Privacy Policy

ImagAI ("we", "our", "the service") is operated by Julian Soreavis under EU jurisdiction. This policy explains how we collect, use, and protect your data.

Data We Collect

• Account information (email, name, avatar from OAuth provider)
• Generated images and prompts
• Usage statistics (generation count, cost, tokens)
• Application settings and preferences

How We Use It

To provide the image generation service, sync your data across devices, and improve the product. We do not sell your data to third parties.

Third-Party Services

• Google Gemini API — image generation (prompts and images are sent to Google)
• Supabase — authentication and database (email, settings, metadata)
• Cloudinary — image storage and CDN (generated images)
• Vercel — hosting and analytics (page views, no personal data)

Data Storage

Your data is stored in EU-compliant data centers. Images are stored on Cloudinary CDN. Metadata is stored in Supabase (AWS). Local data (IndexedDB, localStorage) stays in your browser.

Your Rights (GDPR)

You have the right to:

• Access your personal data
• Rectify inaccurate data
• Erase your data (delete account in Settings)
• Restrict or object to processing
• Data portability (export in Settings → Data)

Data Retention

Account data is retained until you delete your account. Generated images can be deleted at any time (30-day trash, then permanent deletion). Deleted accounts are purged within 30 days.

Cookies

We use essential cookies for authentication (Supabase session) and a preference cookie (last login provider). No tracking or advertising cookies.

Contact

For privacy inquiries, contact imagai@juliansoreavis.com.