Privacy Policy
Effective date: 30 October 2025
App: Loys · Developer: Applantida / Yury Tomachinskiy · Contact: [email protected]
This Privacy Policy explains how Loys (“we”, “our”, “us”) collects, uses, and safeguards your information. By using the App, you consent to this Policy.
1. Information We Collect
- Uploaded Photos & Text: Images and prompts you provide to generate AI outputs.
- Account Data: Basic details from Sign in with Apple (e.g., user identifier; email if you choose to share it).
- Purchase Data: Transaction validation for credits (via Apple and, where applicable, RevenueCat).
- Diagnostics: Device/usage logs, error codes, moderation flags, and request metadata to improve reliability and safety.
2. How We Use Information
- To process your content and generate AI images.
- To operate accounts, handle payments/credits, and provide support.
- To moderate submitted and generated content using automated systems from providers (e.g., OpenAI and Google) to prevent abuse.
- To improve quality, safety, and performance.
3. Moderation & Safety
All uploads and outputs may be automatically screened by third-party moderation systems. Content flagged as unsafe or inappropriate may be blocked or removed. Repeated violations may result in account suspension or termination. See our Terms of Use for details.
3A. Face Data
What face data the app collects: Loys does not perform facial recognition, detection, or biometric analysis. When users upload photos that may contain faces, those images are treated as ordinary pictures. The app does not extract or store facial landmarks or identifiers.
How face data is used: Uploaded photos are sent securely to third-party AI providers (OpenAI and Google Gemini) only to generate the requested AI image result (for example, combining parent photos to create an AI baby portrait). Photos are not used to train models or perform identity matching.
Sharing and third parties: Photos are shared only with the AI providers (OpenAI and Google Gemini) that generate results for the user. We do not share photos or face data with advertisers, analytics networks, or any other third parties.
Storage and retention: Uploaded photos and generated images are stored privately on encrypted Amazon Web Services (AWS S3) servers. All files are stored in a private bucket and accessed only through pre-signed URLs that automatically expire. This ensures that only the user (and the app, for processing) can access each file securely. Users can delete individual photos or their entire account at any time in the app. Deleted content is permanently removed from active systems and backups within 30 days.
Retention and deletion rights: Users maintain full control over their content and can remove it at any time. Once deleted, the associated photos and data are erased from all systems within 30 days.
4. Sharing & Third Parties
- AI Providers: We send uploads and prompts to third-party AI providers (OpenAI and Google Gemini) solely to generate the requested AI results. These providers process images transiently for generation and do not retain them for model training or other uses.
- Infrastructure: User photos and generated results are stored privately in encrypted AWS S3 storage managed by Applantida. The bucket is private, and all access is controlled through expiring pre-signed URLs to prevent unauthorized access.
- No sale or advertising use: We do not sell, rent, or share user or face data for marketing or advertising purposes.
5. Storage, Retention & Deletion
- Uploads and outputs are stored to enable re-downloads and history.
- Users can delete individual photos or their account in the App. Deleted data is removed from active systems and backups within 30 days.
6. Security
We use encrypted transport (HTTPS/TLS), encrypted private AWS S3 storage with pre-signed expiring URLs, and other industry-standard safeguards. No method of transmission or storage is 100% secure; please use the App responsibly.
7. Children
The App is appropriate for a general audience; guardians are responsible for minors’ use. We do not knowingly collect data from children under the age required by local law without consent where applicable.
8. International Transfers
Your data may be processed in the UK, EU, US, or other locations where our service providers operate, under appropriate safeguards.
9. Your Rights
Depending on your region, you may have rights to access, correct, delete, or restrict processing of your data. Contact us at [email protected].
10. Legal Basis
Where applicable (e.g., UK/EU), we process data based on consent, contract necessity (providing the service), and legitimate interests (security, fraud prevention, service improvement).
11. Changes to this Policy
We may update this Policy from time to time. Material changes will be posted in-app or on our website.