Legal

Privacy Policy

Last updated: March 21, 2026

Table of contents

Introduction
Data we collect
How we use your data
Data sharing
Blockchain & IPFS
Data retention
International data transfers
Your rights under GDPR
Data security
Cookies & tracking
AI data processing
Children's privacy
Changes to this policy
Contact & DPO

1. Introduction

This Privacy Policy explains how PhotoSEO Vision (“the Service”, “we”, “us”, “our”), operated by Franklyn K Photography, collects, uses, stores, and protects your personal data.

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR), the French Data Protection Act (Loi Informatique et Libertés), and other applicable data protection laws.

Data controller: Franklyn K Photography, Paris, France. Email: privacy@franklyn-k.com

2. Data we collect

2.1 Account data

When you create an account, we collect:

Data	Purpose	Legal basis
Email address	Authentication, communications	Contract performance
Name (optional)	Personalization, certificates	Legitimate interest
Password (hashed)	Authentication	Contract performance

We use Supabase Magic Link authentication — we may not store a password at all if you authenticate via email link.

2.2 Billing data

When you subscribe to a paid plan:

Data	Purpose	Legal basis
Payment method (via Stripe)	Process payments	Contract performance
Billing address	Tax compliance, invoicing	Legal obligation
Transaction history	Accounting, dispute resolution	Legal obligation

We do not store your credit card number. Payment data is processed and stored exclusively by Stripe, Inc. in accordance with PCI DSS standards. We only receive a truncated card reference (last 4 digits) and transaction confirmations.

2.3 Usage data

When you use the Service:

Data	Purpose	Legal basis
Rename history (filenames, alt text, keywords)	Service delivery, article generation	Contract performance
Event metadata (venue, couple name, date)	Service delivery, copyright registration	Contract performance
Credit consumption logs	Billing, plan enforcement	Contract performance
IP address	Security, fraud prevention	Legitimate interest
Browser/device type	Service optimization	Legitimate interest
Feature usage analytics	Service improvement	Legitimate interest

2.4 Photo data

We do not store your photographs. Photos are accessed from your local device, Google Drive, or Dropbox. Only compressed thumbnails are sent for AI analysis and are not retained.

When you use the rename feature:

Photos are accessed from your local device, Google Drive, or Dropbox
A compressed thumbnail (~1024px) is sent to the Anthropic API for AI analysis
The AI returns text data (filename suggestions, alt text, keywords)
The thumbnail is not retained by us after the API call completes
Anthropic's data retention policy applies to data sent to their API (see Section 11)

When you use the blockchain copyright feature:

We compute a SHA-256 hash of your original file (a 64-character string)
We compute a perceptual hash (a short fingerprint)
Only these hashes are stored — never the photo itself
The hashes and associated metadata are registered on-chain (see Section 5)

2.5 Data we do NOT collect

Original photo files (we never store them)
Location data from your device
Contact lists or address books
Social media profiles (unless you connect them)
Biometric data
Data about minors

3. How we use your data

We use your personal data for the following purposes:

Purpose	Data used	Legal basis
Provide the Service (renaming, copyright, blog generation)	Account data, event metadata, photo hashes	Contract performance
Process payments	Billing data	Contract performance
Generate copyright certificates	Name, event metadata, blockchain records	Contract performance
Send service notifications	Email address	Contract performance
Send marketing communications	Email address	Consent (opt-in)
Prevent fraud and abuse	IP address, usage patterns	Legitimate interest
Improve the Service	Anonymized usage analytics	Legitimate interest
Comply with legal obligations	Billing data, transaction records	Legal obligation

We do not sell your personal data. We do not use your data for advertising. We do not share your data with data brokers.

We share your data only with the following categories of recipients, and only to the extent necessary:

4.1 Service providers (data processors)

Provider	Purpose	Data shared	Location
Supabase	Database, authentication	Account data, usage data	EU (Frankfurt)
Stripe	Payment processing	Billing data	USA
Anthropic	AI photo analysis, content generation	Photo thumbnails (transient), event metadata	USA
Pinata	IPFS metadata storage	Event metadata, photographer name, hashes	USA
Vercel	Application hosting	IP address, request logs	EU / USA

4.2 Public blockchains

When you use the copyright feature, the following data is written to public blockchains:

Polygon: Merkle root hash, photo count, IPFS CID, wallet address, timestamp
Bitcoin (via OpenTimestamps): SHA-256 hash anchored in a Bitcoin block

This data is public and permanent by design. It does not contain personal information, photos, or identifying details beyond a pseudonymous wallet address linked to your account.

4.3 IPFS network

Metadata pinned to IPFS includes: photographer name (as provided by you), venue name, event name, photo filenames, alt text, and keywords. This data is content-addressed and may be publicly accessible. It does not include photo files.

4.4 CMS platforms

If you use the blog publishing feature, article content is sent to your connected CMS (WordPress, Webflow) via their APIs, using your own authentication credentials. We act as a conduit — the data is published to your CMS account, not ours.

4.5 We do not share data with

Advertisers
Data brokers
Government agencies (unless required by law)
Any third party for marketing purposes

5. Blockchain & IPFS — special considerations

5.1 Immutability

Data recorded on the Polygon and Bitcoin blockchains is permanent and cannot be deleted. This includes cryptographic hashes and IPFS CIDs. This immutability is the core feature that provides copyright proof.

