PixVideo Privacy Policy

Last Updated: January 2025

Introduction

PixVideo (hereinafter referred to as "the Application" or "we") is committed to protecting user privacy, especially regarding sensitive biometric data. This Privacy Policy explains how we collect, use, store, and protect information you provide when using this Application, with particular emphasis on facial data handling.

Please read this Policy carefully. If you do not agree with any part of this Policy, please do not use this Application.

---

1. Information We Collect

1.1 Information You Directly Provide

Account Information

• Email address or account identifiers obtained through third-party login (Google, Apple)
• Username and profile information

Facial Data (Biometric Information)

• When you use the face-swapping feature, we collect photos or video files containing facial images that you explicitly upload
• Facial data is collected ONLY when you actively choose to use the face-swapping feature
• You maintain full control over what facial data you upload

User-Generated Content

• Videos, images, and other content generated using our services
• Content you create remains your property

1.2 Automatically Collected Information

Device Information

• Device type (iOS, Android)
• Operating system version
• Unique device identifier (Device ID)
• Device model

Usage Data

• Features you interact with
• Frequency of operations
• Session duration and timestamps

Analytics Data

• Usage statistics collected through Google Analytics and Firebase
• This data is anonymized and aggregated

---

2. Facial Data Collection and Processing (Sensitive Biometric Data)

2.1 What Facial Data We Collect

We collect the following facial data:

• Facial images and videos uploaded by you when using the face-swapping feature
• Facial features extracted for the purpose of processing your face-swapping requests
• Temporary facial data created during the processing of your requested features

Important: Facial data is collected ONLY through explicit user action. We do not collect facial data from:

• App screenshots
• Profile pictures (unless you specifically upload them for face-swapping)
• Device cameras without your explicit request
• Any background or passive monitoring

2.2 Purposes for Facial Data Processing

We process facial data EXCLUSIVELY for the following purposes:

Primary Purpose - Feature Functionality:

• Enable the face-swapping feature to function as intended
• Process your requests to apply facial effects or generate videos with face-swapping
• Render the final output content that you request

Secondary Purpose - Content Moderation:

• Detect and prevent misuse (e.g., non-consensual face-swapping, deepfakes of public figures)
• Ensure compliance with our Terms of Service and applicable laws
• Protect user safety and prevent harmful content

What We Do NOT Use Facial Data For:

• ❌ Model training or AI model improvement
• ❌ Facial recognition for identification purposes
• ❌ Creating facial profiles or databases
• ❌ Commercial purposes
• ❌ Marketing or advertising personalization
• ❌ Sharing with third parties for any purpose
• ❌ Any purpose beyond those explicitly stated above

2.3 Facial Data Sharing

Facial data will NOT be shared with any third parties, including:

• Advertising networks (Google AdMob receives only anonymized usage data, never facial data)
• Analytics providers (Google Analytics and Firebase receive only anonymized usage metrics, never facial data)
• Other service providers
• Governmental entities (unless legally compelled by valid court orders or legal processes)

Exception: We may be legally required to disclose facial data if:

• Compelled by valid court orders or government subpoenas
• Required by applicable laws to prevent harm
• Necessary to comply with law enforcement requests with proper legal authority

In such cases, we will:

• Notify you of the disclosure if legally permitted
• Provide only the minimum necessary information
• Maintain records of such disclosures

2.4 Facial Data Storage Location and Security

Where Facial Data is Stored:

• Facial data is processed and stored on secure servers with encrypted storage and access controls
• Access to facial data is strictly limited to essential personnel and automated systems only
• Facial data is segregated from other user data for enhanced security

Security Measures:

• End-to-end encryption for facial data transmission
• Encrypted storage for facial data at rest
• Access controls and authentication requirements
• Regular security audits and vulnerability assessments
• Industry-standard firewall and intrusion detection systems

What Happens to Facial Data During Processing:

• Your facial data is temporarily processed in memory to generate your requested output
• Temporary processing data is deleted immediately after generation
• Only your final generated content is retained (not the original facial data used to create it)

2.5 Facial Data Retention Period

Original Facial Data Retention:

• Facial images/videos you upload are retained for 30 days maximum from the date of upload
• After 30 days, all original facial data is automatically and permanently deleted from our servers
• If you delete your account, all associated facial data is deleted immediately

Generated Content Retention:

• Content you generate (videos, images) is retained for 7 days for your access and download
• After 7 days, generated content is automatically deleted
• You can manually delete any content at any time through the app

Exception for Content Moderation:

• Facial data associated with content flagged as violating our policies may be retained for 7 days for moderation review and potential legal compliance
• After review, this data is securely deleted

You Can Delete Facial Data Anytime:

• Delete individual uploads directly in the app
• Delete your entire account and all associated facial data at any time
• Request complete deletion of facial data through our privacy portal at: pixvide@outlook.com

---

3. How We Use Information (Beyond Facial Data)

3.1 Core Functionality

• Create and manage your account
• Provide text-to-video, text-to-image, face-swapping, and template video features
• Process your subscriptions and in-app purchases
• Deliver the services you request

3.2 Security and Compliance

• Content moderation and violation detection (facial data used only as necessary)
• Detect and prevent fraud, abuse, or security threats
• Comply with legal and regulatory requirements

3.3 Service Improvement and Optimization

• Analyze Application usage patterns (using anonymized, aggregated data)
• Improve service quality and user experience
• Develop new features
• Important: We do NOT use facial data for these purposes

3.4 Communications

• Send service-related notifications
• Respond to your inquiries and support requests
• Notify you of material changes to this Privacy Policy

---

4. Data Retention Policy (All Data Types)

Data Type	Retention Period	Deletion Method
Facial Data (Original)	30 days from upload	Automatic permanent deletion
Generated Content	7 days from creation	Automatic deletion (or manual deletion by user)
Account Data	180 days from last activity	Automatic deletion for inactive accounts
Content Moderation Records	7 days	Automatic deletion after review
Analytics Data	26 months (Google Analytics default)	Automatic per Google's retention policy
Video Generation Logs	7 days	Automatic permanent deletion

User-Initiated Deletion:

• Users can delete their account and ALL associated data (including facial data) at any time
• Deletion is processed within 30 days
• Users can download their data before deletion

---

5. Data Sharing and Third Parties

5.1 Third-Party Service Providers

We share limited data with the following third parties to provide services:

Google Analytics

• Data Shared: Anonymized, aggregated usage metrics only (NO facial data)
• Purpose: Analyzing application usage patterns and user behavior
• Data Protection: Bound by our data protection agreement

Firebase

• Data Shared: Anonymized crash reports and performance metrics (NO facial data)
• Purpose: Application performance monitoring and stability
• Data Protection: Bound by our data protection agreement

Google AdMob

• Data Shared: Anonymized user IDs and device information (NO facial data)
• Purpose: Ad delivery and revenue optimization
• Data Protection: Bound by our data protection agreement

Google Login / Apple Login

• Data Shared: Email address and account identifier only
• Purpose: User authentication
• Data Protection: Bound by their respective privacy policies

Important: FACIAL DATA IS NEVER SHARED with any third party under any circumstances, including analytics providers, ad networks, or service providers.

5.2 Legal Disclosure

We may disclose user information (including facial data only when legally required) in the following circumstances:

• Comply with valid laws, regulations, or government requirements
• Respond to lawful legal proceedings (court orders, subpoenas)
• Protect our rights, privacy, security, or property
• Prevent or investigate possible wrongdoing
• Protect against physical harm or safety threats

When disclosure is legally required, we will:

• Provide notice to the user if legally permitted
• Disclose only the minimum necessary information
• Maintain records of the disclosure

---

6. Handling of User-Generated Content

Ownership:

• You retain ALL ownership and intellectual property rights to content you generate

Our Rights:

• We have the right to manage, review, and delete content that violates this Policy or applicable laws
• We have the right to disable or remove content that poses safety risks

Data Usage for Generated Content:

• Your generated content is used for content moderation and violation detection
• Content will NOT be used for:
  • Commercial purposes
  • Model training or AI improvement
  • Any purpose beyond what is necessary to provide the service
• You grant us a limited license to host and display your content while you have an active account

Content Deletion:

• You can delete any content at any time
• Content is automatically deleted after 90 days
• Deleted content is permanently removed from our servers

---

7. Children's Privacy (COPPA and GDPR)

Age Requirements:

• This Application is intended for users aged 13 and above
• In some regions, different age requirements may apply

Children Under 13:

• We do not knowingly collect personal information from children under 13
• If we discover collection of data from children under 13, we will immediately delete such information
• Parents or guardians can contact us at pixvide@outlook.com to request verification and deletion

Users Aged 13-16 (European Users):

• For European users aged 13-16, we will obtain verifiable parental or guardian consent
• We provide a simplified privacy notice appropriate for young users
• Special protections apply to facial data from minors

Special Protections for Minors' Facial Data:

