Privacy Policy

Last updated: September 18, 2025

Disclaimer (No Legal Advice). This Privacy Policy is provided for informational purposes only and does not constitute legal advice. To the maximum extent permitted by law, passport-photos.net disclaims liability for errors or omissions. Nothing here limits any non-waivable consumer rights you may have under applicable law.

1) Who We Are & How to Contact Us

Website: passport-photos.net
Email: [email protected]

We operate an online service that formats document photos (e.g., passport, visa, ID) using automated tools and rule-based checks.

2) Scope

This Policy explains how we collect, use, disclose, and safeguard information when you use our website, apps, and related services (the “Service”) in the United States. If additional notices apply (e.g., for the EEA/UK), they will be linked from this page.

3) Notice at Collection (What We Collect & Why)

We collect the following categories of personal information from you and your device, for the purposes stated below. We retain data only as long as reasonably necessary for the purpose collected, to comply with law, and to secure/maintain the Service.

  • Identifiers (name, email address, account credentials). Purpose: create/manage your account, deliver orders, customer support, security/fraud prevention, legal compliance.
  • Photos & uploaded content (images you submit for processing; resulting output). Purpose: provide the Service (formatting, cropping, background cleanup), quality assurance, troubleshooting, support inquiries.
  • Device/usage data (IP address, device type, browser, pages viewed, referrer, approximate location, events). Purpose: operate, secure, and improve the Service; analytics; detect abuse.
  • Transactional data (limited payment metadata from our processor; we do not store full card numbers). Purpose: process purchases, prevent fraud, accounting.
  • Communications (support messages, feedback, requests to exercise privacy rights). Purpose: respond, verify identity, resolve issues, meet legal obligations.
  • Cookie/Tracking data (see Section 10). Purpose: essential site functionality; with your consent, analytics and (where used) advertising measurement.

Sensitive data. We do not seek to collect government ID numbers or biometric identifiers. Our AI uses facial landmarking solely to align/crop your photo; we do not create or retain faceprints for identification. Please do not upload scans of ID documents or any content you do not have rights to share.

4) Sources of Information

  • Directly from you: forms, uploads, purchases, support contacts.
  • Automatically: cookies, device logs, analytics events.
  • From processors: payment, hosting, and analytics providers supply limited metadata needed to operate the Service.

5) How We Use Information

  • Provide and improve the Service, including AI-assisted photo formatting.
  • Deliver digital content and transaction confirmations.
  • Detect, prevent, and respond to fraud, abuse, or security incidents.
  • Comply with legal obligations and enforce our Terms.
  • With consent, perform analytics and measure performance.

6) Sharing & Disclosure

We do not sell your personal information. We may “share” limited data for cross-context behavioral advertising only if you consent to non-essential cookies (see Section 10). You may opt out at any time, and we honor Global Privacy Control (GPC) signals where required.

We disclose information to:

  • Service providers/processors (hosting/CDN, storage, payment processing, analytics, email delivery, security). They may access personal information only to perform services for us and are bound by contracts.
  • Legal/safety (e.g., to comply with law, protect rights, investigate abuse).
  • Business transfers (e.g., merger, acquisition, asset sale). Successors will be bound by this Policy or a successor policy with similar protections.

7) Data Retention

We aim to keep personal data no longer than necessary. Typical defaults (configurable):

  • Raw uploads: retained temporarily for processing and quality checks, then deleted or anonymized within a short period.
  • Output files: available for re-download for a limited time (e.g., up to 7–30 days) unless you delete earlier.
  • Account & billing records: retained as required for accounting, tax, fraud prevention, and legal obligations.
  • Support tickets & logs: retained to improve service and document resolution, then minimized or anonymized.

8) Children’s Privacy (COPPA)

The Service is not directed to children under 13, and we do not knowingly collect personal information from them without verifiable parental consent. If you believe a child under 13 provided information without consent, contact us at [email protected] and we will take appropriate steps to delete it.

9) Your Privacy Rights (U.S. States)

Depending on your state (e.g., California, Colorado, Connecticut, Utah, Virginia), you may have the right to:

  • Know/access the categories and specific pieces of personal information we collected about you.
  • Request deletion of personal information, subject to legal exceptions.
  • Request correction of inaccurate personal information.
  • Request portability of certain information.
  • Opt out of sale or sharing of personal information, targeted advertising, and certain profiling.
  • Limit use/disclosure of sensitive personal information (if applicable).
  • Be free from unlawful discrimination for exercising your rights.

How to submit a request: Email [email protected] with the subject “Privacy Request” and specify your request (access/correct/delete/opt-out). We may need to verify your identity (e.g., by email confirmation or account checks). Authorized agents may submit requests with proof of authorization and identity verification.

Appeals (where required): If we decline your request, you may appeal by replying to our decision. We will explain our final decision and your options.

10) Cookies, Analytics & Global Privacy Control

We use cookies and similar technologies:

  • Strictly necessary — essential for core functions (security, session, preferences).
  • Analytics/performance — help us understand usage and improve (set only with your consent, where required).
  • Advertising/measurement — used only if we run advertising; we will request consent where required and offer opt-out controls.

You can adjust preferences via our cookie banner (where available) and your browser settings. We honor Global Privacy Control (GPC) signals for opt-out where required by law. “Do Not Track” (DNT) is not standardized; we treat GPC as the relevant mechanism.

11) Security

We implement reasonable technical and organizational measures to protect personal information (e.g., encryption in transit, access controls). However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security. You use the Service at your own risk.

12) International Transfers

We are U.S.-based, but our providers may process data in other countries. Where required, we rely on appropriate safeguards (e.g., contractual clauses). By using the Service, you understand your information may be transferred to the United States and other jurisdictions with different data protection laws.

13) Third-Party Links & Services

The Service may link to third-party sites or integrate third-party services (e.g., payments, analytics). Their privacy practices are governed by their policies; we are not responsible for them.

14) DMCA & IP Reports

If you believe content on our Service infringes your copyright, send a DMCA notice to [email protected] including: (i) your signature; (ii) identification of the copyrighted work and material; (iii) contact info; (iv) a good-faith statement; and (v) a statement under penalty of perjury regarding accuracy and authorization.

15) No Sales to Nevada Residents

Nevada law gives Nevada residents the right to opt out of the sale of “covered information.” We do not sell covered information. You may still submit a request at [email protected].

16) Changes to this Policy

We may update this Policy from time to time. The “Last updated” date shows the most recent revision. Material changes will be posted here, and your continued use of the Service means you accept the changes.

17) How to Contact Us

Questions about this Privacy Policy or your information?

Email: [email protected]
Website: passport-photos.net

18) Additional California Disclosures (CCPA/CPRA)

  • Categories collected: identifiers; photos/uploaded content; device/usage data; transactional data; communications; cookie/tracking data.
  • Business or commercial purposes: as described in Sections 5 and 10 (provide services, security, debugging, analytics, quality improvement, transactions, compliance).
  • Retention: see Section 7; we minimize or anonymize where feasible.
  • Sale/Share: we do not sell personal information. We may share for cross-context advertising only if you consent; you can opt out at any time (including via GPC).
  • Non-discrimination: we will not discriminate against you for exercising your rights.
Liability Notice. To the maximum extent permitted by law, we are not responsible for third-party requirements (e.g., government photo standards), network or provider outages, or damages arising from unauthorized access beyond our reasonable control.