Privacy Policy

Last updated: May 2026

What this app does

Photo Picker helps you narrow down a large batch of photos into your best ones. You upload photos, our AI groups similar shots together, you pick favorites, and you download a ZIP ready to post.

What we collect

We collect only what is necessary to run the app:

  • Account info from Google Sign-In: your name, email address, and a Google account identifier. We use Google OAuth so we never see your Google password.
  • Your photos: the images you upload for a session. These are stored temporarily on our servers and are automatically and permanently deleted within 12 hours of upload. We do not use your photos to train any model.
  • Session data: which photos you selected and your final ordering. Deleted with your photos after 12 hours.

How we use it

  • To run the AI clustering pipeline on your photos during your session.
  • To identify your account so we can delete your data if you request it (see below).
  • We do not sell, share, or rent your data to any third party.
  • We do not send marketing emails.

Third-party services

  • Google OAuth — handles sign-in. Governed by Google's Privacy Policy.
  • Google Gemini API — used to suggest a carousel order and captions for your finalized photos. Gemini receives low-resolution versions of your selected photos (not full originals). We do not share personal information with Gemini beyond the photo content itself.
  • Railway (server hosting) and Vercel (frontend hosting) process requests in the course of operating the service.

Data retention

  • Photos and session files: automatically deleted within 12 hours of upload.
  • Account record (name, email, Google account ID): retained until you request deletion.

Deleting your data

To delete your account record, email umust77@gmail.com from the address you used to sign in. We will remove your record within 7 days. Your photos are already gone within 12 hours automatically.

Security

Photos are stored on a private server volume not accessible via the public internet. Sessions are identified by an unguessable UUID. All traffic is encrypted in transit via HTTPS.

Changes

If we make material changes to this policy we will update the date at the top of this page.

← Back to app