Effective Date: 10 November 2025
This Privacy Policy describes how DreamLens and its affiliates ("DreamLens," "we," "our," or "us") collect, store, use, manage, and protect your personal information when you use any mobile applications that hyperlink to this Privacy Policy and are available for download in the Google Play Store, Apple App Store or any other third party app store, or are pre-installed on third party devices (the "Apps"), or any other websites, pages, features, or content owned or operated by DreamLens (collectively, including the Site and Apps, the "Services").
By using our Services, you agree to the terms of this Privacy Policy and consent to the collection and use of your information as described herein. If you do not agree with any part of this Privacy Policy, please discontinue the use of our Services immediately.
This Policy is part of, and is governed by, the terms and conditions set forth in our Terms of Service located at https://www.ai-dreamlens.com/agreements/privacy-policy.html. Please read the Terms of Service carefully before you use our Services.
We reserve the right to modify or update this Privacy Policy from time to time at our sole discretion to reflect changes in our services, technology, or applicable laws. We will notify you of any material changes by posting the updated policy on this page with a new "Last Updated" date, and/or through other communication channels within our Services. Your continued use of our Services after the effective date of the revised Privacy Policy constitutes your acknowledgment and acceptance of the terms therein. We encourage you to periodically review this page for the latest information on our privacy practices.
"Personal Data" refers to any information that relates to an identified or identifiable natural person. Depending on your interaction with DreamLens, we process different categories of data through various means. Certain data is processed automatically when you visit our website or use our services, while other data is processed only when you voluntarily provide it—such as by contacting us via web forms or uploading content. Examples of Personal Data we process include:
| Category | Examples Specific to DreamLens | Purposes of Use |
|---|---|---|
| Identifiers | Device identifier (e.g., Device ID, Advertising ID), IP address, Region/locale setting. If you choose to log in using a third-party account (e.g., Google, Apple ID), we may receive your name, email, and profile identifier, depending on what you authorize. | • Account creation and authentication • Providing and maintaining the Services • Communicating with you |
| Account Data | Subscription tier, credit balance, preferences (e.g., language, style preferences, display name if you choose to set one). | • Providing and managing your account and subscriptions • Personalizing your experience • Processing transactions and maintaining credit balances |
| Financial Data | Billing information processed by payment providers (e.g., app store transaction receipts, purchase history, subscription details). | • Processing your payments and transactions • Fraud prevention • Compliance with financial regulations |
| Content Data | Input prompts, uploaded photos/videos (which may contain facial imagery), AI-generated outputs, user-applied tags or captions. | • Providing the core AI creation and editing features you request • Personalizing your experience • Improving our AI models (e.g., on anonymized/aggregated data) |
| Technical Data | Device info, OS version, crash logs, diagnostics, model version used, API call logs, GPU compute usage (for pro features). | • Service functionality and security • Analytics and performance improvement • Fraud prevention |
| Behavioral / Usage Data | Feature interaction logs, prompt patterns, content style preferences, engagement data (e.g., likes, follows, community actions). | • Improving and personalizing our Services and AI models • Understanding user preferences and trends • Fostering community engagement |
We may also process anonymized, aggregated, or de-identified information that cannot be used to identify you.
DreamLens collects Personal Data from various sources to ensure a secure and efficient user experience. Some data is collected directly from you, automatically from your use of the Services, and from certain third parties, as described below:
When you interact with DreamLens, you may voluntarily provide information such as content uploads, prompts, reference images, messages to customer support, or participation in promotions, surveys, and feedback sessions. We may also collect account-related information if you choose to log in using a third-party account (e.g., Google Account or Apple ID), such as your name, email address, or profile identifier. This information is used to facilitate AI features, manage your account, provide support, deliver the services you request, and respond to your feedback or inquiries.
Facial Data: We are committed to delivering a variety of creative tools. Our Services use technologies, including machine learning and artificial intelligence, to provide you with personalized solutions. When you choose to use AI-powered features that require facial processing, we may collect and process Facial Data from the content you directly and voluntarily upload. This data includes biometric information, such as facial geometry and facial landmarks, extracted solely and exclusively to enable the core, requested functionalities. These functionalities include generating and delivering outputs such as personalized avatars, headshot editing, artistic filters and effects, image or video transformations, and other AI-based content creation tools. This processing is used to provide these features and is not used to identify you. By choosing to use these AI-powered features and uploading content containing your face, you expressly consent to our collection, processing, and storage of your Facial Data as described in this Privacy Policy.
