Privacy Policy

Last updated: February 10, 2026

This Privacy Policy (“Policy”) describes how imgeo (“Company,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards your information when you access or use the imgeo platform, including the website at www.imgeo.club and all related services (collectively, the “Service”). We are committed to protecting your privacy and handling your data with transparency and care. By using the Service, you consent to the practices described in this Policy. If you do not agree, please discontinue use of the Service.

1. Information We Collect

1.1 Information You Provide

When you create an account via Google OAuth, we receive and store the following information from your identity provider:

  • Full name
  • Email address
  • Profile photograph (avatar URL)
  • Unique account identifier

We do not collect or store your Google account password. Authentication is handled entirely by Google through the OAuth 2.0 protocol.

1.2 Content You Generate

When you use the Service to generate images, we store the following data in connection with each generation request:

  • Text prompts you submit
  • Reference images you upload (for image-to-image generation)
  • The AI model selected, output dimensions, and image count
  • Generated image files
  • Credit cost and timestamp of each generation

1.3 Transaction Data

When you purchase credits, our third-party payment processor (Creem) handles all financial transactions. We do not collect, process, or store your payment card details, bank account information, or other sensitive financial data. We receive and retain only:

  • Transaction identifiers (order ID, checkout ID)
  • Plan purchased, credit amount, transaction amount, and currency
  • Transaction timestamp

1.4 Automatically Collected Data

When you interact with the Service, we may automatically collect certain technical information, including:

  • IP address
  • Browser type and version
  • Operating system
  • Referring URL and pages visited within the Service
  • Device type and screen resolution
  • Date, time, and duration of your visit

This data is collected through standard server logs and, where applicable, cookies or similar technologies.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service delivery: To authenticate your identity, process your generation requests, manage your credit balance, and display your account information and history
  • Payment processing: To facilitate credit purchases, verify transactions, and maintain accurate billing records
  • Service improvement: To analyze usage patterns, diagnose technical issues, optimize performance, and develop new features
  • Security: To detect, prevent, and address fraud, abuse, unauthorized access, and other harmful activities
  • Communication: To send service-related notifications, respond to inquiries, and provide customer support
  • Legal compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests

We do not use your prompts or generated images to train AI models. Your creative content is your own.

3. Data Storage and Retention

3.1 Where Your Data Is Stored

Your data is processed and stored across the following services:

  • Supabase (database and authentication) — account profiles, credit balances, transaction records, generation metadata, and authentication sessions
  • Cloudflare R2 (object storage) — generated images and uploaded reference images

These providers maintain their own security certifications and compliance programs. Data may be stored in regions outside your country of residence.

3.2 Retention Period

We retain your personal data for as long as your account remains active. Upon account deletion, we will remove your personal information within a commercially reasonable timeframe, subject to any legal or regulatory obligations that require longer retention. Anonymized or aggregated data that can no longer be linked to your identity may be retained indefinitely for analytical purposes.

4. Cookies and Tracking Technologies

The Service uses cookies and similar technologies for the following purposes:

  • Essential cookies: Required for authentication, session management, and core functionality. These cannot be disabled without impairing the Service.
  • Preference cookies: Store your settings and preferences to enhance your experience across sessions.

We do not currently deploy third-party advertising or behavioral tracking cookies. Should this change, we will update this Policy and provide appropriate notice and consent mechanisms.

5. Third-Party Services

We engage the following third-party services to operate the platform. Each processes data in accordance with its own privacy policy:

  • Google — OAuth authentication provider
  • Supabase — Database, authentication infrastructure, and real-time services
  • Replicate — AI model inference (your prompts and reference images are transmitted to Replicate for processing)
  • Cloudflare — Content delivery network and R2 object storage
  • Creem — Payment processing (handles all financial transactions directly; we never receive your card details)

We select service providers that maintain appropriate security standards, but we are not responsible for their independent privacy practices. We encourage you to review their respective privacy policies.

6. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We may disclose your information only in the following circumstances:

  • Service providers: To the third-party vendors identified in Section 5, solely to the extent necessary to operate the Service
  • Legal obligation: When required by law, regulation, legal process, or governmental request
  • Safety and enforcement: To protect the rights, property, or safety of imgeo, our users, or the public; or to enforce our Terms of Service
  • Business transfer: In connection with a merger, acquisition, reorganization, or sale of assets, in which case your data may be transferred to the successor entity

7. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (TLS/HTTPS)
  • Row-level security policies on database tables
  • Atomic, server-side credit operations to prevent tampering
  • Webhook signature verification for all payment notifications
  • Authentication token refresh via secure, HTTP-only cookies

No method of electronic transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

8. Your Rights

Depending on your jurisdiction, you may have the following rights with respect to your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data, subject to legal retention requirements
  • Restriction: Request that we limit the processing of your data under certain circumstances
  • Portability: Request a machine-readable export of your data
  • Objection: Object to the processing of your data on grounds relating to your particular situation
  • Withdrawal of consent: Withdraw your consent at any time where processing is based on consent

To exercise any of these rights, please contact us at support@imgeo.club. We will respond to your request within thirty (30) days or as required by applicable law.

9. Children’s Privacy

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child under 16, we will take prompt steps to delete such information. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your jurisdiction. By using the Service, you consent to such transfers. We ensure that appropriate safeguards are in place, including contractual protections, to maintain the security and integrity of your data during any international transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Last updated” date at the top of this page and, where appropriate, notify you through the Service or via email. Your continued use of the Service after any modification constitutes your acceptance of the revised Policy.

12. Contact

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to us:

By using imgeo, you acknowledge that you have read and understood this Privacy Policy. For information about the terms governing your use of the Service, please review our Terms of Service.