Privacy Policy

Last updated: May 2026 · Effective immediately

Picslify ("we", "us", "our") is a SaaS image processing tool for eCommerce sellers. This policy explains what personal data we collect when you use picslify.com, how we use it, and what rights you have over it. We keep this plain and readable on purpose.

1. Who We Are

Picslify is an independently operated product. If you have any privacy questions, contact us at picslify@gmail.com.

2. What Data We Collect

Account information
When you sign up, we collect your email address, username, and optionally your full name and brand name. This is required to create and operate your account.

Usage data
We record how many images you process, how many credits you use, and when. This powers your dashboard stats and our billing system.

Payment data
All payments are processed by Paddle (paddle.com), our Merchant of Record. We never see or store your card number, CVV, or full payment details. We store only what Paddle gives us back: a customer ID and subscription ID. Paddle's privacy policy applies to payment data: paddle.com/privacy.

Uploaded images and logos
Product images you upload for processing are stored temporarily in a private folder on our server. They are automatically deleted when you download your ZIP or clear your output. We do not keep your images beyond that. Brand logos you upload to your profile are stored as long as your account is active and deleted when you remove them or close your account.

Technical data
We collect standard server logs including IP address and browser information for security, debugging, and abuse prevention. Logs are retained for a maximum of 90 days.

Session cookies
We use a single session cookie to keep you logged in. It is httponly (not accessible to JavaScript) and expires after 1 day (or 30 days if you choose "Keep me logged in"). We do not use advertising or tracking cookies.

3. How We Use Your Data

To create and manage your account
To process your images and deduct credits accurately
To send transactional emails: email verification, password reset, payment confirmation
To manage your subscription and billing via Paddle
To detect and prevent abuse, fraud, or security incidents
To display your usage stats on your dashboard

We do not use your images to train AI models. We do not sell your data to anyone. We do not send marketing emails without your consent.

4. Your Uploaded Images

Your product images are processed on our server using Picslify's background removal engine. They are stored in a private, per-user folder that no other user can access. Once you download your processed images and clear the output, they are permanently deleted from our server. We do not analyse, review, or use your images for any purpose other than processing them for you.

5. Who We Share Data With

We share data with the following third parties only where necessary to operate the service:

Paddle (paddle.com) — payment processing, subscription management, and tax handling as our Merchant of Record
Email provider (SMTP) — sending transactional emails on our behalf
Hosting provider (server) — where the application and database run

We do not share your data with advertisers, data brokers, or analytics platforms.

6. Data Retention

Processed images: deleted immediately after download or when you clear output
Uploaded logo: kept until you remove it or close your account
Account data: kept while your account is active; deleted within 30 days of account closure on request
Payment records: retained for 7 years for legal and accounting compliance
Server logs: retained for a maximum of 90 days

7. Your Rights

Depending on where you are located, you may have the right to:

Access the personal data we hold about you
Correct inaccurate data (you can do this from your dashboard settings)
Delete your account and associated data
Export your data in a portable format
Object to specific uses of your data

To exercise any of these rights, email us at picslify@gmail.com. We will respond within 30 days.

8. Security

We take reasonable steps to protect your data:

Passwords are hashed using pbkdf2_hmac SHA-256 with 260,000 iterations and a random salt — never stored in plain text
Session cookies are httponly and SameSite=Lax
All traffic is encrypted over HTTPS (TLS)
Per-user output folders prevent cross-user file access
Database queries use parameterised statements to prevent SQL injection

No system is perfectly secure. If you discover a security issue, please report it to picslify@gmail.com.

9. Children

Picslify is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you believe a child has created an account, contact us and we will delete it.

10. Changes to This Policy

If we make material changes to this policy, we will notify registered users by email before the changes take effect. The "Last updated" date at the top will always reflect the current version.

11. Contact

For any privacy questions or requests, contact us at:
picslify@gmail.com