Privacy Policy

Design by Edward George (“Service”, “we”, “us”) is operated by Edward George London. This Privacy Policy explains what personal data we collect when you use the Service, why we collect it, how we use it, and the rights you have over it.

We collect the following personal data:

• Account data — your email address, name, and avatar (if provided by your sign-in method, e.g. Google).
• Authentication data — a unique user ID, the sign-in provider you used (Google or email/password), and timestamps for sign-up and last sign-in.
• Uploaded content — room photos you upload to generate designs. Stored privately, visible only to you and our support team when troubleshooting.
• Generated content — AI-generated images produced from your inputs, plus the prompts and parameters used to create them.
• Generation logs — model used, resolution, credit cost, request and response payloads, errors. Used for customer support, debugging, and usage tracking.
• Payment data — handled entirely by Stripe; we store only the Stripe customer and subscription IDs, plan tier, status, period dates, and credit balance. We never see or store your card details.
• Attribution data — if you arrived via a UTM link or our blog, we record the campaign source, medium, referrer, landing page, and the blog post slug, so we can understand which content brings users to the Service.
• Analytics events — anonymous events (page views, button clicks, generation starts/completes) tied to your user ID after sign-in, used for product improvement.

We process your personal data under the following legal bases as defined by GDPR Article 6:

• Contract performance — account data, generation processing, payment handling, and credit management are necessary to provide the Service you signed up for.
• Legitimate interest — analytics events, attribution data, and generation logs help us improve the Service, debug issues, and understand usage patterns.
• Legal obligation — we retain certain billing records as required by tax and financial regulations.

When you sign in with Google, we request the following information from your Google Account: your email address, your name, and your profile picture. We do not request access to your Gmail, Google Drive, contacts, calendar, or any other Google service. Your Google password is never shared with us — Google handles authentication directly.

You can revoke our access to your Google Account at any time at myaccount.google.com/permissions.

Your account data, generation history, and credit ledger are stored in a managed PostgreSQL database hosted in the EU (Frankfurt region). Your uploaded photos and AI-generated images are stored in encrypted cloud storage with access-control policies that ensure only you (and our support team) can access them.

We use the following third-party services to operate the Service. Each only receives the data needed to perform its function:

• Database & authentication provider — stores your account data, generation history, and uploaded content. Hosted in the EU.
• AI image generation provider — receives your prompts, uploaded reference images, and selected style parameters; returns generated images.
• Stripe — payments. Receives your name, email, billing address, and card details when you check out. We never see your card details.
• Google — sign-in provider (only if you sign in with Google). Provides your email, name, and avatar. Google's own privacy policy governs the data Google holds about you.
• Analytics provider — receives anonymised event data for product improvement and usage analysis.
• Hosting provider — processes requests and may log IP addresses and request metadata for security and performance.

We do not sell your data to third parties. We do not use your uploads or generations to train any AI model.

We keep your account data, generation history, and uploaded content for as long as your account is active. If you delete your account, all of your personal data is removed within 24 hours, including every uploaded photo, every generated image, your generation logs, your attribution record, and your credit ledger entries.

Stripe retains your billing history independently for 7 years for tax and compliance reasons; you can request deletion of your Stripe customer record by emailing us.

You have the right to:

• Access — request a copy of the personal data we hold about you
• Correct — update inaccurate data via your account settings or by contacting us
• Delete — permanently delete your account and all associated data via the Danger Zone in Settings (instant, self-serve, irreversible)
• Export — request a machine-readable copy of your data
• Object — ask us to stop processing your data for analytics or marketing purposes
• Withdraw consent — revoke any consent you previously gave us

To exercise any of these rights, email us at hello@edwardgeorgelondon.com. We respond within 30 days as required by GDPR.

We use cookies for two purposes only:

• Authentication — to keep you signed in across sessions. Cleared on sign out.
• Attribution — to remember which campaign or blog post brought you to the Service, so signups can be attributed to the right source. Set on the apex domain (`edwardgeorgelondon.com`) so it's shared between the blog and the app. Expires after 90 days.

We do not use third-party advertising cookies. We do not run tracking pixels for retargeting.

We use industry-standard security practices to protect your data: TLS encryption for all traffic, encrypted database storage, row-level security policies that ensure each user can only access their own data, and rotation of all third-party API credentials on a regular schedule.

If we ever discover a data breach affecting your personal data, we will notify you within 72 hours as required by GDPR.

Your data is stored in the EU (Frankfurt) but is processed by third-party services that may operate globally (including Stripe and Google). All transfers rely on standard contractual clauses or equivalent legal mechanisms.

The Service is not intended for users under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it immediately.

We may update this Privacy Policy from time to time. Material changes will be notified by email at least 30 days before they take effect. The “Last updated” date at the top of this page always reflects the most recent version.

Questions about this Privacy Policy or our handling of your data can be sent to hello@edwardgeorgelondon.com. The data controller is Edward George London.