Privacy Policy
Last updated: April 25, 2026
We collect your email address and password (stored as a salted hash) when you register. We collect the photos you upload, along with metadata such as file size, upload date, and EXIF data (if present). We collect usage data (storage used, retrieval requests) to operate the service. We collect payment information via Stripe — we never store your card details directly.
We use AWS Rekognition to automatically scan uploaded photos for illegal content (CSAM and, for share-link content distributed to unknown recipients, NCII and explicit content). CSAM scanning is required by law and runs on every uploaded image at upload time — no human reviews your photos unless an abuse report triggers a manual review. Moderation results are stored securely and never used for advertising or any other purpose.
Photos are encrypted in transit using TLS/HTTPS for every upload, download, and API call. Photos at rest are protected by infrastructure-provider encryption on hot storage (Backblaze B2) and additionally encrypted at the application layer with AES-256-GCM in cold storage (Memory Vault), using a per-user vault key. The vault keys themselves are wrapped with a master key under our control, which means we can decrypt content when needed for restore operations and for the legally-required CSAM scanning. We never decrypt your content for profiling, advertising, AI training, or any purpose other than serving the product to you and meeting our legal obligations. Your account password is stored only as a salted hash and is never recoverable by us in plaintext. This system is close to but not the same as end-to-end encryption: a true end-to-end model would require keys held only by you, which would prevent server-side restore and CSAM scanning.
Your photos are stored to provide the service. We do not scan them for advertising purposes, use them to train AI models, sell them to third parties, or allow employees to view them (except in response to a valid law enforcement request or a manual abuse-report review).
Your photos are retained as long as your account is active. If you delete your account, your photos are permanently deleted from our systems within 30 days. Memory Vault (Glacier) photos may take up to 90 days to be fully purged from all backups.
If you are in the EU/EEA, you have the right to access, correct, or delete your personal data at any time. You can export all your data by contacting support@preserveforever.photos. You have the right to withdraw consent at any time.
We use Backblaze B2 (hot photo storage), AWS S3 Glacier Deep Archive (cold storage / Memory Vault), AWS Rekognition (content moderation), AWS KMS (encryption key management), Supabase (authentication and database), Stripe (subscription billing), and SMTP / Resend (transactional emails). Each of these services has their own privacy policy.
For privacy questions or data requests, email: privacy@preserveforever.photos