Privacy Policy

ProofShot Pro ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application and website.

1. Information We Collect

Information You Provide

• Account Information: Name, email address, and password when you create an account.
• Business Information: Company name, logo, and contact details you add to your profile.
• Payment Information: Billing details processed securely through Stripe. We do not store your full credit card number.
• Photos and Content: Before and after photos, project notes, and customer information you upload to the app.
• Communications: Information you provide when contacting our support team.

Information Collected Automatically

• Device Information: Device type, operating system, and browser type.
• Usage Data: Features used, pages visited, and actions taken within the app.
• Log Data: IP address, access times, and referring URLs.
• Location Data: General location based on IP address (not precise GPS location unless you enable it for photo geotagging).

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send you technical notices, updates, and support messages
• Respond to your comments, questions, and customer service requests
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent fraudulent transactions and abuse
• Personalize and improve your experience
• Send promotional communications (with your consent)

3. How We Share Your Information

We do not sell your personal information. We may share information in the following situations:

• Service Providers: With third-party vendors who perform services on our behalf (e.g., payment processing, hosting, analytics).
• Legal Requirements: If required by law or in response to valid legal requests.
• Business Transfers: In connection with a merger, acquisition, or sale of assets.
• With Your Consent: When you direct us to share information with third parties.

4. Third-Party Services

We use the following third-party services:

• Stripe: For payment processing. See Stripe's Privacy Policy.
• Vercel: For hosting and infrastructure. See Vercel's Privacy Policy.
• PostHog: For product analytics (cookieless, no personal data stored). See PostHog's Privacy Policy.
• Anthropic (Claude): For AI-powered caption generation. Photo descriptions are processed via the Claude API but not stored or used for model training. See Anthropic's Privacy Policy.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. Specifically:

• Account Data: Retained until you delete your account.
• Photos and Projects: Retained according to your plan limits. Deleted projects move to a "Recently Deleted" folder for 30 days where they can be restored. After 30 days they are removed from your account but retained in our database for an additional 60 days for recovery purposes, then permanently deleted.
• Payment Records: Retained for 7 years for legal and tax compliance.
• Usage Logs: Retained for 90 days for security and debugging purposes.

6. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security assessments and updates
• Access controls and authentication requirements
• Secure cloud infrastructure with industry-standard protections

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. Your Rights and Choices

You have the right to:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal information (subject to legal requirements).
• Export: Request your data in a portable format.
• Opt-out: Unsubscribe from marketing communications at any time.

To exercise these rights, contact us at [email protected].

8. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information held by businesses
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to non-discrimination for exercising your privacy rights

9. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access, rectify, or erase your personal data
• Right to restrict or object to processing
• Right to data portability
• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority

Our legal basis for processing personal information includes: performance of a contract, legitimate interests, and consent.

10. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 16, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide additional notice (such as email notification).

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us: