Privacy Policy

Effective Date: 2025-08-11
Last Updated: 2025-08-11

1. Introduction

This Privacy Policy describes how MaxPhotoMagic ("we," "our," or "us") collects, uses, and shares information about you when you use our mobile application (the "App"). We are committed to protecting your privacy and handling your personal information responsibly and in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

By using MaxPhotoMagic, you consent to the collection, use, and sharing of your information as described in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

Photos and Images:

• Photos you select from your device's gallery or capture using the camera
• Images you create, edit, or modify within the App
• Note: Your photos are processed locally on your device for AI-powered features like wing effects and background removal

App Preferences:

• Settings and preferences you configure within the App
• Filter selections, wing preferences, and customization choices
• Export format preferences and quality settings

2.2 Information Collected Automatically

Device Information:

• Device model, operating system version, and hardware specifications
• Device performance metrics (memory usage, processing capabilities)
• Screen resolution and display characteristics
• Device identifiers (Android ID, advertising ID where permitted)

App Usage Data:

• Features used within the App (filters, wings, drawing tools, etc.)
• Time spent using different features and editing sessions
• User interaction patterns and engagement metrics
• Error logs and crash reports (when consent is provided)
• Performance monitoring data for ML Kit operations

Analytics Data:

• Session duration and frequency of App usage
• Feature discovery and usage patterns
• Conversion funnel analytics (from app open to photo export)
• A/B testing data for app improvements
• User engagement scores and retention metrics

Technical Data:

• App version and build information
• Network connectivity status
• Processing times for AI operations
• Memory usage and performance metrics

2.3 Camera and Storage Permissions

Camera Access:

• Required to capture photos directly within the App
• Camera data is processed locally and not transmitted to our servers
• You can revoke camera permission at any time through device settings

Storage Access:

• Read access to select photos from your device gallery
• Write access to save edited photos to your device
• File metadata (creation date, file size, format) for processing optimization

3. How We Use Your Information

3.1 Core App Functionality

• Photo Processing: Apply AI-powered effects, filters, and wing overlays to your photos
• ML Kit Integration: Use Google's ML Kit for human segmentation and background removal
• Export and Sharing: Save edited photos to your device in your preferred format and quality
• Performance Optimization: Optimize processing based on your device capabilities

3.2 App Improvement and Analytics

With Your Consent:

• Analyze usage patterns to improve user experience and app performance
• Monitor feature adoption and user engagement metrics
• Conduct A/B testing to optimize app features and user interface
• Track conversion funnels to understand user workflows
• Generate anonymized analytics reports for app optimization

Performance Monitoring:

• Monitor app crashes and errors to improve stability
• Track processing times for AI operations to optimize performance
• Analyze memory usage patterns to prevent performance issues
• Monitor device compatibility and feature usage across different devices

3.3 Personalization

When Permitted:

• Remember your preferred settings and recently used features
• Suggest filters and effects based on your usage history
• Customize the user interface based on your skill level and preferences
• Provide personalized feature recommendations

4. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Consent: For analytics, crash reporting, and personalized advertising (where applicable)
• Legitimate Interest: For app functionality, security, and essential performance monitoring
• Contract Performance: To provide the core photo editing services you expect from the App

5. Data Storage and Security

5.1 Local Data Processing

On-Device Processing:

• All photo editing and AI processing occurs locally on your device
• Photos are not uploaded to our servers unless you explicitly choose to share them
• ML Kit processing happens on-device without sending data to Google's servers
• Your original photos remain on your device and under your control

5.2 Analytics Data Storage

Secure Storage:

• Analytics data is encrypted using industry-standard encryption methods
• Data is stored using Android's secure preferences with hardware-backed encryption where available
• Sensitive data is anonymized using differential privacy techniques when possible

Data Minimization:

• We collect only the minimum data necessary for app functionality and improvement
• Analytics data is aggregated and anonymized whenever possible
• Personal identifiers are removed from analytics datasets

5.3 Security Measures

Technical Safeguards:

• End-to-end encryption for data transmission (where applicable)
• Secure coding practices and regular security audits
• Protection against unauthorized access and data breaches
• Regular security updates and vulnerability patches

Access Controls:

• Limited access to analytics data by authorized personnel only
• Strong authentication and authorization mechanisms
• Regular access reviews and permission audits

