Privacy Policy

Archifi ("we", "us", "our") operates the archifi.app website and service. This policy explains what data we collect, how we use it, and your rights.

1. Data We Collect

Account data: Username, display name, and hashed password. If you register with a passkey, we store your WebAuthn credential (public key only).

Content you upload: Photos, documents, videos, and social media exports you choose to import. We store these on your behalf and do not access them except to provide the service (thumbnail generation, AI classification if enabled).

Usage data: We log basic activity (uploads, logins) for your activity feed. We do not use third-party analytics or tracking scripts.

2. How We Use Your Data

• To provide, maintain, and improve the Archifi service
• To generate thumbnails and organize your content
• To run AI classification on your uploads (optional, using Google Gemini API) — your content is processed but is not retained by Google for training per their API terms
• To display "On This Day" memories based on dates in your content
• To authenticate you and protect your account

3. What We Do Not Do

• We do not sell your personal data
• We do not serve ads or use your content for ad targeting
• We do not train AI models on your content
• We do not share your content with third parties except as needed to provide the service (cloud storage, AI classification)
• We do not use third-party tracking, analytics, or cookies beyond your session authentication token

4. Face Recognition Data

Archifi includes optional face recognition for grouping photos by person. Here is how face data is handled:

• What is collected: When face recognition is enabled, Archifi detects faces in uploaded photos and generates a 128-dimensional numerical face encoding (a mathematical vector) for each detected face. A cropped thumbnail of the face region is also stored. No raw biometric templates or 3D face maps are created.
• How it is used: Face encodings are used exclusively to group photos by person, allowing you to browse your photo archive by the people in it. The face grouping is entirely automated and runs on your server. There is no facial identification against external databases.
• Processing location: All face detection and encoding is performed on your self-hosted server using the open-source dlib library. No face data is transmitted to GritWerk, Apple, or any third party.
• Storage: Face encodings are stored in your server's local SQLite database. Face crop thumbnails are stored on your server's local filesystem. All face data resides on infrastructure you control.
• Retention and deletion: Face data is retained as long as the associated photos exist. When you delete a photo, the associated face data is deleted. You can delete all face data for a specific person, clear all face data entirely via the app settings, or delete data directly from your server at any time.
• Third-party sharing: Face data is never shared with any third party. GritWerk has no access to your face data.

5. Data Storage

Your data is stored on servers hosted by Hetzner Online GmbH in the European Union. File uploads may additionally be stored in Cloudflare R2 object storage. Both providers maintain data protection policies compliant with GDPR.

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, all your content and personal data will be permanently deleted within 30 days. You can export all your data at any time from the Settings page.

7. Your Rights

You have the right to:

• Access all data we store about you (available via data export)
• Rectify inaccurate data in your account
• Delete your account and all associated data
• Export your data in standard formats (JPEG, MP4, PDF, JSON)
• Restrict processing — you can disable AI classification at any time

8. Cookies

We use a single httponly session cookie (life_token) to keep you logged in. We do not use advertising cookies, tracking pixels, or third-party cookies of any kind.

9. Children's Privacy

Archifi is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal data, please contact us.

10. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated effective date.

11. Contact

For privacy inquiries: support@gritwerk.com