Last updated: October, 2025
This Privacy Policy explains how RePixel (“we”, “us”, “our”) collects, uses, discloses, and protects information when you use our mobile applications and related services (collectively, the “App” or “Services”).
By using the App, you agree to the practices described here. If you do not agree, please do not use the App.
We process information to:
Provide and improve the App. Enable core features; operate, maintain, and enhance performance; communicate service updates and security alerts; and respond to support requests.
Generate outputs you request. The App uses cloud AI processing of your selected uploads to produce results. On-device face detection/landmarking with Apple frameworks (e.g., AVFoundation/Vision) is used as an auxiliary, user-experience enhancement (e.g., preview/alignment).
Compliance, fraud prevention, and safety. Protect our users and services; enforce terms; investigate and deter fraud, abuse, or unlawful activity.
With your consent. Where law requires consent (e.g., certain notifications), we will ask before processing.
Create anonymous/aggregated data. We may de-identify limited technical/usage data for analytics and service quality.
We do not use face data for identification, authentication, advertising, or profiling, and we do not use your photos/videos for model training.
What we process. Photos/videos you capture or upload may include faces. We use on-device Apple frameworks to detect face regions solely to align effects and generate outputs you request. We do not create or store biometric identifiers (“faceprints”) intended to uniquely identify a person.
Processing modes:
Cloud (user-initiated): The App’s core experience relies on cloud-based AI. When you choose a cloud feature, your selected file is sent via HTTPS/TLS to our servers on Amazon Web Services (AWS), Google Cloud Platform (GCP), or Microsoft Azure (acting as processors) solely to generate your output.
On-device (auxiliary): Apple frameworks (e.g., AVFoundation/Vision) face detection runs locally to improve UX (e.g., preview, alignment). Intermediate data remains in volatile memory and is discarded after use. On-device processing does not replace cloud AI generation.
Retention. Cloud uploads are deleted immediately after processing completes and in all cases within 24 hours, unless you explicitly save the output to your account/device. User-saved outputs persist until you delete them or your account.
Third parties. Aside from infrastructure providers (AWS/GCP/Azure) acting under our instructions, we do not share face data with third parties (no ad networks; no data brokers).
How We Share Your Personal Information
We do not disclose user photos/videos to third parties except for optional cloud processing with our infrastructure providers. We may share other limited information as follows:
Service providers (processors). Hosting, storage, content delivery, crash/analytics (where used), customer support, and security—under contract, on our instructions, and not for their own purposes.
Affiliates & professional advisors. Where necessary for operations, compliance, or support.
Compliance, fraud prevention & safety. As required by law or to protect rights and safety.
Business transfers. In a merger, acquisition, or asset sale, data may transfer subject to this Policy or a successor policy with comparable protection.
Compliance with Law
We may use and disclose information to comply with applicable laws, lawful requests, and legal process.
Your Choices
Marketing & notifications. You can disable marketing emails (where applicable) and control push notifications in device settings.
Permissions. You can revoke Camera/Photos access in your device settings (feature availability may be affected).
Cloud processing. If you used cloud features, you may request early removal of your cloud items before the 24-hour auto-deletion window via sean_xing@sina.com.
Access/Deletion. See “Your Rights (GDPR/UK/CCPA)” below for region-specific options.
Retention
Cloud uploads: Deleted immediately after processing completes, and in all cases within 24 hours, unless you explicitly save the output.
User-saved outputs: Persist until you delete them or your account.
Operational logs/records: Retained only as long as needed for the purposes in this Policy or as required by law.
Cross-Border Data Transfers
We may process and store data in countries other than yours. We use cloud regions such as [e.g., AWS us-east-1 / GCP us-central1 / Azure East US] and implement appropriate safeguards for international transfers (e.g., SCCs) where required. Contact us for details.
Children
The App is not directed to children under 13 (or the age of digital consent in your jurisdiction). If we learn we collected personal information from a child without verifiable parental consent, we will delete it. Parents may contact us at sean_xing@sina.com.
California Residents
If you are a California resident, the California Consumer Privacy Act (CCPA/CPRA) may give you certain rights:
Right to know/access the categories and specific pieces of personal information we collected and how we used/shared them.
Right to delete personal information (subject to exceptions).
Right to correct inaccurate personal information.
Right to opt out of “sale”/“sharing” (we do not sell personal information and do not share face data with advertising partners).
Right to non-discrimination for exercising your rights.
To exercise your rights, please email sean_xing@sina.com. We may request information to verify your identity and request.
GDPR/UK GDPR (Where Applicable)
Legal bases we rely on may include:
Contractual necessity (to provide features you request);
Legitimate interests (to operate/improve the App, prevent fraud, ensure security—balanced against your rights);
Consent (where required by law);
Legal obligations (compliance with law).
Rights include access, erasure, correction, restriction, objection, and data portability. To exercise these, contact sean_xing@sina.com. You may also lodge a complaint with your local supervisory authority.
Security
We apply administrative, technical, and physical safeguards appropriate to the nature of the data, including TLS in transit and provider-managed encryption at rest within AWS/GCP/Azure, role-based access, and logging. No method is 100% secure; we continually improve our safeguards.
Third-Party Links & Services
The App or site may link to third-party services. Their privacy practices are governed by their own policies; we do not control those services.
Changes to the Privacy Policy
We may update this Policy periodically. If changes are material, we will provide additional notice (e.g., in-app notice). The “Last updated” date reflects the latest version.
Contact Us
If you have any questions about our Privacy Policy or any privacy-related matters, please contact us via email at: sean_xing@sina.com