IDpho

Privacy Policy

Last updated: May 12, 2026

1. Introduction

This Privacy Policy describes how IDpho (“IDpho”, “we”, “us”, or “our”) handles information when you use our website and photo formatting service (the “Service”). By using the Service, you acknowledge that you have read and understood this Privacy Policy and agree to the practices described below. If you do not agree, do not use the Service.

The Service is provided on an “as is” and “as available” basis. To the maximum extent permitted by applicable law, IDpho disclaims all liability arising from or relating to the collection, processing, transmission, storage, loss, disclosure, or deletion of any information submitted to or generated by the Service, including photographs. See our Terms of Service for the full disclaimer and limitation of liability, which are incorporated into this Policy by reference.

2. Information We Collect

When you use the Service, we may collect:

  • Photographs you voluntarily upload for processing.
  • Your email address, which you provide so that we (and our email delivery provider) can send the processed photo to you.
  • Payment information, which is collected and processed directly by our payment processor (Stripe). We do not store your full payment card details on our servers.
  • Basic technical data such as IP address, device type, browser, referrer, approximate location, and usage information, collected automatically to operate, secure, and improve the Service.
  • Any information you voluntarily provide when contacting us (for example, through our contact form).

You are solely responsible for the content of any photograph you upload and for ensuring you have all rights and consents necessary to submit it to the Service.

3. How We Use Information

We use the information we collect to:

  • Process your photograph and format it to meet the selected document requirements.
  • Deliver the resulting photograph to the email address you provide.
  • Process payments and prevent fraud.
  • Operate, maintain, secure, monitor, and improve the Service.
  • Respond to support requests and communicate with you about the Service.
  • Comply with legal obligations and enforce our Terms of Service.

We do not use your photograph or its biometric features to train artificial intelligence or machine learning models.

4. Photo Handling and Retention

Photographs you upload are processed by the Service and are intended to be transient. Once the processed photograph has been sent to the email address you provided, we do not retain the photograph on our own servers for any longer than is reasonably necessary to deliver the Service, troubleshoot errors, or comply with law.

However, because the processed photograph is delivered to you by email through a third-party email delivery provider (see Section 5), a copy of the email and its attachments (including the photograph) may be retained by that provider, by intermediate email servers, and by your own email provider, in each case outside our control. We have no ability to guarantee the deletion of emails, attachments, or associated metadata that are held by third parties or on infrastructure we do not operate.

To the maximum extent permitted by applicable law, IDpho disclaims all liability for the continued storage, access, disclosure, loss, or misuse of photographs or emails by any third-party provider, email server, or recipient email account once the processed photograph has left our systems.

5. Third-Party Service Providers

We rely on third-party service providers to operate the Service. By using the Service you acknowledge that your information (which may include your email address and your photograph) will be transmitted to and processed by these providers, each of which is governed by its own terms and privacy policy. These currently include, without limitation:

  • Stripe — payment processing. Stripe collects and processes payment information directly and is independently responsible for the handling of that information. See Stripe’s privacy policy for details.
  • Resend — transactional email delivery. The processed photograph, your email address, and associated email metadata are transmitted through Resend in order to deliver your order. Resend may, as part of its email delivery infrastructure, temporarily store the email, attachments (including your photograph), and logs for operational, deliverability, debugging, abuse prevention, and compliance purposes, for a period determined solely by Resend and outside IDpho’s control. Resend’s handling of this data is governed by Resend’s own terms and privacy policy, which you should review.
  • Hosting, infrastructure, analytics, and security providers that enable us to run the website and process images.

We do not control, and are not responsible or liable for, the acts, omissions, security practices, availability, or data handling of any third-party provider. To the maximum extent permitted by applicable law, IDpho disclaims all liability for any loss, damage, delay, disclosure, retention, deletion, or misuse of data (including photographs and emails) by Stripe, Resend, any email server, any recipient mail system, or any other third party.

6. Security

We take commercially reasonable steps to protect information we handle, including transport-layer encryption for data in transit. However, no method of transmission or storage over the internet is fully secure. You acknowledge that you submit information, including photographs and email addresses, at your own risk, and that IDpho does not and cannot guarantee the security of any information transmitted to or from the Service or stored by any third party. To the maximum extent permitted by applicable law, IDpho shall not be liable for any unauthorized access to, alteration of, loss of, or disclosure of any information.

7. International Transfers

The Service and our third-party providers may process and store information in countries other than the one in which you reside. By using the Service, you consent to the transfer of your information to, and the processing of it in, such countries, which may have data protection laws different from those in your jurisdiction.

8. Your Rights

Depending on where you live, you may have certain rights in relation to personal information we hold about you, including the right to access, correct, delete, or restrict the use of your information, and to object to certain processing. To exercise any such right, please contact us through our contact page. We will respond as required by applicable law. Please note that some data, including data held by third-party providers (such as Resend) or that forms part of delivered emails, may be outside our control and cannot be deleted by us.

9. Children

The Service is not directed to children under 13 (or the minimum age required by the laws of your jurisdiction), and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, please contact us and we will take reasonable steps to remove it.

10. Changes to this Policy

We may update this Privacy Policy at any time by posting a revised version on this page and updating the “Last updated” date. Your continued use of the Service after any such change constitutes your acceptance of the revised Privacy Policy.

11. Contact

If you have questions about this Privacy Policy, please contact us via our contact page.