Our Services explicitly do NOT utilize facial recognition technology, create or store biometric templates, or engage in any other system regulated by biometric privacy laws. We do not extract, store, or process facial geometry for the purpose of establishing a biometric identifier beyond what is necessary for the specific, consented AI functionality. We do not sell, lease, trade, or otherwise profit from your Facial Data.
We process the Personal Data of users in accordance with applicable privacy and data protection laws, collectively referred to as "Data Protection Laws", which include, among others, the EU General Data Protection Regulation (GDPR, Regulation (EU) 2016/679), the UK General Data Protection Regulation (UK GDPR), the California Consumer Privacy Act of 2018 and California Privacy Rights Act (CCPA/CPRA), and any equivalent legislation that grants individuals rights over their Personal Data. Pursuant to the Data Protection Laws, for users located in the European Economic Area (EEA), the United Kingdom, and Switzerland (collectively, the "Designated Countries"), we process Personal Data, including any Facial Data that may be considered sensitive personal data, only on the basis of your explicit consent in accordance with applicable Data Protection Laws.
DreamLens obtains your explicit consent before collecting and processing any personal data, including photographs containing Facial Data. You have the right to control and manage your Personal Data, and you may withdraw your consent at any time by requesting its deletion. We will seek your additional consent should we intend to use your information for any purpose not disclosed in this Privacy Policy.
DreamLens does not access or activate your camera, microphone, or photo gallery without your explicit consent. Images and videos, which may contain Facial Data, are processed only when you actively choose to upload or capture content within the Apps. You are under no obligation to provide any information or media. However, if you choose not to provide certain data, some features—particularly those that rely on AI-powered image or face processing, content creation tools, or personalized outputs—may not function properly or may be unavailable. To support these features, technical information such as approximate device location (not precise), session data, and system logs is automatically collected to the extent necessary for the App's operation, performance, and service delivery. We do not collect any additional personal information or media from your device without your consent.
DreamLens automatically collects certain information when you use our Service, including device information (device type, operating system, app version), session information (date and time of use, session duration), usage data (feature usage, click patterns, AI Tools usage), crash logs, IP address, and approximate location. This information is used to maintain and improve our services, ensure security, analyze trends, and prevent abuse. Aggregated or pseudonymized data may also be used for analytics or marketing purposes.
This data is used to create and manage your account, authenticate licenses, provide customer support, fulfill orders, manage billing, deliver in-product messages, and improve our services. Note that payment information is handled exclusively by certified third-party processors and is not stored or processed by DreamLens.
If you choose to log in using a third-party service (such as Google or Apple) in the future, we may receive certain account information from these providers, including your name, email address, and profile identifier, but only to the extent you authorize. We do not collect additional personal information from third-party providers without your explicit consent. Any information received from third parties is used solely to provide and improve our Services, manage your account, and deliver the features you request.
We use the Personal Data we gather through our Services for the purposes described below. If we use your Personal Data in any other way, we will disclose this to you. You can choose not to share your information with third parties for marketing purposes, or to allow us to use your Personal Data for any purpose that is incompatible with the purposes for which we originally collected it or subsequently obtained your consent. If you choose to limit the ways we can use your Personal Data, some or all of the Services may not be available to you.
To Provide and Maintain Our Services: We require certain information from you to provide the Services you request, which may include your device information, usage data, and content you upload. This information allows us to manage your account, generate outputs you requested and ensure your overall experience is smooth and reliable. We may share such information with our service providers or partners only to the extent necessary to deliver these Services (see Section 7).
To Provide Customer Service. We process your Personal Data when you contact us to help you with any questions, concerns, disputes or issues, or to provide us with your feedback. Without your Personal Data, we cannot respond to you or ensure your continued use and enjoyment of the Services.
For Internal Business Operations: We process information about the way you use and interact with our Services to: help us improve our Services; build new Services; and build customized features or Services; and to train and improve our technology such as our machine learning modules, algorithms, and labs. Such processing ensures your continued enjoyment of part or all of our Services.