5.2 Right to erasure and blockchain data

Under GDPR Article 17, you have the right to request deletion of your personal data. We will delete all data stored in our database (Supabase) and request unpinning of IPFS data from Pinata. However, we cannot delete data already written to public blockchains, as we do not have technical control over these decentralized networks.

The blockchain data consists of cryptographic hashes — not personal data in the GDPR sense, as a SHA-256 hash cannot be reversed to reconstruct the original photo or identify an individual. The wallet address is pseudonymous.

5.3 Your consent

By activating the copyright protection feature, you explicitly consent to the permanent recording of hash data on public blockchains and the publication of event metadata on IPFS. You can choose not to use these features — they are opt-in on the Pro and Studio plans.

6. Data retention

Data type	Retention period	Reason
Account data	Duration of account + 30 days	Service delivery
Billing records	10 years after transaction	French tax law (Code général des impôts)
Rename history	Duration of account	Service delivery
Event metadata	Duration of account	Service delivery
Usage analytics	26 months (anonymized)	Service improvement
Blockchain records	Permanent (immutable)	Copyright protection
IPFS metadata	Duration of Pinata pinning	Copyright protection
Server logs (IP, requests)	12 months	Security

Upon account deletion, we delete all deletable data within 30 days. See Section 5 for blockchain and IPFS data.

7. International data transfers

Some of our service providers are located outside the European Economic Area (EEA). We ensure appropriate safeguards for international transfers:

Provider	Country	Transfer mechanism
Stripe	USA	EU-US Data Privacy Framework (DPF)
Anthropic	USA	EU-US DPF + Standard Contractual Clauses
Pinata	USA	Standard Contractual Clauses
Vercel	USA / EU	GDPR DPA, EU hosting option

The EU-US Data Privacy Framework was upheld by the EU General Court in September 2025 (Latombe case), providing a stable legal basis for transfers to certified US companies.

8. Your rights under GDPR

As a data subject, you have the following rights:

Right	Description	How to exercise
Access	Obtain a copy of your personal data	Email privacy@franklyn-k.com
Rectification	Correct inaccurate data	Account settings or email us
Erasure	Request deletion of your data	Account settings or email us (see Section 5)
Restriction	Limit how we process your data	Email us
Portability	Receive your data in a structured format (JSON/CSV)	Email us
Objection	Object to processing based on legitimate interest	Email us
Withdraw consent	Withdraw consent for marketing	Unsubscribe link or account settings
Lodge a complaint	File a complaint with a supervisory authority	CNIL (cnil.fr) for France

We will respond to your request within 30 days. If your request is complex, we may extend this to 60 days with notice.

9. Data security

We implement appropriate technical and organizational measures to protect your data:

Encryption in transit: all data transmitted via HTTPS/TLS 1.3
Encryption at rest: database encrypted via Supabase's AES-256 encryption
Authentication: secure magic link authentication, no password storage
Access control: role-based access, principle of least privilege
Blockchain wallet security: private keys stored in environment variables (development) or KMS (production), never in source code
Regular updates: dependencies monitored for security vulnerabilities
Incident response: documented procedure for breach notification within 72 hours per GDPR Article 33

10. Cookies & tracking

10.1 Essential cookies

We use strictly necessary cookies for:

Authentication session management
CSRF protection
User preferences (language, theme)

These cookies do not require consent as they are essential for the Service to function.

10.2 Analytics

We use anonymized, privacy-friendly analytics (no third-party tracking pixels, no Google Analytics). If we implement analytics that process personal data, we will update this policy and request your consent.

10.3 No advertising cookies

We do not use advertising cookies, retargeting pixels, or any form of ad-based tracking.

11. AI data processing

11.1 Anthropic (Claude)

When you use the AI features, compressed photo thumbnails and event metadata are sent to Anthropic's API for analysis. Anthropic processes this data to generate filenames, alt text, keywords, and article content.

Anthropic's data handling:

Anthropic does not use data sent via their API to train their models (per their commercial API terms)
Thumbnails are processed transiently and not retained beyond the API call
Anthropic is a data processor acting on our behalf

For details, see Anthropic's Privacy Policy.

11.2 No automated decision-making

The Service does not make automated decisions that produce legal effects on you (per GDPR Article 22). AI-generated content is always presented as a suggestion for your review and approval.

12. Children's privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors. If you believe a minor has provided personal data to us, contact us at privacy@franklyn-k.com and we will delete it promptly.

13. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service at least 14 days before they take effect. The “Last updated” date at the top reflects the most recent revision.

14. Contact & DPO

For questions about this Privacy Policy, to exercise your rights, or to raise a concern:

Data controller:
PhotoSEO Vision — Franklyn K Photography
Email: privacy@franklyn-k.com
Address: Paris, France

Supervisory authority:
Commission Nationale de l'Informatique et des Libertés (CNIL)
3 Place de Fontenoy, TSA 80715
75334 Paris Cedex 07
cnil.fr

This Privacy Policy is effective as of March 21, 2026.