How We
Protect Your Privacy

To deliver a stable and personalised experience, we collect the following categories of information:

We do not actively collect your contacts, location, microphone, or camera data unless you explicitly grant permission for a specific feature that requires it.

Information we collect is used solely for the following legitimate purposes and never beyond them:

• Providing, maintaining, and continuously improving the AI image generation service
• Processing credit consumption and order records, and ensuring payment security
• Diagnosing technical issues and delivering necessary security updates
• Analysing overall usage trends to optimise product design (using anonymised, aggregated data only)
• Sending service notifications directly related to your account or orders

We do not sell, rent, or transfer your personal information to third parties for any commercial purpose. Data may be shared only in the following limited circumstances:

• Service Providers: We work with vendors such as AI inference services and cloud storage providers, all of whom are bound by strict data confidentiality agreements
• Payment Processing: Third-party payment processors handle transactions; their privacy policies operate independently of ours
• Legal Requirements: We will cooperate with applicable laws and regulations or lawful requests from judicial authorities
• Corporate Changes: In the event of a merger or acquisition, your data may transfer as part of the business; we will notify you in advance

We use industry-standard security technologies to protect your data:

• TLS encryption is applied in transit to safeguard data across all communication links
• Passwords are bcrypt-hashed; plain-text passwords are never stored on our servers
• Our systems undergo regular security audits and vulnerability scans
• Internal access to sensitive data is governed by a strict least-privilege policy

We retain your data only for as long as necessary:

• Account data: retained until you actively delete your account, then removed within 30 days
• Generation history: retained for 12 months by default; you may clear it manually in Settings
• Payment records: retained for 5 years as required by applicable financial regulations
• Anonymised logs: used for security analysis and retained for no more than 90 days

You may request an export or deletion of your data at any time via the in-app Settings or by emailing [email protected].

The LarlyPix AI app does not use cookies. We use the following lightweight technologies to improve your experience:

• Local Storage: Saves your preferences such as themes and default generation parameters
• Crash Analytics SDK: Collects device and error information to help us fix bugs
• Anonymous Analytics: Tracks feature usage frequency without linking to any personal identity

We do not integrate any social media tracking pixels or advertising SDKs.

LarlyPix AI is not directed at children under the age of 13. If we become aware that we have inadvertently collected information from such users, we will delete it promptly.

Users between the ages of 13 and 18 should use the app with the knowledge and consent of a parent or guardian; paid features should be operated by the guardian.

Under applicable law, you have the following rights regarding your data:

• Right of Access: View the data we hold about you at any time
• Right to Rectification: Request correction of inaccurate personal information
• Right to Erasure: Request deletion of your account and data to the extent permitted by law
• Data Portability: Export your generation history and account information in a common format
• Withdraw Consent: Revoke any previously granted data-processing consent at any time, without affecting processing that occurred prior to withdrawal

To exercise any of these rights, use the in-app Settings or email us at [email protected]. We will respond within 15 business days.

When we make material revisions to this Privacy Policy, we will notify you through the following channels:

• An in-app prompt asking you to acknowledge the new version of the policy
• A summary of changes sent to your registered email address
• An updated effective date at the top of this page

Minor adjustments — such as wording corrections or link updates — will take effect immediately without additional notice. Your continued use of the service constitutes acceptance of the updated policy.