Magiq Privacy Policy

Privacy Policy

Effective date: 2025-11-10

Controller: Pyxel Bytes (sole proprietor Biel Carpi)
Address: Avinguda de les Nacions Unides 40, Escaldes-Engordany, Andorra
Email: privacy@magiqapp.com
Terms: https://magiqapp.com/terms

Magiq is an AI photo template and editing app. We take privacy seriously. This Policy explains what we collect, how we use it, and your choices.


1) Summary (plain English)

  • On-device by default. Your projects and versions are stored locally in the app. Uninstalling removes local app data. Exports saved to your device's Photos remain.
  • Edits are processed, then purged. We process your selected image and prompt securely to create your result. We do not keep a cloud library of your edits.
  • No model training. We never use your photos or prompts to train AI models.
  • Short operational retention. Processing infrastructure may briefly cache inputs for about 24 hours and keep limited abuse-monitoring logs for about 30 days. Not for training.
  • No data selling. No cross-app ad profiles. Minimal analytics for reliability.

2) Scope & Who We Are

This Policy applies to the Magiq mobile apps and our websites at magiqapp.com (the “Services”). Controller: Pyxel Bytes (Biel Carpi), Andorra - privacy@magiqapp.com.

3) What We Collect

You Provide

  • User Content: photos/videos you choose to edit and the prompts you type, per edit session.
  • Contact info (optional): name, email, such as for support or sign-in.
  • Authentication (optional): email OTP or third-party providers, including Google, Facebook, and Apple. We receive basic profile info (name, email, user ID) to create/manage your account.
  • Purchases: subscription/top-up purchase receipts from Apple or Google.

Collected Automatically

  • Usage Data: screens viewed, feature use, timestamps, device and app version, locale.
  • Identifiers: an app-instance ID; if you sign in, a Magiq user ID to manage credits and purchases.
  • Diagnostics (not linked): crash logs and performance metrics.
  • Device tokens: FCM/APNs token for push notifications, if enabled.
  • Referral data: your referral codes and relationships when you invite others or sign up via a code.
  • Advertising delivery data (Free tier): limited device/interaction data required by ad SDKs to serve and measure interstitial ads. We do not build cross-app ad profiles.

App Store Privacy (indicative)

  • Data Linked to You: Purchases; User Content submitted for processing; Usage Data; Contact Info if provided; Identifiers (user/app instance ID); Device tokens; Referral data.
  • Data Not Linked to You: Diagnostics.
  • Ads: Interstitial ads may use on-device signals to deliver and measure ads. We do not track you across other companies' apps and websites.

4) How We Use Data (Purposes)

  • Provide the Service: perform edits, show variants, export results.
  • Payments & credits: validate purchases, maintain a minimal credit ledger, restore access.
  • Referrals & rewards: track referral codes and credit rewards.
  • Push notifications: credits, tips, and feature updates, if enabled; you can opt out.
  • Reliability & safety: crash/performance metrics, fraud/abuse prevention.
  • Support & notices: respond to requests; inform you about changes.
  • Legal compliance: accounting, audits, regulatory obligations.

Legal bases (where applicable): contract, legitimate interests, and legal obligation.

5) How Editing Works & Retention

Face Data & Images

We may use face detection/segmentation to localize effects, such as lighting or skin tones. We do not create biometric identifiers, face templates, or embeddings, and do not perform identity recognition. Images are processed on secure servers under data-processing agreements that prohibit training. Inputs are used solely to execute your request, not for ads or unrelated purposes.

Deletion: transient processing copies are deleted shortly after delivery. Infrastructure may cache inputs for about 24 hours and maintain limited abuse logs for about 30 days. We do not store images beyond job completion.

Processing Flow

  • When you tap Generate, we process your selected image, prompt, and options and return a result.
  • We generate short-lived links to deliver results and then purge transient copies.
  • We do not store your edits server-side as part of your account. Accepted results are saved on your device, and to Photos if you choose.

6) Storage Locations

  • Your device: project files and versions in the app's sandbox; exports in the Photos app if enabled.
  • Cloud (transient): only for processing and secure, short-lived delivery links as described above.

7) Sharing & Service Providers

We do not sell your data. We share data only with service providers acting on our instructions and under contract, such as:

  • infrastructure & storage (hosting, short-lived result delivery),
  • analytics/diagnostics, such as Crashlytics/Performance,
  • app store & payment platforms, including Apple App Store and Google Play,
  • authentication providers, including Google, Facebook, and Apple, if you choose those sign-ins,
  • customer support tools, if used,
  • ad delivery, including interstitial ads on Free tier.

A current list of subprocessors is available on request at privacy@magiqapp.com.

8) Cookies, SDKs, Analytics, Ads

We use minimal analytics/diagnostics, such as Firebase/Crashlytics, to understand reliability and performance. Interstitial ads (Free tier): we do not build cross-app advertising profiles.

iOS ATT/IDFA: We do not access the iOS Advertising Identifier (IDFA) and do not serve personalized, cross-app ads. If this ever changes, we will first request App Tracking Transparency permission and update this Policy.

9) Your Choices & Controls

  • Photos/Camera permissions: manage in system settings.
  • Push notifications: manage in-app or disable in system settings; opt out of categories such as credits, tips, and updates.
  • Delete local data: in-app controls to clear cache or delete projects; uninstalling removes local app data.
  • Exports: saving to the Photos app keeps results outside Magiq.
  • Account deletion (in-app & web): delete your account in-app at Settings -> Account -> Delete account or via https://magiqapp.com/delete-account. We will delete associated data we are not legally required to keep and confirm within required timelines.

10) Security

We use industry-standard safeguards: encryption in transit, access controls, least-privilege practices, and short retention for transient copies. No method is 100% secure, but we work hard to protect your information.

11) Retention

  • Local projects: remain on your device until you delete them or uninstall.
  • Transient processing copies: deleted shortly after processing/delivery.
  • Infrastructure cache/logs: brief operational windows only, such as about 24 hours cache and about 30 days logs.
  • Purchases & accounting: retained as legally required.
  • Diagnostics/analytics: retained per service defaults to observe trends.

12) International Transfers

We may process data in countries outside your own. Where required, we use appropriate safeguards, such as Standard Contractual Clauses or equivalent.

13) Your Rights

Depending on your region, such as Andorra, EU/EEA, UK, or California, you may have rights to access, correct, delete, port, and object/restrict certain processing.

  • Andorra: Contact the Agència Andorrana de Protecció de Dades (APDA) or us at privacy@magiqapp.com.
  • EU/EEA/UK: You may lodge a complaint with your supervisory authority.
  • CCPA/CPRA (California): We do not sell or share personal information for cross-context behavioral advertising.

To exercise rights, email privacy@magiqapp.com. We will verify your request and respond within required timeframes.

14) Children

Magiq is not directed to children under 13, or the minimum age required in your region. If we learn a child provided personal data, we will delete it.

15) Changes

If we make material changes, we will notify you in-app or on our site and update the “Effective date.”

Contact

Company: Pyxel Bytes
Address: Avinguda de les Nacions Unides 40, Escaldes-Engordany, Andorra
Email: privacy@magiqapp.com


Stores Privacy (summary)

  • Linked to you: Purchases; User Content you submit for processing; Usage Data; Contact Info if provided; Identifiers; Device tokens for push; Referral data.
  • Not linked: Diagnostics.
  • Ads: Interstitial ads (Free tier). No cross-app tracking by us; ad SDKs may process signals to deliver and measure ads.
  • No model training on your content.