Pixly logo Pixly
Features Contact Privacy Terms
Legal

Privacy Policy

Last updated: June 9, 2026

On this page

  1. Introduction
  2. Information we collect
  3. How we use information
  4. Your photos & AI processing
  5. Face data
  6. Service providers
  7. Analytics & tracking
  8. Purchases & subscriptions
  9. Data retention
  10. Security
  11. Your rights
  12. Children's privacy
  13. International transfers
  14. Changes to this policy
  15. Contact us

1. Introduction

This Privacy Policy explains how Pixly (operated by Ali Noureddine, "we", "our", "us") collects, uses, and shares information when you use our mobile application and related services (the "Service"). We designed the Service with privacy in mind: we collect only what we need to provide and improve the product, we run our AI models on our own servers, and we do not sell your data.

2. Information we collect

Information you provide

  • Photos & media you choose to upload or import for processing (e.g. enhance, colorize, deblur, retouch, relight, makeup, and generative edits).
  • Support communications when you contact us — for example, the contents of your email and any attachments.

The Service does not have a user-facing login. We do not collect your name, email address (unless you email us), phone number, or social media identifiers.

Information collected automatically

  • Anonymous device identifier — a random, opaque identifier generated by Firebase Anonymous Authentication so that our backend can associate your generations with your device and enforce per-device limits. This identifier is not linked to your real identity.
  • Device & app data such as device model, operating system version, app version, language, country, and crash logs.
  • Usage data such as which features you use, how often, and basic interaction events used to improve the app.
  • Advertising identifiers (IDFA on iOS, AAID on Android) only where you grant permission via the system prompt.

3. How we use information

We use the information we collect to:

  • Provide, operate and maintain the Service, including running the AI features you request.
  • Process payments and manage subscriptions through Apple and Google.
  • Improve the Service through diagnostics, analytics, and bug fixes.
  • Detect and prevent fraud, abuse, and violations of our Terms.
  • Comply with legal obligations and enforce our Terms.

4. Your photos & AI processing

When you tap a photo tool (Colorize, Enhance, Deblur, Retouch, Relight, Makeup, or a generative edit), the photo you selected is uploaded over an encrypted HTTPS connection to our cloud infrastructure (Google Cloud, region europe-west1) so that our AI models can generate the requested result and return it to your device.

We run our AI models on our own servers. Your photos are not sent to any third-party AI provider, are not used to train AI models, and are not used for any purpose other than producing the result you asked for. We do not sell your photos.

Automatic deletion: the photo you uploaded, any intermediate files, and the generated result are automatically deleted from our servers within 15 minutes of the job finishing. Only the result that has already been returned to and saved by your device persists.

Saving the result to your device's photo library is performed locally with your permission and does not involve our servers.

5. Face data

Some optional features in the Service — specifically Skin Retouch, Makeup, and the face-aware Enhance tool — operate on photos that may contain a face. Apple requires us to be explicit about how face data is handled, so here is the complete picture:

  • What is collected. Only the photo file you explicitly choose for the operation. The app does not generate or store a face template, faceprint, face geometry, face embedding, face landmark vector, or any other biometric identifier, and it does not attempt to identify any individual.
  • How it is used. The photo is sent over an encrypted (HTTPS) connection to our own servers, where our AI model produces the requested edited image (e.g. smoother skin or virtual makeup). The result is returned to your device.
  • Sharing. Face-containing photos are not shared with any third-party AI provider, are not shared with advertisers, and are never sold.
  • Storage & retention. The input photo, any intermediate output, and the generated result are automatically deleted from our servers within 15 minutes of the job finishing. They are not used to train models.
  • Your control. You may decline at any time by not using the Retouch, Makeup, or Enhance features. You may also request deletion of any associated data by contacting us at the address in section 15.

6. Service providers

We do not sell your personal information and we do not share your photos with third-party AI providers. We do rely on a small number of trusted infrastructure providers to run the app, under contracts that require them to protect your data and use it only to provide the agreed services:

  • Google Firebase & Google Cloud — Anonymous Authentication (opaque device identifier only), Cloud Functions, Cloud Storage, Firestore, Analytics, and Crashlytics.
  • Apple App Store & Google Play — in-app purchases and auto-renewable subscriptions. We do not receive your full payment-card details.
  • RevenueCat — receives anonymized subscription events from Apple and Google so we can unlock features on purchase and restore.
  • AppsFlyer — install attribution and marketing analytics. AppsFlyer only receives data subject to your App Tracking Transparency choice on iOS and your equivalent choice on Android.

We may also disclose information when required by law, to enforce our Terms, or to protect the rights, property or safety of our users or others.

7. Analytics & tracking

On iOS, we use Apple's App Tracking Transparency framework. You will see a prompt asking whether to allow tracking; if you decline, we will not link identifiers across apps and websites for advertising purposes, and the IDFA will not be sent to AppsFlyer. You can change this preference any time in Settings → Privacy & Security → Tracking.

We use Firebase Analytics and AppsFlyer to understand aggregate usage and improve the app. You can request that we delete analytics data associated with your device by contacting us.

8. Purchases & subscriptions

Payments are handled by the Apple App Store or Google Play. We do not receive your full payment-card details. We do receive anonymized purchase tokens and subscription status (via RevenueCat) so we can unlock the appropriate features on your device.

Auto-renewable subscriptions renew automatically at the end of each billing period unless cancelled at least 24 hours before the renewal date. You can manage or cancel subscriptions at any time from your Apple ID or Google Play account settings.

9. Data retention

  • Uploaded photos and AI outputs: automatically deleted from our servers within 15 minutes of the job finishing.
  • Anonymous device identifier and subscription status: kept for as long as you have the app installed, or as required to provide the Service and meet legal obligations.
  • Crash and diagnostic logs: retained for up to 90 days, then aggregated or deleted.
  • Aggregated or anonymized analytics: may be retained for longer to help us improve the app, as they do not identify you.

10. Security

We use industry-standard safeguards — encryption in transit (HTTPS / TLS), encryption at rest, least-privilege access controls, and continuous monitoring — to protect your information. No method of transmission or storage is 100% secure, but we work hard to keep your data safe.

11. Your rights

Depending on where you live, you may have the right to access, correct, export or delete the personal information we hold about you, and to object to or restrict certain processing. To exercise these rights, email us at aliidev92@gmail.com. We will respond within the timeframes required by applicable law.

California residents have additional rights under the CCPA/CPRA, and residents of the EEA, UK and Switzerland have rights under GDPR — we honor all valid requests under those frameworks.

12. Children's privacy

The Service is not directed to children under 13 (or the minimum age in your country). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

13. International data transfers

We process information in countries where we and our infrastructure providers operate, which may be different from your country of residence. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for international transfers.

14. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we'll update the "Last updated" date above and, when appropriate, give you additional notice (such as an in-app message).

15. Contact us

Pixly is operated by Ali Noureddine. If you have questions or requests about this Privacy Policy, email aliidev92@gmail.com or visit our contact page.

© Pixly · Ali Noureddine. All rights reserved.
Home Terms & Conditions Privacy Policy Contact