Privacy Policy

Last updated: 2026

This page describes what FaceGuard collects, why, and how long we keep it. We try to keep this in plain language.

What we collect

• Email address. Required for sign-in via one-time code.
• Images you upload. Stored so we can run detection and produce a protected output.
• Detection metadata. Bounding boxes for faces, logos, landmarks, and visible text.
• Session data. IP address and user-agent at sign in for abuse investigation.
• Usage analytics. Page views and click events, tied to your user when signed in, anonymous otherwise.

What we do with it

• Run the protection pipeline (blur, EXIF strip, watermark).
• Embed a per-user identifier in the watermark of every output.
• Investigate abuse and respond to lawful requests.
• Improve the product. We do not use your uploads to train or fine-tune AI models.

How long we keep it

• Originals: deleted automatically after 24 hours. The protected output stays so you can re-download it.
• Protected outputs: kept until you delete them.
• Account record and watermark IDs: retained for audit even if you delete your account, so we can answer accountability questions about images that were protected.
• Analytics: retained in aggregate.

Where it lives

Image bytes are stored in Google Cloud Storage (or local disk in development). Database records live in a managed Postgres instance.

Your choices

• You can delete any image from your dashboard.
• You can stop using the service at any time.
• For data-deletion requests beyond what the dashboard offers, contact us.

Changes

If we change this policy materially we'll surface the change in the product before it takes effect.