Privacy Policy

1. Introduction

Welcome to ImageResizer.org. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you visit our website and use our image editing tools.

By using our service, you agree to the practices described in this policy. If you have any questions, contact us at [email protected].

2. Images You Upload

Your images are processed entirely on our servers and are immediately deleted after processing. We do not store, analyze, share, or retain any image you upload.

• Images are held in memory only for the duration of processing.
• Processed files are returned directly to your browser for download.
• No image data is written to persistent storage.
• We never use your images for training, advertising, or any other purpose.

3. Account Information

If you create an account (optional), we collect:

• Your name and email address.
• An encrypted password (we never store plain-text passwords).
• If you sign in with Google, your Google profile name and email.
• Your subscription plan and billing information (processed securely by Stripe).

We do not store payment card details. All payment processing is handled by Stripe, which complies with PCI DSS standards.

4. Usage Data

For registered users, we log basic usage information such as operation type (resize, compress, etc.) and file size in bytes. This is used solely to enforce plan limits (e.g., daily image quotas) and to improve our service. We do not log or retain file content.

5. Cookies

We use only essential cookies required to operate the service:

• Session cookies — to keep you logged in if you have an account.
• CSRF tokens — to protect against cross-site request forgery attacks.

We do not use advertising cookies, third-party tracking cookies, or analytics that identify you personally.

6. Third-Party Services

We use a small number of trusted third-party services:

• Stripe — for payment processing. Subject to Stripe's Privacy Policy.
• Google OAuth — optional sign-in method. Subject to Google's Privacy Policy.

7. Data Security

We use HTTPS (TLS encryption) for all data in transit. Account passwords are hashed with bcrypt and never stored in plain text. Our servers are located in a secure data center. We regularly review our security practices.

8. Children's Privacy

Our service is not directed to children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

9. Your Rights

You have the right to:

• Access the personal data we hold about you.
• Request deletion of your account and all associated data.
• Update or correct your account information at any time.

To exercise any of these rights, email us at [email protected].

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us: