Privacy Policy

Last updated: January 20, 2025

Introduction

Welcome to AI for Headshots (referred to as "we," "us," "our," or "the Platform"). We understand the importance of your personal information and are committed to protecting your privacy and data security. This Privacy Policy explains how we collect, use, store, and protect your personal information, as well as your rights regarding your data.

Please read this Privacy Policy carefully before using our services. By using our services, you acknowledge that you have read, understood, and agree to be bound by this policy.

Information We Collect

To provide you with our AI headshot generation services, we may collect the following types of information:

Information You Provide to Us

  • Account Information: Email address, username, and password provided during registration
  • Authentication Information: Basic profile information obtained through third-party login services (such as Google)
  • Payment Information: Order details when purchasing services (we do not directly store your credit card information; payments are processed securely through Creem)
  • Uploaded Content: Photos and related materials you upload for AI headshot generation
  • Profile Information: Optional information such as name, company, and job title for personalized headshots

Information Automatically Collected

  • Device Information: Device model, operating system, browser type and version
  • Log Information: Access times, pages visited, IP address, referring URLs
  • Usage Data: Feature usage frequency, operation records, session duration
  • Cookies and Similar Technologies: Information collected through cookies and similar tracking technologies

How We Use Your Information

We use the information we collect for the following purposes:

  • Providing, maintaining, and improving our AI headshot generation services
  • Processing your orders and payment requests through Creem
  • Training and improving our AI models to generate better headshots
  • Sending you service notifications, updates, and promotional communications (with your consent)
  • Responding to your inquiries and support requests
  • Conducting data analysis to optimize user experience and service quality
  • Preventing fraud, abuse, and security threats
  • Complying with legal obligations and regulatory requirements
  • Enforcing our Terms of Service and protecting our rights

Data Retention and Storage

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • Uploaded Photos: Original photos you upload are retained for 30 days after processing to allow for regeneration requests, then automatically deleted
  • Generated Headshots: AI-generated headshots are stored in your account until you delete them or close your account
  • Account Information: Retained for the duration of your account plus 90 days after account closure for legal and security purposes
  • Payment Records: Retained for 7 years to comply with financial regulations and tax requirements
  • Usage Logs: Retained for 12 months for security and service improvement purposes

Information Sharing and Disclosure

We do not sell your personal information to third parties. We may share your information in the following circumstances:

  • With Your Consent: We may share information with third parties when you explicitly consent
  • Service Providers: We share necessary information with trusted service providers who assist us in operating our platform, including Creem for payment processing, cloud storage providers (AWS, Google Cloud), AI model providers, and email service providers
  • Legal Requirements: We may disclose information to comply with applicable laws, regulations, legal processes, or governmental requests
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction
  • Protection of Rights: We may disclose information when necessary to protect our rights, property, safety, or that of our users or the public

Data Security Measures

We implement industry-standard security measures to protect your personal information, including:

  • SSL/TLS encryption for data transmission
  • Encryption of sensitive data at rest
  • Strict access control mechanisms and authentication requirements
  • Regular security audits and vulnerability assessments
  • Secure data centers with physical and network security
  • Employee training on data protection and privacy practices
  • Incident response procedures for data breaches

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to enhance our security measures.

Your Rights and Choices

Depending on your location and applicable laws (including GDPR and CCPA), you have the following rights regarding your personal information:

  • Access: You have the right to access and obtain a copy of your personal information
  • Correction: You have the right to request correction of inaccurate or incomplete personal information
  • Deletion: You have the right to request deletion of your personal information in certain circumstances
  • Data Portability: You have the right to receive your personal information in a structured, commonly used format
  • Opt-Out: You have the right to opt out of marketing communications and certain data processing activities
  • Withdraw Consent: You have the right to withdraw previously given consent at any time
  • Object to Processing: You have the right to object to certain types of data processing
  • Account Deletion: You can delete your account through account settings or by contacting us

To exercise any of these rights, please contact us at imxinz@gmail.com. We will respond to your request within 30 days. Please note that certain rights may be subject to limitations based on applicable laws.

Cookies and Similar Technologies

We use cookies and similar tracking technologies to provide, protect, and improve our services. These technologies help us:

  • Remember your login status and preference settings
  • Analyze service usage patterns and user behavior
  • Provide personalized user experiences
  • Measure the effectiveness of our marketing campaigns
  • Detect and prevent fraud and security threats

You can manage or delete cookies through your browser settings. However, disabling cookies may affect your ability to use certain features of our services. For more information about the cookies we use, please refer to our Cookie Policy.

Third-Party Services

Our platform integrates with third-party services to provide you with a complete experience:

  • Creem: Payment processing (subject to Creem's Privacy Policy)
  • Google OAuth: Authentication services (subject to Google's Privacy Policy)
  • Cloud Storage Providers: Secure storage of photos and generated headshots
  • Analytics Services: Usage analytics and service improvement

These third-party services have their own privacy policies and terms of service. We encourage you to review their policies to understand how they handle your information. We are not responsible for the privacy practices of third-party services.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

When we transfer your personal information internationally, we ensure appropriate safeguards are in place, including:

  • Standard contractual clauses approved by the European Commission
  • Privacy Shield certification (where applicable)
  • Adequacy decisions by relevant data protection authorities
  • Your explicit consent for specific transfers

Protection of Minors

Our services are intended for users who are at least 18 years old or the age of majority in their jurisdiction. We do not knowingly collect personal information from children under 18.

If you are under 18 years old, please do not use our services or provide any personal information. If we discover that we have inadvertently collected information from a child under 18, we will promptly delete such information.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at imxinz@gmail.com.

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: You can request information about the categories and specific pieces of personal information we have collected about you
  • Right to Delete: You can request deletion of your personal information, subject to certain exceptions
  • Right to Opt-Out: You can opt out of the sale of your personal information (note: we do not sell personal information)
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights

To exercise your CCPA rights, please contact us at imxinz@gmail.com or call us at [phone number]. We will verify your identity before processing your request.

European Privacy Rights

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis for Processing: We process your personal information based on consent, contract performance, legal obligations, or legitimate interests
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority
  • Data Protection Officer: You can contact our Data Protection Officer at privacy@aiforheadshots.com
  • Automated Decision-Making: We use AI to generate headshots, but you can request human review of decisions that significantly affect you

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you through:

  • Email notification to your registered email address
  • Prominent notice on our website or platform
  • In-app notification when you next log in

The updated policy will be posted on this page with a new "Last Updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after changes are posted constitutes your acceptance of the updated policy.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

We will respond to your inquiry within 15 business days

Back to Home