Privacy Policy

Last updated: January 15, 2025

Introduction

Pictomancer.ai (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you use our AI-powered image optimization and enhancement API services.

Our fiscal headquarters are located in Spain, and we comply with the General Data Protection Regulation (GDPR) and Spanish data protection laws.

Data Controller

Pictomancer.ai
Registered in Spain
Email: privacy@pictomancer.ai
Data Protection Officer: dpo@pictomancer.ai

Information We Collect

Personal Information

  • Account Information: Email address, name, billing information
  • Usage Data: API usage statistics, request logs, IP addresses
  • Technical Data: Browser type, device information, log files
  • Images: Images uploaded for processing (temporarily stored for processing only)

Cookies and Tracking

We use essential cookies for:

  • Authentication and security
  • Remembering your preferences
  • Analyzing website performance

We process your data based on:

  • Contract: To provide our API services
  • Legitimate Interest: To improve our services and prevent fraud
  • Consent: For marketing communications (where required)
  • Legal Obligation: To comply with tax and legal requirements

How We Use Your Information

  • Provide and maintain our API services
  • Process payments and billing
  • Respond to customer support requests
  • Improve our services and develop new features
  • Comply with legal obligations
  • Prevent fraud and abuse

Data Sharing

We do not sell your personal data. We may share data with:

  • Service Providers: Payment processors, cloud infrastructure providers
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In case of merger or acquisition

Data Retention

  • Images: Deleted immediately after processing (within 24 hours)
  • Account Data: Retained while your account is active
  • Usage Logs: Retained for 2 years for billing and security purposes
  • Marketing Data: Until you withdraw consent

Your Rights (GDPR)

You have the right to:

  • Access your personal data
  • Rectify incorrect data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Data Portability
  • Object to processing
  • Withdraw Consent at any time

To exercise these rights, contact us at privacy@pictomancer.ai

International Transfers

Your data may be processed outside the EU/EEA. We ensure adequate protection through:

  • Standard Contractual Clauses
  • Adequacy decisions
  • Other appropriate safeguards

Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption in transit and at rest
  • Regular security audits
  • Access controls and authentication
  • Incident response procedures

Children’s Privacy

Our services are not intended for children under 16. We do not knowingly collect personal information from children.

Data Breach Notification

In case of a data breach, we will:

  • Notify supervisory authorities within 72 hours
  • Inform affected individuals when required
  • Take immediate steps to contain the breach

Contact Information

Questions about this Privacy Policy:

Data Protection Officer:

Spanish Data Protection Authority:

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date.

Complaint Rights

You have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD) or your local supervisory authority if you believe your data protection rights have been violated.

This Privacy Policy is governed by Spanish law and GDPR requirements.

  • For business transfers: We may use Your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Us about our Service users is among the assets transferred.
  • For other purposes: We may use Your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Service, products, services, marketing and your experience.

We may share Your personal information in the following situations:

  • With Service Providers: We may share Your personal information with Service Providers to monitor and analyze the use of our Service, to contact You.
  • For business transfers: We may share or transfer Your personal information in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
  • With Affiliates: We may share Your information with Our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include Our parent company and any other subsidiaries, joint venture partners or other companies that We control or that are under common control with Us.
  • With business partners: We may share Your information with Our business partners to offer You certain products, services or promotions.
  • With other users: when You share personal information or otherwise interact in the public areas with other users, such information may be viewed by all users and may be publicly distributed outside.
  • With Your consent: We may disclose Your personal information for any other purpose with Your consent.

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company’s operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from Your jurisdiction.

Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer.

The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.

Delete Your Personal Data

You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You.

Our Service may give You the ability to delete certain information about You from within the Service.

You may update, amend, or delete Your information at any time by signing in to Your Account, if you have one, and visiting the account settings section that allows you to manage Your personal information. You may also contact Us to request access to, correct, or delete any personal information that You have provided to Us.

Please note, however, that We may need to retain certain information when we have a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation
  • Protect and defend the rights or property of the Company
  • Prevent or investigate possible wrongdoing in connection with the Service
  • Protect the personal safety of Users of the Service or the public
  • Protect against legal liability

Security of Your Personal Data

The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.

Children’s Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.

If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent’s consent before We collect and use that information.

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.

We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the “Last updated” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy, You can contact us: