Privacy Policy

1. Data Collection and Processing

1.1 Personal Data

We collect ZERO personal data. ImageDone does not:

• Require user registration or accounts
• Collect names, email addresses, or contact information
• Store user preferences or settings on our servers
• Track user behavior or usage patterns
• Use cookies for data collection or tracking

1.2 Image and File Data

Your images and files remain completely private. ImageDone's architecture ensures:

• No server uploads: Images are processed entirely within your browser using HTML5 Canvas API, WebAssembly, and Web Workers
• Local processing only: All image conversion, editing, and analysis happens on your device
• No temporary storage: We do not cache, store, or retain any image data
• No file access beyond processing: Files are only accessed during active processing sessions
• Memory cleanup: All image data is cleared from browser memory after processing

1.3 Technical Data

ImageDone does not collect technical or diagnostic data such as:

• Browser type, version, or capabilities
• Operating system information
• Device specifications or performance metrics
• Processing times or file sizes
• Error logs or diagnostic information

2. How ImageDone Works

2.1 Client-Side Architecture

ImageDone uses modern web technologies to provide powerful image processing without any server interaction:

• SvelteKit Static Site Generation: The application is served as static files from CDN
• Web Workers: Background processing ensures responsive UI without blocking the browser
• Canvas API: Native browser image manipulation for format conversion and editing
• WebAssembly (WASM): High-performance processing for complex operations
• IndexedDB/Cache API: Local browser storage for AI models (if used) - never sent to servers

2.2 AI Processing

When using AI-powered features (background removal, OCR):

• Local AI models: Machine learning models run entirely in your browser
• No cloud AI services: We do not use external AI APIs that would require data transmission
• Model caching: AI models are cached locally for performance - never shared
• Private inference: All AI processing happens locally with no data transmission

3. Data Security

3.1 Zero-Risk Architecture

Since ImageDone processes no data on servers, traditional data security risks are eliminated:

• No data breaches possible: We have no user data to breach
• No server vulnerabilities: Static site architecture eliminates server-side attack vectors
• No unauthorized access: Your data never leaves your device

3.2 Browser Security

Your privacy is protected by browser security features:

• Same-origin policy: Prevents unauthorized access to your files
• File API permissions: You explicitly choose which files to process
• Memory isolation: Browser sandboxing protects your data from other websites

4. Third-Party Services

4.1 Content Delivery

ImageDone is served via content delivery networks (CDN) for performance. CDN providers may log:

• IP addresses for routing and security
• Basic request information (timestamp, requested file)
• Geographic region for content optimization

Important: CDN logs contain no personal information or image data, as images are never transmitted to servers.

4.2 No Analytics or Tracking

ImageDone does not use:

• Google Analytics or similar tracking services
• Social media tracking pixels
• Third-party advertising networks
• User behavior analysis tools
• Error reporting services that transmit data

5. Cookies and Local Storage

5.1 Essential Technical Storage

ImageDone may use browser storage for technical functionality only:

• Local storage: User preferences (theme, settings) - stored locally only
• Session storage: Temporary processing state - cleared on tab close
• IndexedDB: AI model caching - improves performance, never transmitted
• Cache API: Static asset caching - standard browser performance optimization

5.2 No Tracking Cookies

ImageDone does not use cookies for:

• User identification or tracking
• Cross-site data sharing
• Advertising or marketing purposes
• Usage analytics or behavior monitoring

6. International Data Transfers

No international data transfers occur because:

• User data is never transmitted from the browser
• All processing happens locally on user devices
• Static site architecture eliminates server-side data processing
• CDN access logs contain no personal or image data

7. Data Retention

Zero data retention because:

• No user data is collected to retain
• Images are processed in browser memory and discarded
• No logs or records of user activity are maintained
• Local browser storage is controlled entirely by the user

8. User Rights

8.1 Complete Control

Since all processing is local, you have complete control:

• Data access: All your data remains on your device
• Data deletion: Clear browser storage to remove any local preferences
• Data portability: Your images and results are always in your possession
• Processing consent: Each file is processed only when you explicitly select it

8.2 GDPR Compliance

ImageDone exceeds GDPR requirements through privacy-by-design:

• No consent required: We collect no personal data
• No right to access needed: You always have your data
• No deletion requests needed: We store no data to delete
• No data portability needed: Your data never leaves your device

9. Children's Privacy

ImageDone is safe for users of all ages:

• No data collection from users of any age
• No account creation or personal information required
• No tracking or monitoring of user behavior
• Complete privacy protection for all users

10. Changes to This Policy

This privacy policy may be updated to reflect:

• New features that maintain our zero-data principles
• Legal or regulatory requirements
• Clarifications based on user questions

Any changes will be posted on this page with an updated revision date. Continued use constitutes acceptance of changes.

11. Contact Information

Questions about this privacy policy or ImageDone's privacy practices?

• Website: https://imagedone.com
• Technical Questions: Review our open-source implementation
• Privacy Questions: This policy covers all privacy aspects of our zero-data architecture

Note: Due to our privacy-first design with no data collection, most traditional privacy concerns are eliminated by design.