6. Third-Party Services

6.1 Firebase Services (Google)

Firebase Analytics:

• Collects app usage data and user engagement metrics (with consent)
• Provides crash reporting and performance monitoring
• Enables A/B testing and feature optimization
• Privacy Policy: https://firebase.google.com/support/privacy

Firebase Crashlytics:

• Collects crash reports and error logs (with consent)
• Helps identify and fix app stability issues
• Does not collect personally identifiable information in crash reports

6.2 ML Kit (Google)

ML Kit Selfie Segmentation:

• Processes photos locally on your device for human detection
• No photo data is sent to Google's servers
• Used for AI-powered wing effects and background removal
• Privacy Policy: https://developers.google.com/ml-kit/vision/selfie-segmentation/android

6.3 Other Third-Party Libraries

Image Processing Libraries:

• Glide (image loading and caching)
• TensorFlow Lite (on-device AI processing)
• Computer Graphics Engine (CGE) for visual effects
• These libraries process data locally and do not transmit personal information

7. Data Sharing and Disclosure

7.1 General Policy

We do not sell your personal data. We may share your information only in the following limited circumstances:

With Your Consent:

• When you explicitly choose to share edited photos through social media or other apps
• When you participate in analytics programs after providing informed consent

For Legal Compliance:

• When required by law, regulation, or legal process
• To protect our rights, privacy, safety, or property
• To investigate and prevent fraud or security issues

Service Providers:

• With trusted third-party service providers who help us operate the App
• Only for specific functions and under strict confidentiality agreements
• Service providers are prohibited from using your data for their own purposes

7.2 No Automatic Data Transmission

Photos and Personal Content:

• Your photos and edited images are not automatically uploaded or shared
• All sharing is initiated and controlled by you
• We do not have access to your photos unless you explicitly share them

8. Data Retention

8.1 Local Data

Photos and Edits:

• Remain on your device until you delete them
• We do not retain copies of your photos or edits
• Export settings and preferences are stored locally until you clear app data

8.2 Analytics Data

Usage Analytics:

• Retained for up to 2 years for app improvement purposes
• Automatically deleted after the retention period
• You can request immediate deletion at any time

Crash Reports:

• Retained for up to 90 days for debugging purposes
• Automatically purged after resolution of identified issues

Session Data:

• Temporary session data is deleted when you close the App
• Aggregated, anonymized trends may be retained longer for analytical purposes

9. Your Privacy Rights

9.1 General Rights

Access and Control:

• View and manage your privacy settings within the App
• Enable or disable analytics and crash reporting
• Control which features can access your photos and camera

Data Portability:

• Export your app settings and preferences
• Transfer your data to other photo editing applications
• Download your consent history and privacy settings

9.2 GDPR Rights (EU Users)

If you are located in the European Union, you have the following rights:

Right of Access:

• Request a copy of all personal data we hold about you
• Access your consent history and privacy settings
• Obtain information about how your data is processed

Right to Rectification:

• Correct inaccurate or incomplete personal data
• Update your preferences and settings at any time

Right to Erasure ("Right to be Forgotten"):

• Request deletion of all your personal data
• Withdraw all consents and delete associated analytics data
• Clear all app data and usage history

Right to Restrict Processing:

• Limit how we process your personal data
• Opt out of specific data processing activities
• Maintain basic functionality while restricting analytics

Right to Object:

• Object to processing based on legitimate interests
• Opt out of analytics and performance monitoring
• Refuse consent for non-essential features

Right to Data Portability:

• Receive your data in a structured, machine-readable format
• Transfer your data to another service provider
• Export your app preferences and settings

Right to Withdraw Consent:

• Withdraw consent for analytics, crash reporting, or personalized features at any time
• Change your privacy preferences through the app settings
• Consent withdrawal does not affect past processing

9.3 CCPA Rights (California Users)

If you are a California resident, you have the following rights:

Right to Know:

• Request information about the categories and specific pieces of personal information we collect
• Learn about our data sharing practices and the purposes for collection
• Obtain details about data retention and deletion practices

Right to Delete:

• Request deletion of your personal information
• Clear all analytics data and usage history
• Remove all stored preferences and settings

Right to Opt-Out:

• Opt out of the "sale" of personal information (Note: We do not sell personal information)
• Control sharing of data with third-party analytics services
• Manage consent for data collection activities

