PixpAI Privacy Policy

Effective Date: 7 December 2025

Who we are and scope

PixpAI is an AI-powered image editing service distributed by Rovlid LLC. This Policy covers the iOS and Android apps and pixpai.com. Rovlid LLC is the data controller for personal data processed in connection with the Services. Our processors act only on documented instructions and cannot use data for their own purposes.

Relationship to other documents

This Policy complements Rovlid LLC’s Terms of Service, End User License Agreement, and Cookie Policy. If a conflict arises, this Policy governs PixpAI-specific processing. Nothing in this Policy limits rights provided by mandatory local privacy laws.

Current release status

The current production release does not require account sign-in, does not provide cloud backup of user content, and does not display ads. Purchase and subscription infrastructure may exist but advertising features remain disabled. If we later add sign-in, cloud backup, or ads, we will publish an updated Policy and the app will present the relevant notices and choices before the new processing begins.

Principles

We collect the minimum data needed to operate the Services. We limit processing to specified purposes. We avoid creating behavioral profiles for advertising. We prohibit sensitive attribute inference from images. We secure data with appropriate organizational and technical measures. We provide region-appropriate choices and rights.

Information we collect

We do not collect your name, phone number, address, or precise GPS location. We process the image you explicitly select to edit and derivatives needed to produce the requested output. We receive limited purchase and entitlement data from app stores to validate access. We collect device and app telemetry needed for reliability and security, such as app version, platform, language, crash diagnostics, and performance metrics. We capture approximate IP address for short periods to enforce rate limits, prevent abuse, and apply regional compliance rules. On pixpai.com and in in-app webviews we use cookies and similar technologies for functionality, security, and analytics; where required we request consent. We do not access your entire photo library; you choose the item to process.

Purposes and legal bases

We process data to provide, maintain, and improve the Services, including image processing, rendering outputs, debugging crashes, and supporting users. Legal bases include performance of a contract and our legitimate interests. We process data to secure the Services and prevent abuse, including rate limiting, fraud detection, and infrastructure protection. Legal bases include legitimate interests and compliance with legal obligations. Where analytics or advertising technologies require consent, we seek it through appropriate consent interfaces. We process data to comply with laws, respond to lawful requests, enforce our terms, and protect users and the public.

AI processing specifics

We process User Content to generate the outputs you request. We configure model and infrastructure providers to disallow training on customer data whenever the provider supports that setting. Providers are bound by contracts that forbid using your data for their own models or marketing. We do not attempt to infer sensitive traits from faces or other imagery and we prohibit re-identification of de-identified data.

Children

The Services are not directed to children under 13, or a higher age where applicable local law requires. We do not knowingly process children’s data for targeted advertising. If you believe a child provided personal data, contact us so we can delete it where required.

Your choices and controls

You can deny camera or photo library access in device settings. You can manage cookie and SDK preferences via the site banner and settings where offered. On iOS you can control tracking via App Tracking Transparency and device settings. On Android you can reset the advertising ID or limit ad personalization. You can unsubscribe from non-transactional emails using links in those messages. Because the current release has no sign-in or cloud backup, there is no persistent account profile to delete.

Sharing and disclosure

We use vetted service providers under data processing agreements for hosting, storage, content delivery, AI inference, subscription validation, analytics, crash diagnostics, support tooling, and security. These providers may process data only to deliver contracted services and must protect it. If advertising is later enabled, measurement partners may receive limited signals strictly for delivery, capping, and measurement subject to your choices and applicable law. We may disclose information to comply with law or lawful requests, to protect the rights and safety of users and the public, and in connection with corporate transactions. We do not sell personal data for money.

International transfers

We may process data in the United States and other countries. Where required, we implement appropriate safeguards such as Standard Contractual Clauses and perform transfer risk assessments. You can request information about relevant safeguards by contacting us.

Security

We apply encryption in transit, role-based access controls, environment separation, signed and time-limited download links, and audit logging. We operate incident response procedures and regularly review safeguards. No method of transmission or storage is completely secure.

