Snappiconsnappicon

Privacy Policy

Last updated: May 5, 2026

1. Who We Are

Snappicon ("we", "us", "our") operates snappicon.com, a web-based icon and asset generation service. If you have questions about this policy, contact us at support@snappicon.com.

2. Information We Collect

We collect the following categories of information:

  • Account information: Your email address and, if you sign in with Google, your name and profile picture as provided by Google OAuth.
  • Payment information: Billing details are processed directly by Stripe. We store only your Stripe customer ID and subscription status — we never see or store your full card number.
  • Usage data: A hashed version of your IP address (used for free-tier rate limiting). We do not store your raw IP address.
  • Generated assets: The images you upload are processed in memory to generate your assets and are not stored on our servers.
  • Generation history: For logged-in users, we store metadata about your generations (asset types selected, timestamp) so we can display your history in the dashboard.
  • Local preferences: Your selected UI theme is stored in your browser's localStorage and never sent to our servers.

3. How We Use Your Information

  • To provide and operate the Snappicon service
  • To enforce free-tier rate limits and verify Pro/Team plan access
  • To process payments and manage your subscription via Stripe
  • To send transactional emails (welcome, receipts, limit notifications)
  • To improve the service through aggregate, anonymized usage analytics
  • To respond to support requests

We do not sell your personal data. We do not use your data for advertising.

4. Third-Party Services

We use the following third-party processors. Each has its own privacy policy.

SupabaseDatabase, authentication, and session management
StripePayment processing and subscription management
GoogleOAuth sign-in (optional)
ResendTransactional email delivery
Redis Cloud (Redis Labs)Rate limit counters (hashed IP, expires daily)
VercelHosting and infrastructure

5. Data Retention

We retain your account data for as long as your account is active. If you delete your account or request deletion, we will remove your personal data within 30 days, except where retention is required by law or for fraud prevention. Rate-limit counters expire automatically at midnight UTC each day.

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Object to or restrict certain processing
  • Data portability (receive your data in a machine-readable format)
  • Opt out of sale of personal data (we do not sell data)

To exercise any of these rights, email us at support@snappicon.com. We will respond within 30 days.

7. Security

We use industry-standard security practices: HTTPS everywhere, row-level security on our database, no storage of raw payment credentials, and access controls on all internal systems. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

8. Children's Privacy

Snappicon is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us and we will delete it promptly.

9. Changes to This Policy

We may update this policy from time to time. When we do, we'll update the "last updated" date at the top. Material changes will be communicated via email to registered users.

10. Contact

Questions or concerns about this policy? support@snappicon.com