PixMaker Privacy Policy

How Pixply Ltd collects and uses your personal data

Last updated: 19 June 2026

This Privacy Policy explains how Pixply Ltd (“we”, “us”, “our”) collects, uses, shares and protects personal data when you use the PixMaker product, app, website and related services. It applies to users in the United Kingdom, the European Economic Area, the United States and Japan, and should be read together with the PixMaker User Agreement.

1. Who is responsible for your data

Pixply Ltd is the data controller for the personal data described in this policy. Pixply Ltd is registered in England and Wales under company number 16040467, with its registered office at Office One, 1 Coldbath Square, Farringdon, London, United Kingdom, EC1R 5HL.

For privacy questions or to exercise your rights, contact us at support@pixply.io.

2. The data we collect

Information you give us

  • Account data: name, email address, password and account settings.

  • Order and payment data: items purchased, deposit and balance status, billing and delivery details, and limited transaction information. Card details are handled by our payment providers and are not stored by us.

  • Images you upload or import: photos or images you import into the image conversion tool. These may be processed in the app or on our servers, depending on the feature, to convert them into bead patterns.

  • AI inputs: the text prompts you enter into AI features such as text based pixel art generation.

  • Support data: messages, attachments and information you share when you contact support.

Information we collect automatically

  • Device and app data: device model, operating system, app version, language, settings and identifiers.

  • Connection data: Bluetooth pairing status and product or firmware version, used to connect and operate the board.

  • Usage and diagnostic data: features used, interactions, crash reports, performance and error logs.

  • Approximate location: derived from your IP address for security, fraud prevention and regional settings. We do not collect precise GPS location unless you separately enable a feature that needs it.

Information from third parties

We may receive limited data from app stores, payment providers, delivery partners, analytics providers and processing providers, used to deliver and improve the services.

3. How we use your data and our legal bases

Under UK and EU data protection law we rely on the following legal bases:

  • To provide PixMaker — create your account, connect the board, run app features, convert your uploaded images, run AI features, and process orders and deposits (performance of a contract).

  • To provide support and manage returns, refunds, cancellations and warranty (contract and our legitimate interests).

  • To secure the services — prevent fraud, abuse and unauthorised access, and keep the app and product safe (legitimate interests and legal obligation).

  • To improve and develop PixMaker — analyse usage, fix bugs and build new features (legitimate interests; consent where analytics require it).

  • To communicate with you — send service, order, safety and account messages (contract and legitimate interests), and marketing only where you have consented or where permitted by law.

  • To meet legal obligations — accounting, tax, consumer protection and product safety requirements (legal obligation).

Where we rely on consent, you can withdraw it at any time without affecting processing already carried out. Where we rely on legitimate interests, you can object as described in section 8.

4. Your images and AI inputs

When you use the image conversion tool, the image you upload or import may be processed in the app or on our servers, depending on the feature, to produce a bead pattern. When you use AI features, the text prompt you enter is processed to generate a result, which may involve trusted processing providers acting on our instructions.

We use your uploaded images and AI inputs only to provide the feature you requested and to keep the service safe and reliable. We do not sell your images or inputs, and we do not use them to train third-party public AI models without your consent. You are responsible for ensuring you have the rights to any image you upload, as set out in the User Agreement. We retain images and inputs only as long as needed to provide the feature, support you and meet legal or security requirements.

5. Cookies and similar technologies

Our website and app may use cookies and similar technologies for essential functionality, security, preferences and, with your consent where required, analytics. You can manage non-essential cookies through the consent controls we provide and through your browser or device settings.

6. Children’s privacy

PixMaker is not directed to children below the minimum age set out in the User Agreement (16, or 13 in the United States, or the minimum digital consent age that applies to you). We do not knowingly collect personal data from children below that age, and such children must not create an account or submit personal data through the app. For US users, we do not knowingly collect personal data from children under 13 in a way that would require verifiable parental consent under COPPA. If you believe a child has provided us with personal data without the required consent, contact us and we will delete it.

7. Sharing your data

We share personal data only as needed, with:

  • Service providers (processors) for hosting, cloud storage, image and AI processing, payments, delivery, analytics, communications and support, under contracts that require them to protect your data;

  • App stores and operating system providers as part of normal app distribution;

  • Authorities, regulators or advisers where required by law, to protect rights or safety, or to enforce our terms; and

  • A buyer or successor if we sell or reorganise the business, subject to this policy.

We do not sell your personal data for money. Where US state laws treat certain ad-related data sharing as a “sale” or “share”, see section 10 for your choices.

8. Your rights (UK and EEA)

Subject to conditions in the law, you have the right to access your data; to correct it; to erase it; to restrict or object to processing; to data portability; to withdraw consent; and not to be subject to solely automated decisions with legal or similarly significant effects. To exercise any of these, contact us at the email above; we will respond within the time the law allows. You also have the right to complain to your local data protection authority. In the UK, this is the Information Commissioner’s Office (ICO).

9. International transfers

We operate across the UK, EEA, US and Japan, so your data may be transferred to and processed in countries outside your own. Where we transfer personal data out of the UK or EEA to a country without an adequacy decision, we use appropriate safeguards such as the UK International Data Transfer Agreement or the EU Standard Contractual Clauses, together with additional measures where needed. You can ask us for more information about these safeguards.

10. US state privacy rights

If you are a US resident in a state with applicable privacy laws (such as California, Virginia, Colorado, Connecticut, Utah and others), you may have the right to know what personal information we collect, to access or delete it, to correct it, to obtain a portable copy, and to opt out of any “sale” or “sharing” for cross-context behavioural advertising and of certain profiling. We will not discriminate against you for exercising these rights. California residents may also request information about disclosures for direct-marketing purposes. To make a request, contact us at the email above; we may need to verify your identity, and you may use an authorised agent where the law allows.

11. Japan (APPI)

For users in Japan, we handle personal information in accordance with the Act on the Protection of Personal Information (APPI). We use personal information within the purposes set out in this policy, take appropriate security measures, and supervise our service providers. Where we transfer personal information to third parties outside Japan, we do so in line with APPI requirements. You may request disclosure, correction, suspension of use or deletion of your personal information by contacting us at the email above.

12. How long we keep your data

We keep personal data only as long as needed for the purposes described here — for example, for the life of your account, to provide and support the services, and to meet legal, tax, accounting and product safety obligations — after which we delete or anonymise it. Backup copies are deleted on a rolling basis.

13. How we protect your data

We use technical and organisational measures appropriate to the risk, such as encryption in transit, access controls and limited staff access. No system is perfectly secure, but we work to protect your data and to notify you and the relevant authorities of serious breaches where the law requires.

14. Changes to this policy

We may update this Privacy Policy from time to time. If a change is material, we will give reasonable notice through the app, by email, on the website or by another reasonable method. The “Last updated” date shows when the current version took effect.

15. Contact

Pixply Ltd — privacy enquiries: support@pixply.io.