Privacy Notice
Version v1.0 · Effective date 2026-06-02
This notice explains how LinkdPhoto handles your personal data when you use linkdphoto.com. We have written it in plain English so you can actually read it.
1. Who is the controller of your data
Operator: LinkdPhotoContact: privacy@linkdphoto.com
2. How to contact us about your data
Email: privacy@linkdphoto.com
We aim to respond within one calendar month.
3. What this notice covers
This notice covers the linkdphoto.com website and the LinkdPhoto headshot generation service. We do not run user accounts. We do not keep a permanent archive of your images.
4. What data we process and why
When you use LinkdPhoto, we process the following categories of personal data:
| Category | What this is | Why we process it |
|---|---|---|
| Uploaded image | The selfie you upload | To generate professional headshots for you |
| Generated images | The three headshots LinkdPhoto produces | To deliver the service result to you |
| Email address | The email you provide at checkout | To send your purchase confirmation, the download link, and the consent record |
| Payment data | Card and transaction information | Stripe handles this directly; we receive only the outcome (paid/failed) and an order ID |
| Technical data | IP address, user agent, basic request metadata | To operate the service, enforce rate limits, and detect abuse |
| Consent records | Timestamps and version IDs of consent checkboxes you ticked | To demonstrate compliance with consent requirements under GDPR and EU consumer law |
5. Lawful basis for processing
| Activity | Lawful basis (GDPR Art. 6) |
|---|---|
| Generating headshots from your uploaded selfie | Performance of a contract (Art. 6(1)(b)) — you have asked us to perform the service |
| Sending purchase and consent confirmation email | Performance of a contract + legal obligation under EU consumer law (Art. 6(1)(b) and 6(1)(c)) |
| Rate limiting, fraud detection, abuse prevention | Legitimate interests (Art. 6(1)(f)) — protecting service availability |
| Daily cost cap and usage counting | Legitimate interests (Art. 6(1)(f)) |
| Temporary storage of your facial image during the 36-hour processing window | Performance of a contract (Art. 6(1)(b)) and your explicit consent (Art. 6(1)(a)) at the upload step |
6. Facial images and special-category data
We treat your facial image as biometric data under GDPR Art. 9 as a precaution, and we rely on your explicit consent (collected at the upload step) for all processing. We do not use your image to identify you. We use it only as input to a generative AI model that produces new images. The original and generated images are deleted automatically after 36 hours.
7. How long we keep your data
| Data | Retention |
|---|---|
| Uploaded selfie | Automatically deleted 36 hours after upload |
| Generated headshots (free previews and paid HD versions) | Automatically deleted 36 hours after generation |
| Data held by Google (Gemini) for abuse monitoring | Google may retain submitted images for a limited period for abuse detection purposes, generally up to approximately 55 days, per Google's published Gemini API data handling documentation. See Google's terms for current policy. |
| Email confirmation | Retained in our transactional email log and in Stripe's records for as long as legally required, typically 6–7 years for accounting purposes under Finnish bookkeeping law |
| Order record (order ID, payment status, consent timestamps — no images) | Retained typically 6–7 years under Finnish bookkeeping and consent-compliance requirements |
| Technical/security logs (IP, user agent) | Retained for up to 90 days for security purposes, then deleted or anonymized |
8. Recipients and sub-processors
We use the following third-party services to operate LinkdPhoto. They process your data on our instructions under GDPR Art. 28, except where noted as separate controllers.
| Sub-processor | Role | Location |
|---|---|---|
| Supabase | Database hosting, image storage during the 36-hour window | EU region |
| Vercel | Web hosting, serverless functions, server-side request logs | Global edge network with primary processing in EU regions |
| Google (Gemini Image API) | Generative image processing. Google may retain inputs for up to approximately 55 days for abuse monitoring (see §7). | Google data centers; see Google's terms for current locations |
| Stripe | Payment processing | Stripe acts as a separate controller for some payment-related processing |
| Resend | Transactional email delivery | EU region (Ireland) |
| Cloudflare | DNS, edge security, bot protection (Turnstile) | Global edge network |
9. International transfers
Some sub-processors (Google, Stripe, Cloudflare, Vercel) operate globally and may process data outside the European Economic Area. Where this happens, we rely on the safeguards offered by those sub-processors, which generally include:
- Standard Contractual Clauses (SCCs); and
- Where applicable, the EU–US Data Privacy Framework.
10. How we protect your data
- Images are stored in EU-region object storage with access restricted to server-side service roles.
- All data in transit is encrypted via HTTPS.
- Images are automatically deleted after 36 hours.
- We enforce daily cost caps and per-user rate limits to make abuse expensive.
- We do not create user accounts, which means less data to lose if a breach occurs.
11. Your rights under the GDPR
You have the right to:
- Access: ask what data we hold about you.
- Rectification: ask us to correct inaccurate data.
- Erasure: ask us to delete your data. In most cases data is already auto-deleted within 36 hours.
- Restriction: ask us to limit how we process your data.
- Portability: receive your data in a structured, machine-readable format.
- Objection: object to processing carried out on the basis of legitimate interests.
- Withdraw consent: where we rely on your consent, you may withdraw it at any time. Withdrawal does not affect processing already lawfully carried out.
To exercise any right, email privacy@linkdphoto.com. We will respond within one calendar month.
12. Your right to lodge a complaint
If you believe we have handled your data unlawfully, you have the right to lodge a complaint with the supervisory authority in the EU country where you live, work, or where the alleged infringement took place. The Finnish authority is:
Tietosuojavaltuutetun toimisto / Office of the Data Protection OmbudsmanLintulahdenkuja 4, 00530 Helsinki
PO Box 800, 00531 Helsinki
tietosuoja@om.fi
https://tietosuoja.fi
13. Cookies
We use strictly necessary cookies only. We use Cloudflare's __cf_bm cookie for bot protection. We do not use marketing, advertising, or analytics cookies.
14. Changes to this notice
We may update this notice from time to time. When we do, we will change the version number and effective date at the top. Material changes will be flagged on the homepage for a reasonable period.
15. Effective date and version
- Version: v1.0
- Effective date: 2026-06-02