Last updated: March 2026
NanoPix ("we", "our", or "us") respects your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application. This policy complies with the EU General Data Protection Regulation (GDPR) and the EU Artificial Intelligence Act (Regulation 2024/1689).
Account Information: When you sign in with Google or Apple, we receive your email address and display name to create your account.
Photos: Photos you upload are processed by third-party AI services to apply edits. Images are transmitted securely (HTTPS), processed in real-time, and are not permanently stored on our servers. Our AI providers process images on US-based and EU-based servers in accordance with their respective privacy policies.
Usage Data: We track credit usage and subscription status to provide our service. We do not sell this data to third parties.
What face data we collect: NanoPix does not use face detection, face recognition, or any biometric identification technology. We do not extract, analyze, or store facial geometry, facial feature maps, or biometric identifiers from your photos. When you upload a photo that contains a face, the entire image (including any faces depicted) is transmitted to our third-party AI providers solely for the purpose of applying the fashion styling edit you requested.
How face data is used: Your uploaded photo, which may contain your face, is sent to our AI providers (Black Forest Labs, FAL.ai, or Google) along with a text prompt describing the fashion edit. The AI model processes the full image to generate a styled version. The AI preserves facial identity in the output to ensure the result looks like you. No facial data is extracted, catalogued, or used for any purpose other than generating your requested edit.
Third-party sharing: Photos containing faces are shared only with our AI processing providers (Black Forest Labs, FAL.ai, and Google) as described in Section 3 below. These providers process images in real-time on US-based and EU-based servers. No face data is shared with any other third parties, advertisers, or data brokers.
Storage and retention: Photos containing faces are processed in real-time and are not permanently stored on our servers or by our AI providers after processing is complete. The generated output image is returned directly to your device. NanoPix does not maintain any database of face data or facial images. Once processing is complete, the uploaded photo and the generated result are not retained by NanoPix or our AI providers.
No biometric data: NanoPix does not collect, use, or store biometric data as defined under applicable privacy laws (including BIPA, GDPR, and CCPA). We do not create faceprints, facial templates, or any mathematical representation of facial features.
AI-Generated Content Disclosure: NanoPix uses artificial intelligence to generate and manipulate images. All images produced by NanoPix are AI-generated or AI-modified content. In accordance with Article 50(4) of the EU Artificial Intelligence Act (Regulation 2024/1689), we inform you that:
How AI Processing Works: When you use NanoPix, your photo and a text prompt describing the desired edit are sent to third-party AI services via encrypted connections (HTTPS). The AI model generates a new version of your image based on the prompt. Images are processed in real-time and are not permanently stored on our servers or by our AI providers after processing.
Third-Party AI Providers: We currently use the following AI services:
BFL and FAL.ai may use your inputs and generated outputs to improve their AI models and technologies. Google does not use API inputs or outputs for model training. We may change AI providers at any time; any new provider will be subject to equivalent data protection standards.
Machine-Readable Markings: AI-generated images may contain machine-readable metadata or watermarks embedded by our AI providers to identify content as AI-generated, in compliance with Article 50(2) of the EU AI Act. We do not remove or alter such markings.
We process your personal data on the following legal bases:
We use the following third-party services:
Your photos may be transferred to and processed on servers located outside the European Economic Area (EEA), including the United States, by our AI providers (BFL, FAL.ai, Google). These transfers are conducted in accordance with GDPR Chapter V requirements. Google LLC maintains Standard Contractual Clauses (SCCs) and participates in the EU-US Data Privacy Framework (DPF) for lawful EU-US data transfers. Our other providers maintain equivalent safeguards for international data transfers.
We implement industry-standard security measures to protect your data, including: encrypted connections (HTTPS/TLS) for all data transmission, Row Level Security (RLS) on our database, HMAC verification for webhooks, and secure token storage on your device.
We retain your account information for as long as your account is active. Photos are processed in real-time and are not stored on our servers after processing is complete. AI-generated output images are returned directly to your device and are not retained by NanoPix.
Delete Your Data: You can delete your account at any time from the Profile menu in the app. This will permanently remove all your data from our systems.
Under the GDPR, you have the following rights:
To exercise any of these rights, contact us at nanopixphoto@gmail.com. We will respond within 30 days.
Our service is not directed to children under 13. We do not knowingly collect personal information from children under 13.
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.
The data controller for NanoPix is Francesco Noceti, based in Italy. For any data protection inquiries, including GDPR requests and AI Act transparency questions, contact us at:
For privacy-related questions, contact us at: