← dropia.ai

Privacy Policy

Last updated: April 15, 2025

1. Who We Are

Dropia.ai is operated by Marko Komadinić, based in Serbia. If you have any questions about this Privacy Policy, contact us at info@dropia.ai.

2. What Data We Collect

We collect the following categories of data:

  • Account data: email address and password (hashed), provided during registration via Supabase Auth
  • Product images: images you upload for analysis — processed temporarily and not stored permanently
  • Analysis results: AI-generated analysis data stored in your account history
  • Usage data: number of analyses performed, timestamps
  • Payment data: handled entirely by Paddle — we do not store payment card details

3. How We Use Your Data

We use your data to:

  • Provide and operate the Service
  • Authenticate your account and manage your subscription
  • Store your analysis history so you can access it later
  • Improve the Service and fix issues
  • Send transactional emails (account, billing) — no marketing without consent

4. Third-Party Services

We use the following third-party services to operate Dropia.ai:

  • Supabase — database and authentication (data stored in EU)
  • Anthropic (Claude) — AI analysis engine
  • fal.ai — AI image generation
  • ElevenLabs — text-to-speech voiceover
  • Paddle — payment processing and subscription management
  • Vercel — hosting and infrastructure
  • SerpAPI / Google — product research and web search
Each of these providers has their own privacy policy. We only share data with them to the extent necessary to provide the Service.

5. Data Retention

We retain your account data for as long as your account is active. Analysis history is retained indefinitely unless you request deletion. Uploaded product images are processed and deleted immediately after analysis. You may request deletion of your data at any time by emailing info@dropia.ai.

6. Cookies

We use only essential cookies required for authentication (session tokens via Supabase). We do not use tracking or advertising cookies.

7. Your Rights

Depending on your location, you may have rights including:

  • Access to your personal data
  • Correction of inaccurate data
  • Deletion of your data ("right to be forgotten")
  • Portability of your data
  • Objection to processing
To exercise any of these rights, contact us at info@dropia.ai.

8. Data Security

We implement reasonable technical and organizational measures to protect your data, including encrypted connections (HTTPS), hashed passwords, and access controls. No system is 100% secure — if you suspect a breach, contact us immediately.

9. International Transfers

Your data may be processed in countries outside your own (including the US) by our third-party providers. These transfers are governed by the providers' data protection agreements and applicable legal frameworks.

10. Children

The Service is not directed at children under 18. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a notice on the Service. The "Last updated" date at the top reflects the most recent revision.

12. Contact

For any privacy-related inquiries: info@dropia.ai