Privacy Policy
Last updated: July 3, 2026
Overview
PicMe ("we," "us," or "our") lets you create and share photo albums and collect photos from others through invite links. This Privacy Policy explains what information we collect when you use our iOS app, guest website, and related services, how we use it, and the choices available to you.
PicMe currently supports photo uploads and shared albums. Video uploads are not available at this time.
Information we collect
- Email address — used for account creation, sign-in, and support communication.
- Display name and username — shown in the app and on shared albums to identify who created or uploaded content.
- Login provider information — when you sign in with Apple, Google, Facebook, or similar providers, we receive account identifiers and basic profile information allowed by that provider and your settings.
- Uploaded photos and media — photos you upload, album content, and related metadata (such as file type and upload timestamps).
- Album and invite link data — album titles, settings, invite link tokens, and guest upload activity needed to operate shared albums.
- Reports and moderation data — if content is reported, we process report details and related album or account information.
- Basic usage and security logs — device type, browser type, IP address, and log data used for security, troubleshooting, and service operation.
How we use information
We use information to:
- Authenticate you and secure access to your account, albums, and uploads.
- Show who uploaded or created content in shared albums.
- Operate shared albums, guest uploads, invite links, and related features.
- Provide support, operate reporting and moderation features, and protect users and the service.
- Enforce plan limits, upload restrictions, and subscription entitlements where applicable.
- Comply with legal obligations and prevent abuse or misuse.
User-generated content, reports, and moderation
PicMe hosts user-generated photos and videos uploaded by album owners, members, and guests through shared albums and invite links. Guests and signed-in users may submit reports about abuse or inappropriate content. Album owners can review reports for albums they own and may hide reported media from normal gallery access.
Submitting a report does not guarantee immediate review or automatic removal. PicMe does not use automated AI or image-scanning moderation to approve or remove uploads. Album owners are the primary reviewers for their albums; PicMe may assist with abuse or safety escalations through support.
When content is removed through moderation, it may be hidden from normal album access (soft-removal). That does not necessarily mean immediate physical deletion from storage or backups, which may persist for a period as described in our retention practices.
Report and moderation-related information may include:
- Report reason and optional details you provide.
- Album, photo, or invite-link context needed to process the report.
- Hashed invite or reporter context (for example, hashed guest link tokens) — not raw invite tokens in routine API responses.
- Browser user agent and/or hashed IP address when configured and available, used for abuse prevention and security.
- Upload block records when album owners restrict uploaders.
To protect albums, PicMe may apply upload safety measures such as file-type validation, plan and storage limits, upload blocks, and rate limits on guest upload attempts. These measures help reduce abuse but do not guarantee that all harmful content will be prevented.
Service providers
We use trusted service providers to operate PicMe. Depending on the feature you use, data may be processed by:
- Supabase — authentication, database, and backend services.
- Amazon Web Services (AWS S3) — storage and delivery of uploaded photos.
- Resend — transactional or support-related email delivery, where applicable.
- Apple, Google, and Facebook — sign-in and account authentication when you choose those providers.
- Vercel — hosting and delivery of our guest website.
We do not sell your personal information.
Retention and security
We retain information for as long as needed to provide the service, comply with legal obligations, resolve disputes, and enforce our agreements. We use reasonable technical and organizational measures to protect information, but no method of transmission or storage is completely secure.
Account deletion
You can delete your PicMe account in the iOS app under Settings → Delete Account. When you do, your account is removed, your profile is anonymized, album access is revoked, invite links are disabled, and your albums and uploaded media are removed from active use in the app.
We do not promise that all data or media files are instantly and permanently erased from every system. Some records may be retained for security, legal, billing, abuse-prevention, backup, or operational purposes. Media files and backups may be removed from storage systems on a delayed or best-effort basis.
Deleting your PicMe account does not automatically cancel an active Apple subscription. You can manage or cancel subscriptions from your Apple ID subscription settings.
For step-by-step instructions and email alternatives, see our Data Deletion Instructions.
Your choices
Depending on your location, you may have rights to access, correct, delete, or restrict certain processing of your personal information. To submit a privacy or data deletion request, use in-app deletion, email support@getpicme.app, or see our Data Deletion Instructions.
Children
PicMe is not directed at children under 13 (or the minimum age required in your region). We do not knowingly collect personal information from children.
Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date.
Contact
Questions about this Privacy Policy: support@getpicme.app
