PhotoPassCreate Photo

Privacy Policy

Last updated: March 31, 2026

1. Our Privacy-First Approach

Your photo is sent to our secure servers for face detection, background removal, and compliance checking. It is permanently deleted within 24 hours and never shared or used for any other purpose.

PhotoPass is designed with privacy at its core. We collect only what is strictly necessary to deliver your order, and we delete it automatically.

2. What Data We Collect

Processed photo

After editing, the final cropped image is uploaded to AWS S3 for compliance checks and print-sheet generation. Stored temporarily — deleted within 24 hours.

Email address

Provided at checkout so we can deliver your photo. Not used for marketing unless you explicitly opt in.

Payment information

Processed by Stripe. We never see or store your card number, CVV, or billing details.

Document type selection

Used to apply the correct photo dimensions and compliance rules.

3. How We Use Your Data

  • Generate your compliant passport photo and print sheet
  • Run compliance checks on the processed image
  • Send your photo via email after payment
  • Process your payment through Stripe
  • Provide customer support if you contact us

We do not use your photos to train AI models, share them with third parties, or use them for any purpose other than delivering your order.

4. Data Retention

Photos

Automatically deleted within 24 hours of upload. Download links expire after 7 days.

Order records

Basic metadata (email, document type, status) retained for up to 90 days for support and refunds.

Payment records

Managed by Stripe per their retention policies and legal requirements.

5. Third-Party Services

AWS

S3 for temporary photo storage; Rekognition for face detection. Processed in us-west-2.

Stripe

Secure payment processing.

Resend

Email delivery of your photo files.

Cloudflare

Website hosting and CDN.

6. Cookies

PhotoPass uses only essential cookies required for the website to function (e.g., Stripe checkout session). We do not use tracking, advertising, or analytics cookies.

7. Your Rights

You have the right to:

  • Request deletion of your data at any time
  • Request a copy of any data we hold about you
  • Withdraw consent for data processing
  • Lodge a complaint with a data protection authority

Since photos are auto-deleted within 24 hours, in most cases there is no data remaining by the time a request is made.

8. Children's Privacy

PhotoPass does not knowingly collect personal information from children under 13. Passport photos of minors should be taken and submitted by a parent or legal guardian.

9. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated “Last updated” date. Continued use of PhotoPass after changes constitutes acceptance of the revised policy.

10. Contact Us

For privacy-related questions or data requests, email support@photopass.ai and we'll respond within a few hours.