Privacy Policy
Last modified: April 2025
1. Overview
Raphael AI ("we," "our," or "this service") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your information when using our AI image generation service. Our design philosophy is privacy-first — we minimize data collection and ensure you have full control over your information.
2. Information We Collect
When you use our free generator, we collect no personal information at all — no account, no email, no tracking. When you sign in with Google for premium features, we store your Google ID, name, email, and profile picture in our database. We also store your balance and usage history. Text prompts are processed temporarily during generation and are not permanently stored. We collect anonymized technical data (browser type, page views) for service improvement.
3. Information We Do NOT Collect
We do not collect: phone numbers, physical addresses, payment card details (handled by our payment processor Creem), GPS location data, contacts or address books, browsing history outside our site, or any biometric data. Generated images are delivered directly to your browser and are not stored on our servers.
4. How We Use Your Information
Account information (Google ID, email, name) is used solely to: authenticate your identity, manage your balance, process payments, and display your usage history. Technical logs are used for: maintaining service stability, preventing abuse, and improving performance. We never sell, rent, or share your personal information with third parties for marketing purposes.
5. Payment Processing
Payments are processed by Creem (creem.io), a licensed Merchant of Record. We never see or store your credit card details. Creem handles all payment data in compliance with PCI DSS standards. We only receive confirmation of successful payments along with the transaction amount.
6. Data Storage & Retention
User account data is stored in Supabase (PostgreSQL) with encryption at rest. Auth tokens are stored as httpOnly cookies with 30-day expiration. Usage logs are retained indefinitely for your reference in the Dashboard. If you request account deletion, all your data (profile, balance, usage history) will be permanently removed within 30 days.
7. Third-Party Services
We use the following third-party services: Google OAuth (authentication), Supabase (database), Cloudflare (CDN, DNS, bot protection), Creem (payment processing), and APIMart (AI model API). Each provider has their own privacy policy and is contractually obligated to protect your data. We do not share your prompts or generated images with any third party for training purposes.
8. Cookies
We use minimal cookies: an auth-token cookie (httpOnly, secure) to maintain your login session, and a language preference cookie to remember your selected language. We do not use advertising cookies or third-party tracking cookies. Cloudflare Turnstile may set a temporary cookie for bot verification on the free generator.
9. Your Rights
You have the right to: access your personal data (visible in Dashboard), request correction of inaccurate data, request deletion of your account and all associated data, export your usage history, and withdraw consent for data processing at any time by signing out and contacting us. For GDPR, CCPA, or other privacy regulation requests, email us at raphaelai@zohomail.cn.
10. Children's Privacy
Raphael AI is not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.
11. Changes to This Policy
We may update this privacy policy from time to time. Changes will be posted on this page with an updated "Last modified" date. Continued use of the service after changes constitutes acceptance of the updated policy.
12. Contact
For privacy-related questions or requests, contact us at raphaelai@zohomail.cn. We typically respond within 48 hours.
Raphael AI privacy policy explains how we handle user data for our AI image generator platform. We are committed to transparency, minimal data collection, and user control. This policy covers data collection practices, cookie usage, third-party services, payment processing, GDPR and CCPA compliance, and your rights as a user. Raphael AI does not sell personal data, does not use prompts for AI training, and does not store generated images on our servers.