Privacy Policy — AI Photo Studio

Name: AI Photo Studio
Author: Yehor Razkevych

Effective Date: April 14, 2026 | Last Updated: April 14, 2026

This Privacy Policy describes how Yehor Razkevych ("byRazkevych") collects, uses, and protects your information when you use AI Photo Studio at https://studio.byrazkevych.com and the FramePulse desktop application.

1. Information We Collect

Account Information: When you register, our authentication provider (Clerk) collects your email address, name, and profile information. Generation History: We store metadata about your generation requests (prompt text, image count, status, timestamps). We do NOT store your photographs — they are processed in-memory and immediately discarded. Local Settings: FramePulse stores your API credentials, prompts, and preferences locally on your device — we never have access to this data.

2. How We Use Your Information

We use your information to: provide and maintain the Service; process your image generation requests; manage your subscription and billing; enforce rate limits and prevent abuse; send important service notifications; improve the Service based on usage patterns.

3. Photo Processing

Your photographs are processed in-memory on our servers and are NEVER permanently stored. The processing flow: FramePulse sends your photo to our server → server forwards it to the AI generation service → result is returned to you → all image data is immediately discarded from server memory. We have no ability to access, view, or recover your photos after processing.

4. Third-Party Services

We use the following third-party services: Clerk — authentication and billing management (stores your account data); BytePlus — AI image generation (processes your photos temporarily); Railway — web application hosting; GitHub — desktop application distribution and updates. Each service has its own privacy policy governing their handling of your data.

5. Data Retention

Generation metadata is retained as long as your account is active. Photos are never retained. Rate limit data is stored temporarily in cache and automatically expires. When you delete your account, all your data on our servers is permanently removed.

6. Data Security

We implement appropriate security measures including encrypted connections (HTTPS/TLS), secure authentication via Clerk, and access controls. However, no method of transmission over the Internet is 100% secure.

7. Your Rights (GDPR)

You have the right to: access your personal data; correct inaccurate data; delete your account and all associated data; export your data; withdraw consent at any time. To exercise these rights, delete your account through your account settings or contact us directly.

8. Cookies

We use essential cookies for authentication and session management. Our authentication provider may use additional cookies. We do not use advertising or tracking cookies.

9. Changes to This Policy

We may update this Privacy Policy. Changes will be posted on this page with an updated date. Continued use of the Service constitutes acceptance.

10. Contact

For privacy-related questions, contact: egor.razkevich@gmail.com