Right to Non-Discrimination:

• Receive equal treatment regardless of exercising your privacy rights
• Access all app features without discrimination
• No penalty for opting out of non-essential data collection

10. Cookies and Tracking Technologies

10.1 Analytics Cookies

Firebase Analytics:

• Uses identifiers to track app usage and performance (with consent)
• Enables session tracking and user engagement analytics
• You can disable analytics through the app's privacy settings

Local Storage:

• App preferences and settings stored locally on your device
• No web cookies used (native mobile application)
• Local data can be cleared through app settings or device storage management

10.2 Advertising Identifiers

Google Advertising ID:

• Used for analytics and A/B testing (with consent)
• Can be reset or disabled through Android settings
• Not used for personalized advertising unless explicitly consented

11. Children's Privacy

11.1 Age Restrictions

13+ Requirement:

• MaxPhotoMagic is not designed for children under 13 years of age
• We do not knowingly collect personal information from children under 13
• Parents should supervise their children's use of photo editing applications

COPPA Compliance:

• If we learn that we have collected information from a child under 13, we will delete such information immediately
• Parents can contact us to review, delete, or stop further collection of their child's information

11.2 Parental Controls

For Users 13-17:

• We recommend parental guidance for teenage users
• Parents can help configure privacy settings appropriate for their children
• Photo sharing capabilities should be supervised by parents

12. International Data Transfers

12.1 Cross-Border Processing

Firebase Services:

• Analytics data may be processed in Google's data centers worldwide
• Google provides appropriate safeguards under international privacy frameworks
• Data processing agreements include Standard Contractual Clauses where applicable

Data Localization:

• Core photo processing occurs locally on your device
• No photos are transferred internationally without your explicit action
• Analytics data is subject to Google's global privacy and security standards

12.2 Adequacy Decisions

EU-US Data Privacy Framework:

• We rely on adequacy decisions and appropriate safeguards for data transfers
• Standard Contractual Clauses (SCCs) are used where necessary
• Regular assessments ensure continued compliance with international requirements

13. Changes to This Privacy Policy

13.1 Policy Updates

Notification Process:

• We will notify you of material changes through the App
• Updated privacy policy will be posted with a new effective date
• Continued use of the App after changes constitutes acceptance

Consent for Changes:

• Significant changes may require renewed consent
• You will be prompted to review and accept material modifications
• You can always access the current privacy policy within the App settings

13.2 Version History

Tracking Changes:

• Previous versions of this privacy policy are available upon request
• Change logs detail what modifications were made and when
• Transparency reports provide additional context for policy updates

14. Contact Information

14.1 Privacy Inquiries

For questions about this Privacy Policy or our privacy practices, please contact us:

Email: madfoxdeveloper@gmail.com

14.2 Data Protection Officer

For GDPR-related inquiries:

DPO Email: madfoxdeveloper@gmail.com
Response Time: We respond to privacy inquiries within 72 hours

14.3 Supervisory Authority

EU Users: You have the right to lodge a complaint with your local data protection authority.
California Users: You may file a complaint with the California Attorney General's office.

15. Technical Appendix

15.1 Data Categories and Processing Purposes

Data Category	Processing Purpose	Legal Basis	Retention Period
Photos/Images	Core app functionality	Legitimate Interest	Stored locally only
Device Info	Performance optimization	Legitimate Interest	2 years
Usage Analytics	App improvement	Consent	2 years
Crash Reports	Bug fixing and stability	Consent	90 days
User Preferences	Personalization	Legitimate Interest	Until app deletion

15.2 Third-Party Data Processors

Service	Purpose	Data Shared	Privacy Policy
Firebase Analytics	Usage analytics	Anonymized usage data	Firebase Privacy Policy
Firebase Crashlytics	Crash reporting	Error logs and device info	Firebase Privacy Policy
ML Kit	On-device AI processing	None (local processing)	ML Kit Privacy

15.3 Security Measures

Encryption:

• AES-256 encryption for stored data
• TLS 1.3 for data in transit
• Hardware-backed encryption where available

Access Controls:

• Multi-factor authentication for team access
• Role-based access permissions
• Regular access audits and reviews

Monitoring:

• Real-time security monitoring
• Automated threat detection
• Regular penetration testing and security assessments

Document Version: 1.0
Last Review Date: 2025-08-11