Privacy Policy

Privacy Policy

This policy explains what data Bananapie collects, why we collect it, who we share it with, and what choices you have. If anything is unclear, write to us at [email protected].

Independence notice. Bananapie is an independent product. We are not affiliated with, endorsed by, or sponsored by Google, Alphabet, or any of their subsidiaries. We may route requests to third-party AI models (including Google's Gemini family — sometimes informally referred to as "Nano Banana" — OpenAI, Anthropic, ByteDance, Alibaba, and others) via their public APIs. References to those models are descriptive only.

1. Who is responsible

Bananapie operates the Service. For all privacy-related requests — including access, deletion, correction, portability, or objection — contact [email protected]. We aim to respond within 30 days.

2. What we collect

You provide:

  • Account information: email address, display name, password hash or passkey credentials, OAuth profile data when you sign in with a third-party provider.
  • Payment metadata: billing country, last four digits of the card, payment-method type. Full card numbers never reach our servers; they are handled by our payment processors.
  • Content you submit: prompts, uploaded images and other media, settings you choose for each generation.

Collected automatically when you use the Service:

  • Device and browser metadata: user agent, language, screen size.
  • Network metadata: IP address and the country it resolves to (used for compliance, fraud prevention, and to identify EU/EEA/UK users for legal-notice purposes).
  • Usage logs: which features you used, jobs generated, credits consumed, errors encountered.
  • Cookies and local-device storage: session cookies for authentication; IndexedDB on your device to keep drafts of your work locally.

From third parties:

  • Profile data returned by your OAuth provider when you sign in.
  • Fraud and risk signals returned by our payment processors.

3. Why we collect it (legal bases)

We collect and process personal data to:

  • Provide the Service you requested — performance of contract.
  • Bill you and prevent fraud — performance of contract and our legitimate interest in keeping the Service viable.
  • Improve the Service, fix bugs, and analyze aggregate usage — our legitimate interest, balanced against your privacy.
  • Send service announcements, security alerts, and transactional email — performance of contract.
  • Send marketing communications (only where you have opted in) — your consent, which you can withdraw at any time.
  • Meet legal and tax obligations — legal obligation.

Where applicable under EU/UK GDPR, these correspond to Article 6(1)(b), (c), (f), and (a).

4. Sub-processors and third parties we share with

To run the Service we share the minimum necessary data with the following categories of providers. Each is bound by a data-processing agreement and uses appropriate safeguards:

  • Payment processing: Stripe, and (for regions where Stripe is unavailable) Creem and Dodo. They receive payment and billing details to process your purchase.
  • AI inference: Anthropic, OpenAI, and Google Generative AI. When you submit a prompt, the prompt and any input media necessary to fulfill the request are sent to the provider that runs the model. We do not authorize these providers to use your inputs or outputs to train their models, to the extent their published terms allow such opt-out.
  • Image generation infrastructure: OpenAI, Google, ByteDance, Alibaba, and similar providers, used to fulfill image-generation requests routed to their respective models.
  • Storage and content delivery: Cloudflare R2 (object storage) and Cloudflare CDN. Generated outputs and uploaded media are stored and delivered through Cloudflare.
  • Email: the transactional email provider configured for the Service, used to send account, billing, and security emails.
  • Authentication: Better Auth, self-hosted by us, manages sessions and password / passkey credentials.

We do not sell your personal information.

5. International data transfers

We are a global service. Your data may be processed in countries other than your own, including in the United States. Where data is transferred out of the EU, EEA, UK, or Switzerland to a country without an adequacy decision, we rely on the European Commission's Standard Contractual Clauses (2021/914) and equivalent UK and Swiss addenda, executed with each sub-processor that requires them.

6. Retention

  • Account data: retained while your account is active, plus up to 30 days after account deletion to allow recovery and to clear caches.
  • Billing records and invoices: retained for up to 7 years to meet tax and accounting obligations.
  • Generation history and outputs: retained for at least 12 months by default; you may delete individual jobs from your account at any time.
  • Refunded orders: the order record and its credit-invalidation flags are retained for audit purposes even after the funds are returned.
  • Server and security logs: typically retained for up to 90 days, longer where required for incident investigation.
  • Disaster-recovery backups: encrypted snapshots are retained for up to 30 days, after which they are overwritten. Data deleted from production may temporarily persist in those backups until they cycle out.

When the retention period ends, data is deleted or irreversibly anonymized.

7. Your rights

Depending on where you live, you have some or all of the following rights with respect to your personal data:

  • Access — receive a copy of the data we hold about you.
  • Rectification — correct inaccurate data.
  • Erasure — request deletion ("right to be forgotten").
  • Portability — receive your data in a portable, machine-readable format.
  • Restriction and objection — restrict or object to certain types of processing, including profiling and direct marketing.
  • Withdraw consent — at any time, where processing is based on consent.

To exercise any of these, email [email protected]. We may need to verify your identity before responding. Where required, we will respond within 30 days.

If you are in the EU, EEA, or UK and believe we have not handled your data correctly, you may also lodge a complaint with your national data-protection authority. In the UK, that is the Information Commissioner's Office (ICO).

If you are a California resident, you also have the rights provided under the CCPA / CPRA, including the right to know, delete, correct, and to opt out of the sale or sharing of personal information. We do not sell or share personal information for cross-context behavioral advertising.

8. Children

The Service is not directed at, or intended for, children under 16. If we learn that we have collected personal data from a child under 16 without verified parental consent, we will delete it.

9. AI-specific disclosures

  • Your prompts and uploads are sent to the AI provider that fulfills your request. They are processed to produce your output and may be retained briefly by the provider for abuse-prevention and operational purposes, per that provider's terms. We do not authorize providers to use your data to train their models, where opt-out is available.
  • AI outputs are probabilistic. They may resemble outputs produced for other users; they may be factually wrong, biased, or unsuitable for your purpose. Do not rely on the Service for medical, legal, financial, or other high-stakes decisions.
  • We do not use your prompts, uploads, or outputs to train our own public models. If we ever introduce an opt-in training program, participation will be voluntary and presented through a clear in-product consent flow that you can withdraw at any time.

10. Security

We use TLS in transit, encryption at rest for storage, hashed credentials, and session and origin protections. Access to production systems is restricted to authorized personnel and audited. No system is perfectly secure; if we ever experience a breach affecting your data, we will notify you and the relevant authorities as required by law.

11. Cookies and similar technologies

We use a small number of cookies and local-storage entries to keep you signed in, remember your preferences, and protect against fraud. We may show a cookie consent banner to visitors in jurisdictions where consent is legally required (notably the EU, EEA, UK, and certain US states). Where the banner appears, you can grant or refuse consent and change your choice later.

We do not knowingly use cookies for cross-site behavioral advertising.

12. Changes to this policy

We may update this policy as the Service evolves. For material changes we will notify active users at least 30 days before the change takes effect, by email or in-product notice. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

13. Contact

[email protected]