Legal
Privacy Policy
This policy explains what personal data Keepsakes ("Keepsakes", "we", "us") collects, why, and your rights over it. Effective: 4 June 2026.
Google API Limited Use Disclosure
Keepsakes' use and transfer of information received from Google APIs to any other application will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
We access your Google account solely to authenticate you and, with your explicit consent, to import photos from Google Photos into your Keepsakes project. We do not use your Google data for advertising, profiling, or any purpose beyond delivering the Keepsakes service to you. We do not sell your Google user data.
1. Who We Are (Data Controller)
Keepsakes operates the website at https://keepsakes.photos and the Keepsakes photo-book application. For data-protection purposes we are the data controller.
Contact: privacy@keepsakes.photos
2. Data We Collect
We collect the following categories of personal data:
| Category | What it includes | Source |
|---|---|---|
| Account data | Name, email address, profile picture | Google OAuth |
| Google Photos | Photos and metadata (timestamps, GPS, album names) that you choose to import | Google Photos API (with your consent) |
| Uploaded photos | Images you upload directly from your device, including embedded EXIF data (GPS, timestamp, camera model) | You |
| Trip & project data | Trip titles, descriptions, itinerary stops, collaborator emails, story prompts | You |
| AI usage data | Story prompts and photo selections you submit to the AI concierge | You |
| Order & payment data | Delivery name and address; payment processed by our payment provider (we never see raw card numbers) | You / Payment provider |
| Usage & device data | Browser type, pages visited, feature interactions, IP address — used for debugging and improving the service | Automatically |
3. How We Use Your Data
- Authenticate you and maintain your account (legal basis: contract performance).
- Store your photos, trips, and layouts while you design your book (contract performance).
- Pass photo and order details to our print partner Prodigi to fulfil your physical book order (contract performance).
- Use the Claude AI (Anthropic) to generate story suggestions, captions, and book layouts based on your inputs (contract performance / legitimate interest).
- Detect and group faces in your photos to help you tag people (on-device processing; no biometric data stored server-side) (legitimate interest).
- Geocode GPS coordinates from your photos to place-name text using the Nominatim API (legitimate interest).
- Send you transactional emails about your order status (contract performance).
- Improve and debug the service using aggregated, anonymised usage analytics (legitimate interest).
We do not sell your personal data, use it for advertising, or share it with any party other than those listed in Section 5.
4. Google Photos — Scope and Use
When you choose to import from Google Photos, we request the following OAuth scope:
photoslibrary.readonly— allows us to read (not write) your Google Photos library so you can select images to import into your Keepsakes project.openid email profile— provides your name and email to create and identify your account.
We do not:
- Write to, modify, or delete any content in your Google Photos library.
- Share your Google Photos content with third parties other than the print partner (Prodigi) solely to fulfil your book order.
- Use Google user data to train AI or machine-learning models.
- Store Google Photos beyond what is needed for your active project (see Section 6 for retention).
5. Third Parties We Share Data With
| Provider | Purpose | Privacy policy |
|---|---|---|
| Authentication (OAuth 2.0) and optional Google Photos import | Policy ↗ | |
| Supabase | Secure cloud database and file storage for your photos and project data | Policy ↗ |
| Anthropic | Claude AI processes your story prompts and photo metadata to generate captions and layout suggestions; data is not retained for training | Policy ↗ |
| Prodigi | Global print-on-demand partner that receives your final book file and delivery address to print and ship your order | Policy ↗ |
| Nominatim / OpenStreetMap | Converts GPS coordinates from your photos into readable place names (no photos transmitted, coordinates only) | Policy ↗ |
6. How Long We Keep Your Data
- Active projects: Your photos and project data are stored for as long as your project exists in your account.
- After delivery (default): Photo files and layouts are permanently deleted from our storage within 90 days after your book order is marked delivered.
- Account deletion: When you delete your account, all associated photos, trips, and personal data are permanently deleted within 30 days.
- Order records: Basic order records (amount, date, delivery country) are retained for 7 years to comply with financial regulations.
- Backups: Data may persist in encrypted backups for up to 30 additional days after deletion before being fully purged.
7. Your Rights
If you are in the European Economic Area, UK, or another jurisdiction with equivalent data-protection laws, you have the following rights:
- Access: Request a copy of the personal data we hold about you.
- Correction: Ask us to correct inaccurate data.
- Erasure ("right to be forgotten"): Ask us to delete your data. You can do this directly from your dashboard or by emailing us.
- Portability: Receive your data in a machine-readable format.
- Objection / Restriction: Object to or restrict processing based on legitimate interests.
- Withdraw consent: Where we rely on consent, you may withdraw it at any time by disconnecting Google Photos or deleting your account.
- Lodge a complaint: You have the right to complain to your local data-protection authority.
To exercise any right, email privacy@keepsakes.photos. We will respond within 30 days.
8. Cookies and Tracking
We use essential cookies only — primarily a session cookie to keep you signed in. We do not use advertising cookies, third-party trackers, or analytics cookies that identify you personally.
9. Children
Keepsakes is not directed at children under 13 (or 16 in the EEA). We do not knowingly collect data from children. If you believe a child has submitted data to us, contact us and we will delete it promptly.
10. Security
We use industry-standard safeguards: TLS encryption in transit, AES-256 encryption at rest, row-level access controls (Supabase RLS), and least-privilege access policies. No system is completely secure; in the event of a breach affecting your rights, we will notify you and relevant authorities as required by law.
11. Changes to This Policy
We may update this policy. If the changes are material, we will notify you by email or by a prominent notice on the site before the change takes effect. The current effective date is always shown at the top of this page.
Contact Us
For any privacy questions, data requests, or to exercise your rights:
We aim to respond within 48 hours for general queries and within 30 days for formal data-rights requests.