← Back to home

Privacy Policy

Last updated: May 14, 2026

Overview

ScreenshotPop ("we", "our", or "us") respects your privacy. This policy explains how we collect, use, and protect your information when you use our service.

Information We Collect

Images you upload (free accounts): When you export an animation as a free user, your image is sent to our servers for rendering. The image is processed in memory and discarded after the render completes — we do not retain it.

Images you upload (Pro accounts): Pro accounts include cloud project save/load. When you edit as a Pro user, the screenshots in your scenes are uploaded to our servers so they persist alongside the project and can be re-opened later or from another device. These images are retained for as long as a non-deleted project references them. When a project is deleted, its images become eligible for cleanup and are removed by an automatic sweep within roughly seven days. Deleting your account removes all associated images.

Cloud projects (Pro accounts): Pro accounts can save projects to our servers. A project consists of the editor state (your scenes, layout, labels, settings) plus a small thumbnail preview. Project data is stored in our database, scoped to your account, and accessible only to you. You can delete any project from the editor; deleted projects are kept in a recoverable state briefly and then permanently removed within 30 days. Deleting your account removes all projects immediately.

Videos you upload: Uploaded videos are temporarily stored on our servers for up to 6 hours to enable editing and rendering. Videos are automatically deleted after this window. If you clear your browser session or scene before then, the video remains on our servers until the 6-hour TTL expires.

Boost Render (AWS): If you use our Boost Render feature, your source media and composition data are sent to AWS Lambda (eu-central-1) for rendering. The rendered output file is stored in an AWS S3 bucket for a short period while the browser downloads it, then cleaned up. AWS is subject to its own privacy policy at aws.amazon.com/privacy.

AI Scene Suggestions (Anthropic): If you use AI Scene Suggestions, your screenshot and the editor's current composition state (gradient settings, layout, label text) are sent to Anthropic's Claude API for the model to compose a suggested scene. Under Anthropic's commercial API terms, customer inputs are not used to train their models. Inputs may be retained by Anthropic for up to 30 days for safety and abuse review and then deleted. Anthropic is subject to its own privacy policy at anthropic.com/legal/privacy.

Account information: If you create an account, we collect your email address and basic profile information from your authentication provider (Google) for authentication and communication purposes.

Export metadata: For authenticated users, we log basic export information (format, resolution, settings used) to enforce usage limits for free accounts and improve our service.

Credit ledger: Purchases and consumption of Boost credits (used for both Boost Render and AI Scene Suggestions) are recorded against your account so we can honour the balance and refund unused credits if requested.

User presets: If you save animation presets, these settings are stored in your account so you can reuse them across sessions.

Analytics: We use self-hosted, privacy-focused analytics to understand how our service is used. This includes anonymized page views and feature usage. No personal data or tracking cookies are used for analytics.

Cookies

We use a session cookie for authentication when you sign in, and a short-lived CSRF token cookie to protect against cross-site forgery attacks. We do not use tracking, advertising, or third-party marketing cookies.

Third-Party Services

We use the following third-party services:

  • Google: For account authentication via OAuth. Google receives your authentication request but we only receive your basic profile information.
  • Creem: For payment processing (Pro upgrades and Boost credit packs). Creem handles all payment information directly. We do not store your credit card details — only a transaction identifier for receipt purposes.
  • AWS (Lambda & S3): For Boost Render. When you use Boost Render, your source media and composition data are sent to AWS Lambda for rendering, and the output is stored briefly in AWS S3 while the browser downloads it.
  • Anthropic (Claude API): For AI Scene Suggestions. When you use AI Scene Suggestions, your screenshot and the editor's current composition settings are sent to Anthropic's Claude model to compose a suggested layout. Anthropic does not use API customer inputs to train its models.
  • GoSupportIt: For collecting user feedback. Feedback you submit is processed by GoSupportIt.

How We Use Your Information

  • To render and deliver your exported animations
  • To provide and improve our service
  • To enforce usage limits on free accounts
  • To communicate with you about your account
  • To send important updates about the service

Legal Basis for Processing (UK / EU)

  • Contract: processing necessary to deliver the service you signed up for — running renders, managing your account, and handling payments.
  • Legitimate interest: analytics, abuse prevention, and service improvements.
  • Consent: where explicitly requested (e.g. marketing emails, if we ever send any).

Data Retention

  • Uploaded videos: up to 6 hours, then automatically deleted
  • Uploaded images (free accounts): held in memory for the duration of a render only — not persisted
  • Uploaded images (Pro accounts, cloud projects): retained while at least one of your non-deleted projects references them; orphaned images are swept within ~7 days
  • Cloud projects (Pro accounts): retained until you delete them; deleted projects are kept in a recoverable state for up to 30 days, then permanently removed
  • Rendered Boost output files: briefly held in AWS S3 during download, then deleted
  • AI Scene Suggestion inputs: held by Anthropic for up to 30 days for safety review, then deleted (we don't store the request payload ourselves)
  • Account data (email, profile): retained while your account is active; deleted within 30 days of account closure (immediately if you use the "Delete account" action)
  • Export logs and credit ledger: retained while your account is active (required to honour usage limits and your credit balance)
  • User presets: retained while your account is active

International Transfers

ScreenshotPop is operated from the United Kingdom. Your data may be transferred to and processed in the following locations:

  • AWS (eu-central-1, Frankfurt): Boost Render jobs and their output files stay within the EEA.
  • Anthropic (United States): AI Scene Suggestion requests are processed in the US under standard contractual clauses.
  • Google (global): authentication data may be transferred to Google servers outside the UK/EEA, under Google's standard contractual clauses.
  • Creem, GoSupportIt: payment and feedback data are processed by these providers under their own compliance frameworks (see their respective privacy policies).

Your Rights

We honour the following rights for all users, regardless of location:

  • Access: request a copy of the personal data we hold about you
  • Rectification: correct inaccurate data
  • Erasure: ask us to delete your data ("right to be forgotten")
  • Portability: receive your data in a machine-readable format
  • Restriction / objection: limit or object to our processing of your data
  • Withdraw consent: where processing relies on consent

Self-serve: signed-in users can download a copy of their account data and permanently delete their account at any time from the account settings page. Deletion is immediate and irreversible — projects, images, presets, and account records are removed in a single cascade.

To exercise any of the other rights above (rectification, restriction, objection) or if you can't access the self-serve actions, email us at hello@afterimage-dev.com. We'll respond within one month.

UK / EU residents: you also have the right to lodge a complaint with the UK Information Commissioner's Office (ico.org.uk) or your local EU supervisory authority.

California residents: you have the same access, deletion, and portability rights above. We do not sell personal information, and we do not share personal information for cross-context behavioural advertising.

Children

ScreenshotPop is not intended for users under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

Data Security

All uploads are transmitted securely via HTTPS (TLS). For free accounts, images are processed in memory and discarded after rendering. For Pro accounts using cloud projects, images and project data are stored on our servers under access controls so only you can read or modify them. Videos are stored on our servers for up to 6 hours to support editing, then automatically deleted. Boost Render output files are held briefly in AWS S3 during download and then cleaned up.

We use access controls, database-level authentication, and vendor platforms with their own security certifications (Creem is PCI DSS compliant; AWS operates SOC 2 / ISO 27001 certified infrastructure). We implement appropriate technical and organisational measures to protect any information we do collect.

Data Controller

ScreenshotPop is operated by Afterimage Software. Contact: hello@afterimage-dev.com.

Contact

Questions about this policy? Contact us at hello@afterimage-dev.com