Your privacy and data security are extremely important to us. We are committed to the responsible management, protection, and use of your personal information.
1. What Information Do We Collect?
i. Device information
ii. Data about your use of the Services
The data may be passed to the certified third-party statistical platform: Firebase, Google Analytics, Facebook Analytics, AppsFlyer and our internal data statistics system .
The above information is only used to improve the product experience and will not be sold to any third parties for any other purposes. We will not use this information for purposes other than improving the product experience and ad performance.
Besides,we may collect your following information for the purpose of providing you with the Magic Avatars feature and enhancing your user experience:
Some editing features may use TrueDepth API (developed by Apple) technologies that provide information about facial position, orientation, and topology. Such information is used only on-device and is never stored on our servers. For more information about TrueDepth API processing of your photos and videos, you may visit the following link.
We can access your photos and videos only after you grant us permission to access your camera or your devices’ photo library. You provide such a permission through the request that appears on your mobile device (it may differ depending on your device operating system). You may revoke permission to access your camera or photo library through the settings on your mobile device, and here’s how to do it.
If you use an iOS device:
Step 1. On your iPhone or iPad open the Settings app.
Step 2. Scroll down and tap “Privacy”.
Step 3. Tap “Camera” or “Photos”.
Step 4. Next to Pica AI, toggle the permissions switching on or off.
If you use an Android device:
Step 1. On your device open the Settings app.
Step 2. Tap “Apps”.
Step 3. Tap “Pica AI”. If you can’t find it, tap “See all apps”. Then, choose Pica AI.
Step 4. Tap “Permissions”.
Step 5. To change a permission setting, tap it, then choose “Allow” or “Don’t allow”.
Special Instructions for Photo Information. The protection of your personal privacy and data are of utmost importance to us in designing and providing our services. When you use the Personalized Magic Avatar feature, our AI algorithm will analyze the photos you upload and use the data to learn your facial features in order to generate personalized avatars. We will immediately and permanently delete your photos and facial features once the avatars are generated by our AI algorithm, i.e., we do not keep any of the photos you upload, nor do we keep any AI generated facial features.
Most data processing activity occurs only on your device, and the images you generate are stored on our servers for you to access and download at any time by logging in. You can permanently delete these images at any time; after deletion, they are no longer stored on our servers.
Your photo data will only be used in the avatar generation process and will not be used for any other purpose, nor will we share, sell, or transfer your information to any third party.
Information about your gender: When you use our Magic Avatars feature, we ask you about your gender. This information is used by the AI model solely to generate the Avatars in accordance with the indicated gender: for example, if you choose to identify your gender as a female, then you will receive conventionally more feminine-like Avatars.
Your email: When you create an account with Pica AI, we ask you to provide your email that will be further used for your sign-in process.
iii. Monetization and Analytical Information from Other Sources
Third-party SDKs integrated in our app may access your information, including:
iv. Android Advertising ID
We use your Android advertising identifier in order to provide you with customized advertisement experience. It is used exclusively for advertising and analytics. Please note that the advertising identifier does not contain any user sensitive information that can be used to identify you as a user or your device. It is not connected to personally-identifiable information or associated with any persistent device identifier (for example: SSAID, MAC address, IMEI, etc.).
v. Other Information
We may collect information that you directly and voluntarily provide to us. The information includes but is not limited to: your email address, the content of feedback, and the content of the questionnaire answered by you.
vi. Designated Countries
For all information listed above, pursuant to the EU General Data Protection Regulation (“GDPR”) or any equivalent legislation (collectively “Data Protection Laws”), we process the personal information of users located in the European Economic Area (“EEA”), United Kingdom and Switzerland (collectively, the “Designated Countries”) based on our contract with you.
2. How Do We Use the Information?
i. To improve and optimize the Services
To provide better Services to you, we have a legitimate interest to collect and process necessary data to:
ii. To provide the Services
To provider the Services, we process data necessary to:
iii. To carry out activities related to advertisements and marketing
To send you personalized advertising and marketing materials, we may use the information collected from you such as ad identifiers, age, country, region, gender, language, games played by you, information related to the interaction of you with the Services and with other users, and so forth.
We may also use various third party advertising and marketing partners to assist us on our behalf and may share information collected from you with such third parties for this purpose.
Hence, we have a legitimate interest to process necessary data to:
We encourage you to review the privacy policies of our third party advertising and marketing partners so that you can understand how these third parties collect, use and share your information. We are not responsible for the privacy policies of any third party whether accessed through the Services or otherwise.
iv. To secure the Services
Ensuring security in the course of performing the Services is a top priority for us. We take appropriate security and technical measures to protect your information from unauthorized access, loss and misuse. To achieve this purpose, we also request our suppliers who process personal information on our behalf to take appropriate security measures.
In order to keep the Service safe, to fight fraud and to ensure acceptable use otherwise, we have a legitimate interest to process necessary data to
Despite our efforts, we cannot guarantee the absolute security of your personal data, nor can we ensure the security of any of the communication facilities provided by us. We recommend that you exercise caution when disclosing any information through the Services. In particular, please note that any personally identifiable information or personally sensitive data that you communicate or disclose to any user in connection with the Services may be collected and used by others. As such, you should take care of the information shared online. Please also be reminded that any questions, answers, comments, submissions that you post in the forum will be publicly available.
v. Designated Countries
For all purposes listed above, pursuant to the EU General Data Protection Regulation (“GDPR”) or any equivalent legislation (collectively “Data Protection Laws”), we process the personal information of users located in the European Economic Area (“EEA”), United Kingdom and Switzerland (collectively, the “Designated Countries”) based on our contract with you.