For Marketing and Advertising: We may process your contact information or information about your interactions on our Services to: send you marketing communications; deliver targeted marketing; inform you about events, webinars, or other materials, including those of our partners; and, keep you up-to-date with our relevant products and Services. Transactional communications about your account or our Services are not considered "marketing" communications. You can opt-out of our marketing activities at any time.
To Personalize Your Experience on The Services: We allow you to personalize your experience on our Services via social media plugins on our Services (e.g., Facebook, Google, Instagram, Twitter, etc.), by keeping track of your preferences (e.g., nickname or display name, time zone, language preference, etc.), and more. Without such processing, you may not be able to access or personalize part or all of our Services. Designated Countries: Pursuant to the Data Protection Laws, we process the Personal Data of users located in the Designated Countries to satisfy our legitimate interests as described above.
For Security and Legal Reasons: We process your Personal Data to improve and enforce our security measures; combat spam, malware, malicious activities or security risks; and to monitor and verify your identity so that unauthorized users do not access your account with us. We cannot ensure the security of our Services if we do not process your Personal Data for security purposes. We process your Personal Data to pay our taxes or fulfill our other business obligations, and/or to manage risk as required under applicable law. We cannot perform the Services in accordance with our legal and regulatory requirements without processing your Personal Data for such purposes.
To provide, secure, and improve our Services, DreamLens and our trusted partners use cookies and similar technologies, such as pixels, web beacons, and software development kits (SDKs). These tools help us recognize your device, maintain your preferences, and understand how you interact with our Services.
The information gathered through these technologies serves several interconnected purposes. It is essential for the basic operation and security of our websites and apps, allowing features like secure login to function. We also use it to analyze traffic patterns and user interactions, which helps us diagnose problems and improve performance. Furthermore, this data enables us to personalize your experience by remembering your settings and preferences, and to make relevant content and advertising recommendations both on and off our Services. This includes using data to better understand your interests and tailor our communications accordingly.
You have control over the use of many of these technologies. Most web browsers allow you to manage your cookie preferences, and your mobile device may offer settings to limit ad tracking. Please note that disabling certain technologies, particularly those that are strictly necessary, may impact the functionality of the Services. For any questions regarding our use of these technologies or to exercise your privacy choices, please contact us at legal@ai-dreamlens.com.
When sharing information with third parties, DreamLens ensures that they assume responsibilities no less than what is outlined in this Privacy Policy. We require these third parties to adhere to the information-sharing practices and standards described herein to uphold the same level of privacy protection. We may share your information in the following limited circumstances and with appropriate safeguards:
DreamLens may disclose Personal Data to our contractors and third-party vendors and suppliers (collectively, "Service Providers") who provide services on our behalf, such as operating and supporting the Services, data analysis, and marketing. These Service Providers are contractually bound to use your information only for the limited function of providing services to us and in accordance with this Policy.
We engage a range of third-party service providers to support the operation, functionality, and improvement of our Services. The categories of data shared depend on the specific services you use and the purposes outlined below. Please note that only providers of AI-powered image and video processing services have access to uploaded content that may contain Facial Data; all other providers, including those for text AI, payments, and advertising, are contractually restricted from processing Facial Data.
We will update this policy to disclose the addition of significant new processors. All such providers act as our data processors under strict contractual terms that prohibit them from retaining your data after processing, using it for their own purposes (including model training), or sharing it with others.
We do not and will not authorize any of these providers to use Facial Data or other Personal Information for their own purposes, including model training, data analytics, profiling, product improvement, or marketing. They are prohibited from storing Facial Data beyond what is necessary to fulfill the requested processing, and they may not disclose or share Facial Data with any additional parties. Any temporary caching that occurs during processing is strictly controlled, time-limited, and erased once processing is complete in accordance with Section 8 of this Policy. We do not sell, license, or share Facial Data with advertisers, data brokers, or marketing partners. Facial Data is never used for identification, authentication, or biometric recognition.
To the extent permitted by law, we will disclose your Personal Data if we believe it is reasonably necessary to:
In the event of a merger, acquisition, bankruptcy, or sale of all or a portion of our assets, your Personal Data may be transferred as a business asset. We will notify you via email or a prominent notice in our Services of any change in ownership or use of your Personal Data, as well as any choices you may have. The successor entity will be bound by this Policy, unless it adopts a new policy which you accept.
Other than to the extent ordered by bankruptcy or other courts, the use and disclosure of all transferred Personal Data will be subject to this Policy. However, any Personal Data you submit or that is collected after this type of transfer may be subject to a new privacy policy adopted by the successor entity.
Affiliates: Based on your consent, we may share some or all of your contact information with our parent company, subsidiaries and corporate affiliates, joint ventures, or other companies under common control with us. If you would like us to stop providing your information to our affiliates for their own marketing purposes, you may opt-out by contacting us as provided in the "How to Contact Us" Section.
Advertising Partners: Based on your consent, we may share some of your information with third-party advertising partners to provide you with tailored content and advertisements. We may also share de-identified, aggregate information about our users, though we require partners not to attempt to re-identify such data.
Designated Countries: Pursuant to the Data Protection Laws, we process the Personal Data of users located in the Designated Countries based on our legal obligations, in the public interest, or your vital interests.
The main locations where we process your Personal Data include the United States. Your Personal Data may be transferred to and processed in countries outside your jurisdiction. In such cases, we ensure that appropriate safeguards (such as standard contractual clauses or binding corporate rules) are in place to protect your data in accordance with applicable data protection laws. Regardless of where your Personal Data is processed, we apply the same protections described in this policy. We also comply with certain legal frameworks relating to the transfer of data.
Designated Countries: When we transfer your Personal Data from the Designated Countries to a third country, we rely on approved data transfer mechanisms, such as the European Commission's Standard Contractual Clauses, to ensure an adequate level of protection for your data as required by applicable data protection laws.
Dreamlens understands that the security of your Personal Data is paramount. To protect your information from unauthorized access, disclosure, alteration, and destruction, we implement and maintain a comprehensive information security program comprising technical, physical, and organizational measures. These measures are designed to provide a level of security appropriate to the risks presented by the processing and the nature of the data.
Encryption in Transit: We protect the transmission of your Personal Data between your device and our servers using industry-standard Transport Layer Security (TLS) encryption.
Encryption at Rest: Sensitive Personal Data, including Facial Data, is encrypted while stored on our systems using robust cryptographic algorithms.
Access Controls: We adhere to the principle of least privilege, granting access to Personal Data only to authorized personnel and service providers who require it to perform their job duties. Such access is governed by strict authentication mechanisms.
Network Security: We employ network security solutions, including firewalls and intrusion detection systems, to guard against unauthorized network access.
Vendor Management: We require all service providers that handle Personal Data on our behalf to contractually commit to implementing and maintaining comparable security safeguards.
However, we cannot guarantee the security of your Personal Data or that loss, misuse, unauthorized acquisition, or alteration of your data will not occur. We also have no way of protecting any of your Personal Data that is not in our control, such as any information transmitted via email or wireless connections.
Maintaining the security of your Personal Data is also your responsibility. Where we require you to register an account, you should choose a password of sufficient length and complexity and keep your password confidential. Do not leave your device unlocked so that other individuals may access it. Make sure you trust the wireless connections you are using to access or use our Services.
We will limit the storage of your Personal Data to the time necessary to serve the purpose(s) for which your Personal Data was processed, to enforce our agreement, policies or terms, to resolve disputes, or as otherwise required or permitted by law. Please contact us if you have any questions about our retention periods. The specific retention period varies depending on the nature of the data and the reason for its processing
User Account Data: We retain the personal data associated with your account (e.g., profile information, preferences) for the duration of your account's lifecycle. You can delete this data at any time by deleting your account.
Marketing Data: If you have subscribed to our marketing communications, we will retain your contact information for this purpose until you opt-out or unsubscribe.
Payment and Transaction Records: We are required to retain records of your financial transactions, including purchase history, payment method identifiers (e.g., last four digits of a credit card), and billing information, to comply with accounting, tax, and anti-fraud regulations. These records are typically retained for a period of 5 to 7 years from the date of the transaction, as mandated by the laws of the jurisdictions in which we operate. This retention is necessary for our legitimate interests in fulfilling legal obligations and cannot be overridden by a standard data deletion request.
Facial Data: We apply the strictest standards to Facial Data. Your original uploaded content and derived Facial Data are stored only as long as necessary to process your request and deliver you requested output. We do not store the final generated results and outputs. All uploaded images and associated Facial Data are automatically deleted from our systems within a short retention window of no more than thirty (30) days. You may also delete your uploaded content directly through the Service or by contacting us at any time. All deletion and destruction procedures follow industry-standard security practices to ensure that Facial Data cannot be reconstructed or recovered.
