Privacy Policy

Last updated: January 1, 2025

1. Introduction

Welcome to Niotex Studio ("Company", "we", "our", "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered product photography platform and services.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site or use our services. By accessing our website or using our services, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy.

2. Information We Collect

2.1 Personal Information You Provide

We collect personal information that you voluntarily provide to us when you:

  • Register for an account: Name, email address, company name, password
  • Subscribe to our services: Payment information (processed securely through Stripe)
  • Contact us: Name, email, phone number, message content
  • Use our services: Images you upload for processing

2.2 Information Automatically Collected

When you access our services, we automatically collect certain information, including:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, features used, time spent on pages, API calls made
  • Log Data: Access times, referring URLs, error logs
  • Cookies and Similar Technologies: Session cookies, persistent cookies, tracking pixels

2.3 Information from Third Parties

We may receive information about you from third-party services, including:

  • Authentication providers (e.g., Google, if you use social login)
  • Payment processors (e.g., Stripe, for transaction data)
  • Analytics services (e.g., Google Analytics)

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide Services: To process images, manage your account, and deliver our AI photography services
  • Process Payments: To process subscriptions, payments, and billing
  • Communicate: To send service updates, security alerts, and support messages
  • Improve Services: To analyze usage patterns and improve our platform
  • Security: To detect and prevent fraud, abuse, and security threats
  • Legal Compliance: To comply with legal obligations and respond to lawful requests
  • Marketing: To send promotional materials (with your consent)

4. Image Data and AI Processing

Regarding the images you upload to our service:

  • Ownership: You retain full ownership of all images you upload
  • Processing: Images are processed using AI technology to remove backgrounds and apply studio lighting effects
  • Storage: Original and processed images are stored securely in our cloud infrastructure
  • Retention: Images are retained for 90 days after processing, unless you delete them earlier
  • AI Training: We do NOT use your images to train our AI models without your explicit consent
  • Access: Only you and authorized team members can access your images

5. Sharing Your Information

We may share your information in the following circumstances:

5.1 Service Providers

We share information with third-party vendors who perform services on our behalf:

  • Cloud hosting providers (e.g., AWS, Azure)
  • Payment processors (Stripe)
  • Email service providers
  • Analytics providers
  • Customer support tools

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your personal information.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Encryption of data in transit (TLS/SSL) and at rest (AES-256)
  • Secure authentication with Firebase Authentication
  • Regular security audits and penetration testing
  • Access controls and employee training
  • Secure API key management with hashing
  • SOC 2 Type II compliant infrastructure

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements
  • Maintain business records

Specific retention periods:

  • Account data: Retained until account deletion
  • Processed images: 90 days (or until deleted)
  • Payment records: 7 years (legal requirement)
  • API logs: 1 year

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

8.1 General Rights

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Request transfer of your data to another service
  • Opt-out: Opt out of marketing communications

8.2 California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information
  • Right to non-discrimination for exercising CCPA rights

We do not sell personal information.

8.3 European Residents (GDPR)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to restrict processing
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your activity on our website. Types of cookies we use:

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Help us understand how visitors use our site
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Used to deliver relevant advertisements (with consent)

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our services.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses approved by the European Commission and other applicable data protection authorities.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly. If you believe we have collected information from a child under 18, please contact us.

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to read the privacy policies of any third-party sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For material changes, we will provide additional notice via email or through our services. Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy.

14. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

For GDPR-related inquiries, you may also contact our EU representative at [email protected].

15. Additional Disclosures for California Residents

In accordance with the CCPA, here are the categories of personal information we have collected in the past 12 months:

CategoryCollectedSource
IdentifiersYesDirectly from you
Commercial InformationYesTransaction records
Internet ActivityYesAutomatic collection
Geolocation DataYesIP address
Professional InformationYesDirectly from you

To exercise your rights under CCPA, please contact us at [email protected] or call us at 1-866-9NIOTEX (1-866-964-68398).