PhotoToPainting Logo
PhotoToPainting
Back to Home

Privacy Policy

How PhotoToPainting handles your uploads, credits, and account data

Last updated: January 31, 2025

Your photos stay yours

PhotoToPainting converts photos into AI-generated artwork. We only collect information necessary to render your images, manage credit packs, and secure your account. We do not sell your data or reuse your images to train unrelated models without permission.

Uploads stay temporary

Source photos are encrypted in transit and stored short-term (up to 30 days) only to render artwork or let you re-download results.

Minimal analytics

We log render status, credit usage, and device info to fix bugs and prevent abuse—no ad tracking or third-party profiling pixels.

Control & deletion

Delete individual artworks or request account erasure anytime at support@phototopainting.art. Backups are purged within 30 days.

Information we collect

  • Account data: email, password hash, session tokens managed via Supabase.
  • Uploaded media: photos, prompt text, chosen style, and final render URLs. Originals are pruned after 30 days; generated art persists while credits remain active.
  • Billing data: credit-pack receipts handled securely by our payment partners; we only store transaction IDs and credit balances.
  • Usage & device info: anonymized logs (browser, OS, IP city-level) to detect spam and ensure fair credit use.

How we use your information

Core functionality

  • • Render photos into selected art styles.
  • • Maintain your credit wallet and purchase history.
  • • Troubleshoot failed conversions or payment issues.
  • • Send transactional emails (render complete, credits low, password reset).

Product improvement

  • • Aggregate usage patterns to optimize style presets and render speed.
  • • Monitor abuse (spam uploads, copyright violations).
  • • Train custom models only with opt-in data—you control consent inside settings.
  • • Produce anonymous metrics for roadmap decisions.

Third parties & transfers

We work with infrastructure partners that meet SOC 2 / ISO27001 standards:

  • Supabase for auth, database, and storage.
  • Secure object storage (S3-compatible) for temporary photo files.
  • Payment processors (Stripe/Creem) for credit packs; card data never touches our servers.
  • Analytics & logging via privacy-friendly tools (no cross-site tracking).

Data may be transferred internationally to operate the service. We rely on SCCs and DPAs with each vendor.

Your rights & choices

  • • Access and export your artwork history from the dashboard.
  • • Delete any upload or request full account deletion via support@phototopainting.art.
  • • Opt out of marketing emails in a single click; we only send critical service notices by default.
  • • Disable analytics cookies through your browser or our in-app privacy settings.

Questions?

Email privacy@phototopainting.art. We respond within 2 business days.

If we update this policy, we will post the revision date above and notify registered users via email.