Legal

Privacy Policy

Last updated: 2026-05-17

Overview

PhotoMix is an AI media generation app operated by Neuro Media Lab for creating images, videos, upscales, and visual effects. This policy explains what data the app collects, why it is collected, how it is processed, and how users can request support or deletion.

Data We Collect

Account information: email address and authentication identifiers used to create and access an account.
User content: prompts, selected settings, uploaded images or videos, and generated image or video outputs.
Billing records: credit package, invoice status, provider transaction identifiers, and top-up history for crypto payments.
App activity: generation status, model choice, timestamps, credit reservations, completed credits charged, and error details needed to operate the service.
Device or file metadata: upload content type, file size, media duration when available, and asset URLs needed to validate and process uploads.

The app does not collect precise location, contacts, SMS, call logs, health data, advertising ID, or on-device crypto wallet keys.

How We Use Data

We use data to authenticate users, keep accounts secure, submit user-selected prompts and media to AI generation providers, store and display uploaded and generated media, reserve and reconcile generation credits, create and reconcile Plisio crypto invoices, provide support, troubleshoot failures, and prevent abuse.

Third-Party Processors

PhotoMix uses Supabase for authentication, database records, and Edge Functions; Cloudflare R2 for uploaded and generated media storage; fal.ai for AI media generation processing; and Plisio for hosted crypto checkout and payment status callbacks. These providers process data only as needed to provide the app's features.

User Content And AI Processing

When a user starts a generation, prompts and reference media may be sent to fal.ai or another configured model provider. Generated outputs are copied to PhotoMix storage so the user can view their work in the app. Users should only upload media they have the right to use.

Payments

The Android MVP uses crypto credit top-ups through Plisio hosted checkout. PhotoMix stores invoice identifiers, invoice URLs, package details, provider status, and payment completion status. The app does not store private wallet keys.

Data Sharing

We do not sell user data. We share data with service providers only to operate account, generation, storage, billing, security, and support features.

Data Retention

Account, wallet, billing, generation, upload, and output records are retained while an account is active so the service can show credit history and generated work. Some billing or security records may be retained where required for fraud prevention, tax, accounting, dispute handling, or legal compliance.

Account Deletion

Users can request account deletion from Profile > Request Account Deletion or by emailing support@photomix.app with the subject "PhotoMix account deletion request". After verifying the request, we delete or anonymize account data and associated user content unless retention is required for legal, security, billing, or dispute reasons.

Security

Data is transmitted over HTTPS. Server-side secrets for Supabase, Cloudflare R2, fal.ai, and Plisio are stored outside the mobile app. Direct uploads use signed URLs.

Children

PhotoMix is not intended for children under 13 and should not be listed as directed to children in Google Play Console for the MVP release.

Contact

For privacy or support requests, contact support@photomix.app.