1. Information We Collect

Personal Information

We may collect the following types of personal information:

• Email address (for customer support and service notifications)
• Payment information (processed securely by third-party payment processors)
• Document type preferences and selections

Technical Information

We automatically collect certain technical information:

• Browser type and version
• Device information (type, operating system)
• IP address (anonymized for analytics)
• Usage patterns and service interactions

Photo Data

Default (consumer) flow: Core passport/visa preparation — including face detection, many compliance checks, cropping, and background handling — is designed to run in your web browser without uploading your original image for those steps.

• Optional server-side AI enhancement: If you explicitly enable server-side enhancement or similar features in the product, your image may be transmitted to our servers for processing for that session. We use transport encryption (HTTPS). We do not use generative AI to change your facial identity; enhancement is limited to technical quality (e.g. lighting/contrast) where offered.
• Corporate / B2B: Company accounts, API-style workflows, or “company key” downloads may process images on servers to deliver consistent batch output. Those flows are covered by the same principles: encryption in transit, no sale of images, and retention limited to what is needed to complete the request unless otherwise agreed in a separate data processing agreement.
• Retention: We do not keep your images indefinitely. For typical consumer completion, images are deleted after processing and delivery where technically feasible; server-side sessions may retain data only as long as needed for the active job and troubleshooting, then removed according to our internal retention schedule.
• No AI face alteration for identity: PixID does not apply beauty filters or generative face changes that would misrepresent your likeness for official ID purposes.

2. How We Use Your Information

We use collected information to:

• Provide and improve our photo processing services
• Process payments and provide customer support
• Send important service updates and notifications
• Analyze usage patterns to improve our service
• Comply with legal obligations

3. Data Storage and Security

Photo Processing Protocol

When you use PixID.studio:

• Browser-first: For the default path, we load models and run many checks locally (e.g. WebAssembly / in-browser inference) so your photo is not uploaded for those steps.
• When servers are used: If you opt into server-side enhancement or use business features that require cloud processing, images are sent over encrypted connections to our infrastructure. Subprocessors are bound by confidentiality and minimization obligations appropriate to the service.
• Processing time: Typically seconds to a few minutes depending on device, network, and selected options.
• Retention: We avoid long-term storage of biometric images. Exact retention for a given transaction may depend on whether you used only local processing or server-assisted features — contact us if you need a formal DPIA or DPA for your organization.
• No sale of photos: We do not sell your images to advertisers or data brokers.

4. Information Sharing

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following circumstances:

• With payment processors to complete transactions
• With service providers who assist in our operations (under strict confidentiality agreements)
• When required by law or to protect our rights
• In case of a business transfer or merger (with notice to users)

5. Cookies and Tracking

We use minimal cookies and tracking technologies:

• Essential Cookies: Required for basic service functionality
• Analytics Cookies: Help us understand usage patterns (anonymized)
• Preference Cookies: Remember your settings and preferences

You can control cookie settings through your browser preferences.

6. Data Retention

We retain different types of data for different periods:

• Photos: Not used for advertising. Default consumer flows prioritize on-device processing; server-side processing occurs only when you use features that require it (see “Photo Data” above).
• Account Information: Retained while your account is active
• Payment Records: Retained as required by law and accounting standards
• Analytics Data: Anonymized and retained for service improvement

7. Your Rights

You have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data
• Portability: Receive your data in a structured format
• Objection: Object to certain processing activities

8. International Data Transfers

If you are located outside the European Union, please note that your information may be transferred to and processed in countries with different data protection laws. We ensure appropriate safeguards are in place for such transfers.

Russian Federal Law 152 (FZ-152 / ФЗ-152) Compliance

9. Children's Privacy

We do not target children under 16 for marketing. Parents or guardians should supervise minors’ use of the service, especially when making payments or uploading biometric images. Where processing stays on-device, fewer transfers occur; server-assisted features follow the same minimization principles above.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us