Terms of Service Privacy Policy Cookie Policy

Privacy Policy

Last updated: March 22, 2026

1. Information We Collect

Information You Provide

  • Email address: Used for authentication (magic link sign-in) and account communications.
  • Display name: Optional, shown in the Community Gallery.
  • Prompts and settings: The text prompts you use to generate images and your generation settings.
  • Payment information: Processed securely by Stripe. We do not store credit card numbers.

    • Information Collected Automatically

  • Usage data: Pages visited, features used, generation counts.
  • Device information: Browser type, operating system, screen resolution.
  • Session data: Cookies and session identifiers for authentication.

    • Information We Do NOT Collect

  • We do not persist normal BYOK provider keys in the Renderella server database. Keys are stored only in your browser on the device where you entered them, and default to session-only storage unless you explicitly choose device persistence.
  • We do not use tracking pixels or third-party analytics by default.
  • We do not sell your data to third parties.

    • 2. How We Use Your Information

  • Authentication: To send magic link emails and maintain your session.
  • Service delivery: To process image generation requests and manage credits.
  • Billing: To process payments and manage subscriptions via Stripe.
  • Communication: To send transactional emails (receipts, account updates).
  • Improvement: To understand how the Service is used and improve it.

    • Legal Basis for Processing (GDPR)

    | Purpose | Legal Basis | |---------|-------------| | Authentication & account management | Contractual necessity | | Image generation & service delivery | Contractual necessity | | Payment processing | Contractual necessity | | Transactional emails | Legitimate interest | | Service improvement & analytics | Legitimate interest | | Community Gallery sharing | Consent (opt-in) | | Marketing communications | Consent (opt-in) |

    3. Data Storage

  • Database: Your account information and generation history are stored in a SQLite database on our servers.
  • App state: Preferences, snippets, library state, pipeline metadata, and similar non-secret app data may sync to server-side SQLite storage tied to your account or session.
  • Images: Generated images are temporarily stored via Replicate CDN. Images shared to the Gallery are cached on our servers.
  • Payments: Payment data is handled by Stripe and subject to their privacy policy.

    • 4. Data Sharing

    We do not sell your personal data. We share data only with:

  • AI providers: Your prompts and media inputs are sent to the provider needed for the generation you requested, such as Replicate or another supported BYOK provider.
  • Stripe: Payment information for billing purposes.
  • Law enforcement: When required by law or to protect our rights.

    • 5. Your Rights

    GDPR (EU Users)

  • Right to access, rectify, or delete your personal data.
  • Right to data portability.
  • Right to object to processing based on legitimate interest.
  • Right to withdraw consent at any time.
  • Right to lodge a complaint with your local data protection authority.

    • To exercise any of these rights, email privacy@getrenderella.com. We will respond within 30 days.

    CCPA (California Users)

  • Right to know what data we collect.
  • Right to delete your data.
  • Right to opt out of data sales (we do not sell data).
  • Right to non-discrimination.

    • 6. Data Retention

  • Account data is retained while your account is active.
  • Deleted accounts trigger removal of local account records promptly, though operational logs or provider-side records may persist according to those systems' retention rules.
  • Generation logs may be retained in anonymized form for analytics.

    • 7. Security

    We implement reasonable security measures including:

  • HTTPS encryption for all connections
  • CSRF protection on all forms
  • Secure session management
  • No plaintext storage of sensitive credentials

    • 8. Cookies

    We use essential cookies for:

  • Session management (authentication)
  • CSRF protection
We do not use third-party tracking cookies. See our Cookie Policy for details.

9. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect data from children under 13.

10. Changes

We may update this Privacy Policy from time to time. We will notify users of significant changes via email or in-app notification.

11. Contact

For privacy questions or data requests, contact privacy@getrenderella.com.