Retention

Previews generated during editing are retained for up to 24 hours then deleted. Server-side export cache copies that enable re-download are retained for up to 30 days then deleted. Approximate IP used for anti-abuse is retained for up to 48 hours. Operational logs are retained only as long as needed for security, troubleshooting, and legal compliance. Because sign-in and cloud backup are not present in this release, we do not persistently store final exports. If we later add cloud backup, we will publish a separate retention schedule before activation.

Data we do not collect

We do not collect contact lists, SMS, call logs, precise geolocation, microphone recordings, or your entire camera roll. We do not create biometric identifiers or templates. We do not build advertising profiles from your User Content.

Regional rights

In the EEA, UK, and Switzerland you may have rights to access, rectification, erasure, restriction, portability, and objection, and to withdraw consent without affecting prior lawful processing. In Brazil you may have rights to confirm processing, access, correction, anonymization, blocking or deletion of unnecessary or excessive data, portability, information about sharing, revocation of consent, and review of automated decisions where applicable. In California and certain US states you may request access, deletion, correction, and portability, and opt out of cross-context behavioral advertising where applicable. We do not sell personal information for money. Canada, Australia, and other jurisdictions provide similar rights under local laws. To exercise rights, email us with your region; we may need to verify your identity and your authority to act for someone else.

Automated decision making

We use automated rules for rate limiting, abuse detection, and AI job routing. These systems do not make decisions with legal or similarly significant effects without human involvement.

Do Not Track and Global Privacy Control

Industry Do Not Track signals are not standardized. Where legally required and technically feasible, we honor Global Privacy Control signals on pixpai.com for opt-out preferences related to targeted advertising or sharing.

Third-party links and content

The Services may link to third-party sites or content. Their privacy practices are governed by their own policies. We are not responsible for their practices.

App stores and billing

Purchases made through Apple App Store or Google Play are billed and managed by those platforms under their privacy terms. You can manage subscriptions in your store account settings. We do not receive your full card numbers from the platforms.

Breach notifications

Where required by law, we will notify you and applicable authorities of a personal data breach affecting you. We also maintain internal logs and corrective action plans to prevent recurrence.

International representatives and DPO

If law requires regional representatives or a Data Protection Officer, we will publish their contact details here. As of the effective date, a formal representative is not required.

Changes to this Policy

We may update this Policy when our Services or laws change. For material changes we provide reasonable notice and update the effective date.

Governing law and disputes

Texas law governs, without prejudice to mandatory consumer and privacy rules of your country of residence. You retain the right to complain to a competent supervisory authority.

Contact

Rovlid LLC, 5900 Balcones Drive, STE 100 #24657, Austin, TX 78731, USA. Email: support@rovlid.com.

Annex A. Data categories and retention summary

Account and contact records include support emails and attachments, retained as necessary for handling your request and legal obligations. Purchases and entitlements include store receipts and subscription status, retained as required for validation, refunds, and financial recordkeeping. User Content includes editing previews retained up to 24 hours and export cache copies retained up to 30 days. Device and diagnostics include app version and crash logs retained for bounded periods for reliability and security. Network and anti-abuse include approximate IP retained up to 48 hours.

Annex B. Subprocessor categories

Infrastructure and hosting provide compute, storage, and content delivery. AI inference provides model execution to render requested outputs. Subscription and billing provide entitlement validation and receipt verification. Analytics and diagnostics provide crash reporting and performance telemetry subject to consent where required. Security and anti-abuse provide rate limiting, bot mitigation, and threat detection. Support tooling provides ticketing and communication management.

Annex C. Region-specific submission channels

In the EEA, UK, and Switzerland you may find supervisory authority contacts via the European Data Protection Board and national regulators. In Brazil contact the ANPD using the official portal. In Canada, Australia, and other jurisdictions refer to your local privacy regulator guidance.