Privacy Policy

This Policy defines the handling of user information (including personal information and personal referable information) in StillSnap (hereinafter referred to as "the Service").

Article 1. Handling of Captured Data

  1. Local Processing (Principle): In principle, images and data captured using the Service are stored only on the user's local device. The Company does not automatically upload or collect captured content to its servers.
  2. Use of Cloud AI Features: When a user utilizes cloud-based AI features (such as AI Refinement or AI Translation), the extracted text data is transmitted to the Company's proxy server for license authentication and usage limit management.
  3. Data Forwarding and Storage: The proxy server securely forwards the data to external AI service providers (e.g., Google Cloud). The Company's proxy server does not permanently store the content of the transmitted text data. Furthermore, the external AI service providers process the data via enterprise APIs, and the data is not used to train their AI models.

Article 2. Information We Collect

We collect and handle the following information to provide the Service, and may collect additional information for future improvements:

  1. Account and Authentication Data: Hardware ID (HWID), IP address, and license keys for subscription status management, device registration, and API usage management.
  2. Payment and Transaction Data: Subscription payments for the Service are processed through independent third-party platforms (Merchant of Record, e.g., Microsoft Store, Lemon Squeezy). The purchase contract is established directly between the user and the platform provider, and the Company does not directly hold the user's credit card numbers or sensitive payment details.
  3. Embedding Identifiers in Aggregated Products: For the purpose of copyright protection and ensuring posterior traceability, a hashed identifier is embedded in the output files **only when generating aggregated formats (PDF/ePub)**. Individual image captures remain clean and do not include these identifiers. This identifier is managed only by the Company and will not be disclosed to third parties unless there is a formal legal request from state institutions.
  4. Technical Log Information (Future Provision): Although not currently actively collected, we reserve the right to collect application crash reports, operation logs, OS versions, device types, and feature usage frequencies in an anonymized state for future quality improvements and debugging.
  5. Website Analytics (Cookies): Our website (aufheben.xyz) uses Google Analytics 4, which uses cookies to collect anonymous usage data (such as pages viewed and referral source) for service improvement. Analytics cookies are activated only after you agree via the cookie consent banner, and you can decline at any time. For details, see Google's Privacy Policy.

Article 3. Purpose of Use

  1. For managing subscription status, license authentication, and providing API limits (AI token management).
  2. For fixing bugs and providing technical support for the Service.
  3. For developing new features and improving the user experience.
  4. For providing information (advertising and promotion) regarding other applications, services, or new features provided by the Company.

Article 4. Third-Party Services and Advertisements

  1. Advertisement Display: The Service may display advertisements or promotional information from the Company or third parties in certain subscription tiers.
  2. Technical Communication for Ads: These advertisements are provided as web-based content. Accessing or displaying these ads involves standard web communication, such as the transmission of IP addresses and User-Agent information to the ad delivery servers (including third-party servers).
  3. External Links: Advertisements may contain links to third-party websites. The handling of information on the linked websites is governed by the privacy policies of those respective third parties.

Article 5. Third-Party Disclosure and Outsourcing

  1. No Unauthorized Disclosure: The Company will not provide user information to third parties in a state that can identify an individual without the user's consent, except as specified in this Policy or as required by law.
  2. Outsourcing to Service Providers: We may entrust the handling of user information to trusted service providers (e.g., cloud infrastructure providers, API providers for AI features) for the purposes described in this Policy.
  3. Technical Data Transfers: Data transfers that occur as a technical necessity for providing features (AI processing, ad display, etc.) as described in Article 1 and Article 4 shall be handled in accordance with this Policy.

Article 6. Withdrawal of Consent and Data Deletion

  1. Upon receiving a request for the deletion of personal data, the Company shall erase or anonymize the personal data within a reasonable period, except for information that must be retained under applicable laws.
  2. Management of Registration Information: Cancellation of subscriptions or management of payment-related information must be performed directly through the customer portal provided by each payment platform (Merchant of Record).