Privacy Policy

Last updated: January 2026

1. Information We Collect

At iGraphify, we collect the following types of information to provide and improve our AI-powered infographic generation service:

Personal Information

Name and email address (via Google OAuth)
Profile information from your Google account
Account preferences and settings

Payment Information

Payment details processed securely through Stripe
Billing address and transaction history
We do not store your credit card details directly

Content and Documents

Documents you upload (PDFs, images)
Reference images (for style guidance)
AI-generated infographics
Generation settings and preferences

Usage Data

IP address and browser information
Device type and operating system
Pages visited and features used
Timestamps of actions

2. How We Use Your Information

We use the information we collect for the following purposes:

Account Management: To create, maintain, and authenticate your account
Payment Processing: To process subscriptions, manage credits, and handle billing
AI Infographic Generation: To process your uploaded documents and generate infographics using Google Gemini AI
Service Improvement: To analyze usage patterns and improve our AI models and features
Communication: To send service-related notifications, updates, and support responses
Security: To detect and prevent fraud, abuse, and unauthorized access
Legal Compliance: To comply with applicable laws and regulations

3. Data Storage & Retention

We implement the following data retention policies:

Permanent Storage

User account data (name, email, preferences)
Uploaded documents (input files)
Generated infographics
Credit transaction history
Generation metadata (settings, timestamps)

Storage Infrastructure

All data is stored securely in Supabase (PostgreSQL database and object storage) hosted in the EU region. Data is encrypted at rest and in transit using industry-standard SSL/TLS protocols.

Account Deletion

If you delete your account, all associated data including uploaded images, generated images, and transaction history will be permanently removed within 30 days.

4. Third-Party Services

We use trusted third-party services to provide our platform. Each service has its own privacy policy:

🔐 Google OAuth (Authentication)

We use Google OAuth for secure authentication. Google's Privacy Policy applies to information shared during sign-in.

💳 Stripe (Payment Processing)

All payment processing is handled by Stripe. We do not store your credit card details. Stripe's Privacy Policy governs payment data handling.

🗄️ Supabase (Data Storage)

Your account data and uploaded images are stored in Supabase's secure PostgreSQL database and object storage infrastructure (EU region).

Google Gemini AI (Infographic Generation)

Your uploaded documents are processed by Google's Gemini AI to generate infographics. Google may use anonymized data to improve their AI models.

We do not sell your personal data to third parties.

5. Your Rights (GDPR Compliance)

Under the General Data Protection Regulation (GDPR) and similar privacy laws, you have the following rights:

Right to Access: You can request a copy of all data we hold about you
Right to Correction: You can update or correct inaccurate personal information
Right to Deletion: You can request deletion of your account and all associated data
Right to Export: You can request a machine-readable export of your data
Right to Object: You can object to processing of your data for certain purposes
Right to Restrict: You can request limitation of how we process your data

How to Exercise Your Rights

To exercise any of these rights, please contact us at contact@igraphify.com. We will respond to your request within 30 days.

6. Data Security

We take data security seriously and implement industry-standard measures to protect your information:

Encryption: All data is encrypted at rest and in transit using SSL/TLS protocols
Secure Authentication: Google OAuth with JWT session tokens
Access Controls: Limited employee access to user data on a need-to-know basis
Regular Audits: We conduct security reviews and updates regularly
Monitoring: Automated systems monitor for suspicious activity

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Cookies & Tracking

We use minimal cookies to provide our service:

Essential Cookies: NextAuth session cookies for authentication (required for service functionality)
No Third-Party Ads: We do not use advertising cookies or sell data to advertisers
Analytics: We may use basic analytics to improve service quality

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make significant changes, we will:

Update the "Last updated" date at the top of this page
Notify you via email if you have an active account
Post a notice on our website or dashboard

Continued use of our service after changes constitutes acceptance of the updated policy.

9. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

iGraphify

Email: contact@igraphify.com

We typically respond within 24-48 hours.

Have Questions?

If you have any privacy concerns or questions about how we handle your data, don't hesitate to reach out.