Privacy Policy

This policy describes how EditorFoto.online handles data while you use the site. The summary is unusually short for a privacy policy: your photos are never uploaded to our servers, we ask for no accounts or personal details, and the only data that exists at all is the web server's ordinary technical logs. Last updated: July 2026.

Your photos stay on your device

Every tool on this site processes images locally, through your browser's Canvas API. When you open, edit and download a photo, the file is never transmitted, uploaded, stored or copied anywhere: the entire process happens in the memory of your own computer or phone. There is no archive of user images, because the images never reach us — not even temporarily. As a further effect of re-exporting via canvas, the downloaded files contain none of the original's EXIF metadata (GPS location, camera model, date taken).

No accounts, no personal data requested

The site has no registration: we collect no names, email addresses, passwords or profiles. We use no advertising trackers and no profiling techniques. The only case in which we process any personal data of yours is when you choose to write to us through the contact page: in that case we use your email address for the sole purpose of replying, and we never add it to any list or mailing.

Technical server logs

Like any website, the server that delivers the pages automatically records some technical data about requests: IP address, date and time, page requested, browser user agent. These logs serve exclusively to keep the service secure (for example, detecting abuse or automated attacks) and to diagnose malfunctions; they are kept for a limited period and then deleted. The logs concern page requests, not the content you process: as explained above, images never pass through the server.

No selling or sharing of data

We do not sell, rent or hand over data to third parties. There are no user databases to monetize, and the technical logs are not shared except in the cases provided for by law, upon a substantiated request from the competent authorities.

Your rights

Under Regulation (EU) 2016/679 (GDPR) you have the rights of access, rectification, erasure, restriction and objection regarding personal data concerning you. In practice, the only processing that directly involves you is any email correspondence: you can request its deletion at any time. You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali).

Changes to this policy and contact

If the way the site works ever changes in a way that matters for data (for example, the introduction of anonymous traffic statistics), we will update this page and the cookie policy before switching anything on. For any question about data processing, you can write to us via the contact page.