use our AI tools:

Third-Party AI Providers:

• We may use third-party AI infrastructure (e.g., Modal Labs) for processing
• These providers are contractually prohibited from:
  • Retaining your images after processing
  • Using your images for their own purposes
  • Sharing your images with third parties
  • Training models on your data

4.5 Your Control Over Images

You have complete control over your images:

• Delete anytime: Remove images from your account before automatic deletion
• Bulk deletion: Delete all images at once through account settings
• Account closure: Permanently deletes all your images within 30 days
• Data export: Request a copy of your images before deletion
• Processing history: View and delete your processing history

5. Your Privacy Rights

5.1 GDPR Rights (EU Users)

If you are in the European Economic Area (EEA), you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Object: Object to data processing for marketing purposes
• Withdraw consent: Opt-out of data processing at any time

5.2 CCPA Rights (California Users)

California residents have the right to:

• Know what personal information we collect
• Know if we sell or share personal information (we don't)
• Access your personal information
• Request deletion of your data
• Opt-out of data sales (not applicable, as we don't sell data)
• Non-discrimination for exercising your rights

5.3 How to Exercise Your Rights

To exercise any privacy rights, contact us at:

• Email: hello@narpix.com
• Subject: Privacy Rights Request
• Required Information:
  • Your full name and email address associated with your account
  • Specific right(s) you wish to exercise
  • Any additional information needed to verify your identity

Verification Process: To protect your privacy, we may request additional proof of identity before processing requests for data access, correction, or deletion.

Response Time:

• Standard requests: Within 30 days
• Complex requests: Within 60 days (with notification of the extension)
• GDPR requests (EU users): Within 30 days as required by GDPR Article 12(3)

6. Data Retention

6.1 Account Data

• Retained while your account is active
• Deleted within 90 days of account closure
• Billing records retained for 7 years (legal requirement)

6.2 Images

• Free users: Images deleted within 24 hours
• Paid users: Images deleted within 30 days
• Manual deletion: Images you delete are permanently removed within 7 days
• Account closure: All images permanently deleted within 30 days of account closure

6.3 Usage Logs

• Retained for 12 months for analytics and security
• Aggregated data (non-identifying) may be retained indefinitely

7. Children's Privacy (COPPA Compliance)

7.1 Age Restrictions

Narpix is not directed to children under 13 years of age. We do not knowingly collect, use, or disclose personal information from children under 13 without verifiable parental consent, as required by the Children's Online Privacy Protection Act (COPPA).

7.2 If You Are Under 13

If you are under 13, please do not:

• Register for an account
• Use our Service
• Provide any personal information to us

7.3 Parental Rights

If you are a parent or guardian and believe your child under 13 has provided us with personal information without your consent:

• Contact us immediately: hello@narpix.com
• Subject: Child Privacy Concern
• We will promptly delete the account and all associated data

7.4 Users Aged 13-17

Minors aged 13-17 may use Narpix only with verifiable parental or legal guardian consent. Parents or guardians can:

• Request access to their child's personal information
• Request deletion of their child's account and data
• Refuse to allow further collection or use of their child's information

8. International Data Transfers

Narpix operates globally, and your data may be processed in countries outside your residence, including the United States and other jurisdictions where our service providers operate. We ensure adequate safeguards for international data transfers:

• EU-US Data Privacy Framework compliance for EU users
• Standard Contractual Clauses (SCCs) approved by the European Commission
• Encryption for data in transit (TLS 1.3) and at rest (AES-256)
• Data Processing Agreements (DPAs) with all third-party processors

By using Narpix, you acknowledge and consent to the international transfer and processing of your data as described in this Privacy Policy.

9. Third-Party Links

Our Service may contain links to third-party websites (e.g., social media, external blogs). We are not responsible for the privacy practices of these sites. Please review their privacy policies before providing personal information.

10. Security Measures

We implement industry-standard security practices:

• Encryption: HTTPS (TLS 1.3) for all data transmission
• Access controls: Limited employee access to user data
• Regular audits: Security vulnerability assessments
• Incident response: Procedures for data breaches

However, no system is 100% secure. If we detect a data breach affecting your personal information, we will notify you within 72 hours as required by law.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Notification of Changes:

• Minor changes (clarifications, formatting): Posted on this page with updated "Last Updated" date
• Material changes (affecting your rights or data use): You will be notified via:
  • Email to your registered email address (at least 30 days in advance)
  • Prominent notice in the Service
  • Pop-up notification upon next login

Effective Date:

• New users: Changes take effect immediately upon posting
• Existing users: Changes take effect 30 days after notification for material changes

Your Options:

• Review the updated Privacy Policy
• Contact us with questions or concerns
• Stop using the Service if you disagree with changes
• For EU users: Material changes may require your renewed consent for certain data processing activities

12. Contact Us

For privacy questions, concerns, or to exercise your rights, contact us at:

Email: hello@narpix.com General inquiries: hello@narpix.com Website: https://narpix.com

Privacy Inquiries: hello@narpix.com

---

Summary of Key Points

• ✅ Your images belong to you – We never claim ownership
• ✅ Auto-deletion (24h free, 30d paid) – Images are automatically removed for security
• ✅ No AI training on your images – Your content is private
• ✅ GDPR & CCPA compliant – Full data rights for EU and California users
• ✅ Encrypted and secure – HTTPS, encryption at rest
• ✅ We don't sell your data – Your privacy is not for sale
• ✅ You have control – Delete anytime, export your data