1. What this policy covers
This policy explains what data KreavoPod ("we") collects when you use the app, how it is used, and the choices you have. By using the Service you agree to this policy.
2. Data we collect
- Account data — when you sign in with Google we receive your name, email address and profile picture. We do not see your Google password.
- Content — the prompts you write and the images you upload or generate, when you save them to your library (designs, thumbnails, collections, favorites).
- Usage data — a per-account counter of paid actions (generations, recreations, upscales, listings) with timestamps, used to enforce free-usage limits.
- Technical data — standard server logs (IP address, browser type) kept by our hosting provider for security and reliability.
We do not collect payment card details, and we do not sell your data.
3. How we use your data
- To operate the Service: authentication, saving your library, generating designs and listings;
- To enforce usage limits and prevent abuse;
- To maintain security, debug problems and improve the Service;
- To contact you about your account when necessary.
4. How your content is processed
When you generate or recreate a design, your prompt and/or image is sent to third-party AI infrastructure providers to produce the result. When you save a design, it is stored with our cloud database and storage provider (Google Firebase) in your private account area. Background removal runs locally in your browser. Our processors act on our instructions and are bound by their own security and privacy commitments.
5. Data retention and deletion
Saved designs stay in your library until you delete them (the library has per-design and bulk delete). Usage counters are kept while your account exists. If you want your account and all associated data deleted, contact us at the email below and we will remove it within a reasonable period.
6. Cookies and local storage
We use a session cookie to keep you signed in, and the browser's local storage for preferences such as the theme (dark/light). We do not use advertising or cross-site tracking cookies.
7. Security
Access to your saved content is restricted to your account through authentication and per-user database security rules. Sessions are signed, traffic is encrypted (HTTPS), and API keys are kept server-side. No system is perfectly secure, but we apply reasonable safeguards.
8. Children
The Service is not directed to children under 13 (or the minimum age in your country), and we do not knowingly collect their data.
9. Changes
We may update this policy from time to time; material changes will be reflected by updating the effective date above.
10. Contact
Privacy questions or deletion requests: ismailbanouigu@gmail.com