Privacy Policy

Last updated: March 25, 2026

Introduction

SnapEasy ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

Information We Collect

We collect information you provide directly to us:

  • Account Information: Email address, name, and password when you create an account
  • HTML File Data: Your Snapchat memories_history.html export file containing metadata and references to your photos and videos
  • Payment Information: Credit card and billing details (processed securely through Stripe)
  • Usage Data: How you interact with our service, including upload times and processing status

Purpose of Data Collection

We collect and process your data for the following purposes:

  • To add correct EXIF data and organize your Snapchat memories
  • To provide and improve our services
  • To authenticate users and manage accounts
  • To process payments and prevent fraud
  • To communicate with you about service updates and support
  • To comply with legal obligations

How We Store Your Data

Your data is stored securely on:

  • Cloudflare R2: For encrypted storage of your memories file (encrypted at rest and in transit)
  • Railway: For application data and user account information
  • Stripe: For payment information (PCI-DSS compliant, we never directly handle your credit card data)

All data transfers use TLS/SSL encryption. Your account information is hashed and salted.

Data Retention and Deletion

Your uploaded memories_history.html file and associated processed data are automatically deleted within 48 hours of upload, regardless of whether you download the results. We do not retain copies of your file after this period.

Account information is retained while your account is active. You may request account deletion at any time by contacting us.

Who Has Access to Your Data

Your data is processed by:

  • Automated Systems Only: Your memories file is processed only by our automated EXIF tagging and organization algorithms
  • No Human Review: SnapEasy staff never manually access or review your uploaded files or memories
  • Service Providers: Only the third-party services listed below (Stripe, Clerk, Cloudflare, Railway) have access as needed for their functions

Third-Party Services

We use the following third-party services:

  • Stripe: Payment processing (privacy policy: stripe.com/privacy)
  • Clerk: Authentication and user management (privacy policy: clerk.com/privacy)
  • Cloudflare: File storage and CDN (privacy policy: cloudflare.com/privacypolicy)
  • Railway: Application hosting and database (privacy policy: railway.app/privacy)

We do not sell, trade, or share your data with any other third parties. Your data is used only for the services you request.

GDPR Rights (EU Users)

If you are located in the European Union, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate data
  • Right to Erasure: Request deletion of your data (except legally required records)
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing of your data

To exercise any of these rights, contact us at [email protected].

CCPA Rights (California Users)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request what personal information we collect about you
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: Opt out of the "sale" of your personal information (we do not sell data)

To exercise any of these rights, contact us at [email protected].

Data Minimization

We practice data minimization by:

  • Collecting only the information necessary to provide our service
  • Automatically deleting files after 48 hours
  • Not requiring unnecessary personal information
  • Allowing you to delete your account at any time

Security Measures

We implement industry-standard security measures:

  • TLS/SSL encryption for all data in transit
  • Encryption at rest for all stored data
  • Secure password hashing and salting
  • Regular security audits and updates
  • Restricted access to sensitive data

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the service constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: [email protected]

We will respond to your inquiry within 30 days.

See also: Terms of Service