Privacy Policy

1. File Handling & Retention

ExifX operates on a Privacy by Design principle. When you upload a file:

• Encryption: Your file is transferred over HTTPS.
• Processing: Metadata stripping is performed on our secure servers in an isolated processing flow.
• Deletion after successful download: The processed download file is deleted immediately after successful download.
• Automated cleanup: Temporary files not downloaded (including failed files) are removed by scheduled cleanup jobs.
• No content archive: We do not maintain a permanent database/archive of uploaded file contents.

2. Data We Collect

We collect only the data needed to run and secure the service:

• Account data: Username, email address, hashed password, and profile/account settings for registered users.
• Subscription and billing data: Plan status, transaction records, and Stripe identifiers (for example customer/subscription/payment IDs). We do not store full card numbers on our servers.
• Security and operations logs: IP address, user agent, session records, login attempts, API request logs, and activity logs for security, abuse prevention, and troubleshooting.
• Support data: Messages you submit through support/ticket flows.
• Analytics data: Site analytics used to measure usage and performance.

3. Advertising and Conversion Tracking

We use Google AdSense and Google Ads conversion tracking. Google may use cookies or similar technologies to measure ad performance and conversions.

You can opt out of personalized advertising by visiting Google Ads Settings.

This tracking is used for campaign measurement and service growth. We do not sell your personal data.

4. Third-Party Services

To run ExifX, we use third-party providers including Stripe (billing), Cloudflare Turnstile (bot protection), and Google services (analytics/ads/conversions). These providers may process data according to their own privacy policies.

5. Contact Us

If you have any questions about this policy, please contact us at [email protected].