You are in control of your data. You have the right to request the deletion of your personal data at any time. We will honor your request without undue delay, though we may be unable to comply in specific circumstances, such as when retention is required by law (e.g., the preservation of transaction records for tax purposes). In such cases, we will inform you of the reason. For Facial Data, we permanently delete or irreversibly anonymize it once (i) the processing purpose has been fulfilled, or (ii) your deletion request is received and processed—whichever occurs first. If applicable law requires us to retain Facial Data longer, we will retain it only to the extent and duration strictly necessary, following industry-standard secure deletion practices to ensure the data cannot be recovered.
After the retention period ends, we securely delete your data using methods that prevent recovery. For statistical or research purposes, we may anonymize data so it can no longer be linked to you, which we may use indefinitely.
You have certain rights regarding your personal data based on your location and applicable law. We commit to facilitating the exercise of these rights.
Access: Request access to the Personal Data we hold about you.
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your Personal Data, subject to applicable legal and contractual obligations.
Restriction/Objection: Object to or request restrictions on certain types of processing.
Portability: Request a copy of your Personal Data in a structured, commonly used, and machine-readable format.
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland (Designated Countries), you have the following rights under the GDPR and equivalent laws, which we respect and uphold:
Right of Access: You can request a copy of the personal data we hold about you.
Right to Rectification: You can request that we correct any inaccurate or incomplete personal data.
Right to Erasure ('Right to be Forgotten'): You can request the deletion of your personal data, particularly the Facial Data you have uploaded, when it is no longer necessary for the purposes it was collected, or when you withdraw your consent.
Right to Restriction of Processing: You can request that we temporarily or permanently stop processing all or some of your personal data.
Right to Data Portability: You can request a structured, commonly used, and machine-readable copy of your personal data you have provided to us, and you may ask us to transmit it to another controller.
Right to Object: You can object to the processing of your personal data based on our legitimate interests. We will no longer process the data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
Right to Withdraw Consent: Where we process your personal data based on your consent (e.g., for processing Facial Data), you have the right to withdraw your consent at any time. This does not affect the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please submit a verifiable request to us by email at legal@ai-dreamlens.com or through any other designated channel we provide.
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). This section supplements the rest of our Privacy Policy and applies solely to California residents.
Right to Know: You may request information about the categories of Personal Data we collect, the purposes for which it is used, the categories of sources from which it is collected, and the categories of third parties with whom we share it.
Right to Opt Out of Sale or Sharing: Under California law, "sharing" refers to making data available to third parties for cross-context behavioral advertising. We do not sell personal data for monetary compensation. However, certain disclosures of identifiers and usage data to our advertising and analytics partners may be classified as "sharing" under this broad definition. To exercise your right to opt-out of such "sharing," please submit a verifiable request to us by email at legal@ai-dreamlens.com or through any other designated channel we provide. We will process your opt-out request in accordance with the CCPA/CPRA.
Limit Use of Sensitive Personal Data: You have the right to limit the use and disclosure of your sensitive personal data if we are using it for purposes beyond what is necessary to provide the Services. We only use sensitive personal data (such as Facial Data) for purposes permitted by the CCPA/CPRA that do not require offering a limited use right.
Correct Inaccurate Information: You have the right to request that we correct any inaccurate personal information we maintain about you.
Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. This means we will not deny you goods or services, charge you different prices, or provide a different level or quality of service.
We handle biometric information, including Facial Data, in accordance with all applicable provisions of the CCPA/CPRA. We do not sell or share such information for commercial purposes without first obtaining your explicit, prior consent.
To make a request, please email us at legal@ai-dreamlens.com or use our online privacy request form. We will require certain information to verify your identity (e.g., account email, recent transaction details) before processing your request. We will confirm receipt of your request within 10 days and respond within 45 days as required by law.
Our Services are not intended for individuals under the age of 13. We do not knowingly collect or sell the Personal Data of children under 13. If we learn that we have collected Personal Data from a child under 13, we will delete it promptly. If you believe a child under 13 may have provided us with Personal Data, please contact us.
For California residents between 13 and 16 years of age, we will not "sell" or "share" their Personal Data without affirmative authorization (opt-in consent), as required by the Data Protection Law.
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at: legal@ai-dreamlens.com.