3. What Information Do We Share?
As mentioned above, your personal information may be shared with our third-party partners. We may disclose your personal information to our business partners, including advertisers, publishers, and data tracking companies. These business partners may use your personal information to show you advertisements, measure your ad/site interaction, and better understand the site and app traffic usage or user behavior in order to improve their services. Such partners’ use of the information that we disclose to them will be governed by their privacy policies.
4. What Are the Important Permissions We Request?
Depending on the context of your interactions with us, we may ask you to provide certain permissions in order to let our app perform properly. You may choose to opt-out anytime, but please note that not giving us these permissions can result in malfunctioning of our app. The permissions we ask are listed below:
5. Legal Basis of Your Personal Data
In some instances, you may be required to provide us with Personal Data for processing as described above, in order for us to be able to provide you all of our services, and for you to use all the features of our app.
6. Your Rights
We provide you with the rights described below when you use our Services. Please contact us at email@example.com if you would like to exercise your rights under applicable law. When we receive an individual rights request from you, please make sure you are ready to verify your identity. Please be advised that there are limitations to your individual rights. We may limit your individual rights in the following ways:
i. Right to withdraw consent
If we rely on consent to process your personal information, you have the right to withdraw your consent at any time. A withdrawal of consent will not affect the lawfulness of our processing or the processing of any third parties based on consent before your withdrawal.
ii. Right of access and rectification
If you request a copy of your personal information that we hold, we will provide you with a copy without undue delay and free of charge, except where we are permitted by law to charge a fee. We may limit your access if such access would adversely affect the rights and freedoms of other individuals. You may also request to correct or update any of your personal information held by us, unless you can already do so directly via the Services.
iii. Right to erasure (the “Right to be Forgotten”)
You may request us to erase any of your personal information held by us that: is no longer necessary in relation to the purposes for which it was collected or otherwise processed; was collected in relation to processing that you previously consented to, but later withdrew such consent; or was collected in relation to processing activities to which you object, and there are no overriding legitimate grounds for our processing.
iv. Right to restriction
You have the right to restrict our processing your personal information where one of the following applies:
We will only process your restricted personal information with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest. We will inform you if or when the restriction is lifted.
v. Right to object to processing
You may object to our processing at any time and as permitted by applicable law if we process your personal information on the legal basis of consent, contract or legitimate interests. We can continue to process your personal information if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.
vi. Right to data portability
If we process your personal information based on a contract with you or based on your consent, or the processing is carried out by automated means, you may request to receive your personal information in a structured, commonly used and machine-readable format, and to have us transfer your personal information directly to another “controller”, where technically feasible, unless exercise of this right adversely affects the rights and freedoms of others.
vii. Notification to third-parties
If we share your personal information with third parties, we will notify them of any requests for rectification, erasure or restriction of your personal information, unless this proves impossible or involves disproportionate effort. Upon your request, we will identify such third parties.
viii. Automated individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing of your personal information, including profiling, which produces legal or similarly significant effects on you, unless an exception applies under applicable law.
ix. Right to lodge a complaint
If you believe we have infringed or violated your privacy rights, please contact us at firstname.lastname@example.org, so that we can work to resolve your concerns. You also have a right to lodge a complaint with a competent supervisory authority situated in a Member State of your habitual residence, place of work, or place of alleged infringement.
8. Residents of California, Virginia, Colorado, Utah, and Connecticut may have statutory rights under state comprehensive privacy law including the rights specified below. You can exercise these rights by contacting us (for contact information, please, see How to Contact Us Section).
Please keep in mind that in case of a vague request to exercise any of the aforementioned rights we may engage with you in a dialogue to ask for more details if so needed to complete your request. In case this is impossible, we reserve the right to refuse granting your request.
Following the provisions of the applicable law, we might also ask you to prove your identity (for example, by requesting your user or some other proof of your identity) in order for you to invoke the mentioned rights. This is made to ensure that no right of third parties is violated by your request, and the mentioned rights are exercised by an actual Personal Data subject or an authorized person.
Please note that we will process your request within 1 month after receiving it. We may extend this period by two months where necessary, taking into account the complexity and number of the requests. If we extend the response period, we will let you know within one month from your request. We will not discriminate against you for exercising your rights under the law.
7. How You Exercise Your Rights
To exercise your rights described above, please submit a verifiable consumer request to us . Only you or your authorized agent may make a verifiable consumer request related to your personal information. You may only make a verifiable consumer request for information twice within a 12-month period. A verifiable consumer request must:Provide sufficient information that allows us to reasonably verify your identity and make us confirm we collected personal information about you.Describe your request with sufficient details that allows us to understand and respond to it.
We cannot respond to your request accurately if we cannot verify your identity.
8. How We Respond Your Request
We endeavor to respond to a verifiable consumer request within 45 days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period by email, telephone or other electronic means.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
We will not discriminate against you for exercising any of your CCPA rights. Such discrimination include: denying you our services; charging you different prices or rates for our services; providing you a different level or quality of our services; suggesting that you may receive a different price or rate for services or a different level or quality of services.
10. Data collection instructions for minors
These Services do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do necessary actions. For users aged 13~16, they have the right to opt in, and if you are the parent or guardian of users who are aged 13~16, you can also contact us.
11. Children's Privacy
These Services do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do necessary actions.
12. Changes to the Policy
Any information that is collected is subject to the Policy in effect at the time such information is collected. We may, however, modify the Policy from time to time. If such change has been made, we will provide you additional forms of notice of modifications or updates as appropriate under the circumstances. Your continued use of our app or services following the change of the Policy will mean you accept those changes.
13. Contact Us
If you have any questions or concerns about the Policy, you may contact us at email: email@example.com.