• We have zero tolerance for non-consensual use of minors' facial data
• Use of facial data from anyone under 18 without explicit parental consent is prohibited
• Violations result in immediate account termination and potential legal action
• We regularly scan for content violating minor protection policies

---

8. Security

We implement comprehensive technical and organizational measures to protect your personal information, including:

• Encryption: Secure servers with SSL/TLS encryption for data transmission
• Encryption at Rest: Encrypted storage for all personal data, especially facial data
• Access Controls: Limiting access to personal information to authorized personnel only
• Authentication: Multi-factor authentication options for account security
• Regular Audits: Regularly reviewing and updating security measures
• Incident Response: Documented procedures for data breach response and user notification
• Employee Training: Staff training on data protection and privacy practices

Limitations:However, no method of internet transmission is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You use the Application at your own risk.

---

9. Your Privacy Rights

Under applicable laws, including GDPR, CCPA, and other privacy regulations, you have the following rights:

Right of Access (Data Subject Access Request)

• Request access to personal information we hold about you
• Receive your data in a portable, commonly used format
• Process: 30-day response time

Right to Rectification

• Correct inaccurate or incomplete information
• Process: Submit correction request through account settings

Right to Erasure ("Right to be Forgotten")

• Request deletion of your personal information
• Delete your account and all associated data at any time
• All data (including facial data) deleted within 30 days
• Process: Account settings or email request

Right to Restrict Processing

• Restrict how we use your information in certain circumstances
• Process: Email request to pixvide@outlook.com

Right to Data Portability

• Obtain your data in a structured, commonly used, and machine-readable format
• Download your data before account deletion
• Process: 30-day response time

Right to Object

• Object to certain types of data processing
• Opt-out of analytics and promotional communications
• Process: Account settings

Right to Lodge a Complaint

• Lodge a complaint with your local data protection authority if you believe your rights have been violated
• Contact information for EU data protection authorities available upon request

To Exercise These Rights:Please contact us at: pixvide@outlook.com

• Include your request type and account information
• We will respond within 30 days
• No fees charged for exercising your rights

---

10. International Data Transfers

Data Transfer Locations:

• If you are located outside the European Economic Area (EEA), your information may be transferred to, stored in, or processed in the United States or other countries
• Data protection laws in these countries may differ from those in your jurisdiction
• We comply with applicable data transfer mechanisms (e.g., Standard Contractual Clauses)

Your Consent:By using this Application, you acknowledge and consent to:

• The transfer of your information to the United States and other countries
• Processing under the laws of these jurisdictions
• The potential differences in data protection levels

For EEA Users:

• We implement appropriate safeguards for international data transfers
• We comply with GDPR requirements for lawful data transfers
• You can request information about our transfer mechanisms

---

11. Updates to Privacy Policy

Changes and Notifications:

• We may update this Privacy Policy from time to time
• Material changes will be notified through:
  • In-app notification
  • Email notification
  • Updated "Last Updated" date at the top of this policy
• Continued use of the Application after changes constitutes acceptance of the updated Policy
• For major changes, we will request your explicit consent

Your Right to Object:

• If you disagree with changes, you may delete your account and discontinue use
• We will delete all your data as described in Section 4

---

12. Contact Us

For Privacy Inquiries and Rights Requests:

📧 Email: pixvide@outlook.com

What to Include in Your Request:

• Your name and account information
• Description of your request
• Specific data or rights involved
• Preferred method of contact

Response Time:

• We will respond to your inquiry within 30 days
• Complex requests may require up to 60 days
• We will notify you if an extension is needed

Data Protection Authority:If you are an EU resident and believe we have violated your privacy rights, you may lodge a complaint with your local data protection authority.

---

Summary of Key Points Regarding Facial Data

✅ Facial data is collected ONLY when you explicitly use the face-swapping feature

✅ Facial data is used ONLY for:

1. Providing the face-swapping feature you request
2. Content moderation and safety

✅ Facial data is NOT used for:

• Model training
• Commercial purposes
• Marketing or advertising
• Sharing with third parties

✅ Facial data retention:

• 30 days maximum from upload
• Automatic permanent deletion after 30 days
• Immediate deletion upon account deletion

✅ Facial data security:

• Encrypted transmission and storage
• Strictly limited access
• No sharing with any third parties

✅ Your control:

• Delete facial data anytime
• Download generated content before expiration
• Delete your account and all data anytime

---

This Privacy Policy is effective as of January 2025 and supersedes all previous versions.

For more information about our data practices, please contact us at pixvide@outlook.com