TRUST & SECURITY

Privacy Policy

We process your images securely and believe your data belongs to you. Here is how we protect your privacy.

Our Processing Policy (Chosen Option)

Immediate Deletion & Secure Ephemeral Processing

For maximum security and performance, imgigo operates under a strict Zero-Retention Ephemeral Storage policy. Images you upload to our servers are stored exclusively in temporary RAM or encrypted cache files during active processing. We never write your images to permanent disk storage and never use them to train AI models.

Deleted instantly after download
No training on user images
SSL/TLS 1.3 encryption in transit
GDPR & CCPA Compliant

1. What Information We Collect

When you use imgigo, we do not require you to create an account for basic image processing. The only information we collect includes:

  • Uploaded Images: Processed ephemerally to generate the output and removed immediately after processing is complete.
  • Account Data: If you register, we collect your name, email address, and encrypted password.
  • Usage Metrics: Anonymous data including browser type, IP address, and pages visited — used to prevent abuse and optimise performance.
  • Payment Data: Billing information is processed securely via Stripe and is never stored on our servers.
  • Cookies: Local storage and cookies are used locally on your browser to persist your editor workspace so you don't lose your work when you refresh.

2. How We Use Your Data

Your data is used only for the following purposes:

  • Delivering the image processing service you requested
  • Sending transactional emails such as receipts and account alerts
  • Sending product updates if you opted in — you can unsubscribe at any time
  • Detecting and preventing fraud or abuse
  • Improving service performance using aggregated, anonymised analytics

We never use your uploaded images to train AI models, and we never sell your personal data to third parties.

3. Where Images Are Processed & Data Security

Our image processing servers are securely located in Tier-4 data centers in the European Union (Frankfurt, Germany). Any API calls or image uploads are routed through secure, encrypted connections. We do not use third-party image hosts to store your media.

Your data is protected by:

  • AES-256 encryption at rest
  • TLS 1.3 encryption in transit
  • Role-based access controls — only authorised personnel can access user data
  • Regular third-party security audits

Uploaded images are automatically and permanently deleted from our servers within 24 hours of processing. Processed results are kept for 7 days so you can re-download them, then permanently deleted.

4. Cookies and Local Storage

We use localStorage and IndexedDB to store your recent processing history locally on your device. This allows you to reload the editor and continue editing your cutouts. This data stays entirely in your browser and is never sent to our database servers.

We use a minimal set of server-side cookies:

  • Essential cookies: Keep you logged in and remember your preferences. Cannot be disabled.
  • Analytics cookies: Help us understand how people use imgigo using anonymised data. You can opt out at any time from your account settings.

We do not use advertising or tracking cookies.

5. Sharing With Third Parties

We share your data only with trusted service providers who help us operate imgigo, under strict data processing agreements:

  • Stripe — payment processing
  • Amazon Web Services — cloud infrastructure
  • Postmark — transactional email delivery
  • Cloudflare — CDN and DDoS protection
  • Pexels — background preset photos only; your images are never sent to Pexels

We may also disclose your data if required by law or to protect the rights, safety, or property of imgigo or its users.

6. Your Rights

You have full control over your data. Under GDPR and applicable data protection laws, you have the following rights:

  • Access: Request a copy of all personal data we hold about you.
  • Correction: Ask us to correct inaccurate or incomplete data.
  • Deletion: Request permanent deletion of your account and all associated data.
  • Objection: Object to processing your data for marketing purposes.
  • Portability: Receive your data in a machine-readable format.
  • Restriction: Restrict how we process your data in certain circumstances.

Because we do not store your images, you do not need to request deletion for your media. For newsletters, you can opt-out at any time by clicking the unsubscribe link in our emails. To exercise any other right, contact us at privacy@imgigo.com. We respond to all requests within 30 days.

7. Children's Privacy

imgigo is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us immediately and we will delete it promptly.

Have questions about our privacy policies?

Feel free to contact our data protection officer at any time.

privacy@imgigo.com