Privacy Policy

Updated: 01.06.2024

At Dr. Headshot ('We', 'Us', 'Our'), we are committed to protecting your privacy. This Privacy Policy describes how your personal information is collected, used, and shared when you use our Service.

The responsible party for processing personal data in accordance with the GDPR is:

Jürgen Gunz
Fenzlgasse 1/14
1150 Vienna
Austria
Contact: support@drheadshot.com

1. INFORMATION WE COLLECT

When you use our Service, we may collect the following types of information:

  • Personal Information: This includes your name, email address, and other information you provide when you create an account or use our Service.
  • Usage Information: We collect information related to how you use the Service, including actions you take on the Service.

2. HOW WE USE YOUR INFORMATION

We may use the information we collect for various purposes, including to:

  • Provide, maintain, and improve the Service;
  • Respond to your inquiries and provide customer service;
  • Communicate with you about updates, changes, and other news related to the Service;
  • Monitor and analyze trends, usage, and activities related to our Service;
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities and protect the rights and property of Dr. Headshot and others;
  • Personalize the Service and provide advertisements, content, or features that match user profiles or interests.

3. OUR USE OF THIRD PARTY SERVICES

We use several third-party services to enhance your experience, including:

  • OpenAI API: We use this service to provide some features of our Service.
  • Google Firebase: If you register we use Firebase for authentication.
  • Google Cloud Delivery Network / Storage: We use this service to serve images on our Service.

4. SHARING OF INFORMATION

We do not sell your personal information to third parties. We may share your information with third parties in the following situations:

  • With your consent or at your direction;
  • With vendors, consultants, and other service providers who need access to such information to carry out work on our behalf;
  • In response to a request for information if we believe disclosure is in accordance with, or required by, any applicable law, regulation, or legal process;
  • If we believe your actions are inconsistent with our user agreements or policies, or to protect the rights, property, and safety of Dr. Headshot or others.

5. DATA SECURITY

We take measures to help protect information about you from loss, theft, misuse, and unauthorized access. However, Dr. Headshot cannot guarantee the absolute security of your information.

6. CHANGES TO THIS POLICY

Dr. Headshot may modify this Privacy Policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, depending on the specific changes, we may provide you with additional notice.

By continuing to use the Service after those changes become effective, you agree to be bound by the revised Privacy Policy.

If you have any questions about this Privacy Policy, please contact us at support@drheadshot.com.

7. YOUR RIGHTS UNDER THE GENERAL DATA PROTECTION REGULATION (GDPR)

If you are a resident of the European Economic Area (EEA), you have the following data protection rights:

  • Access: You have the right to access and receive a copy of the personal information we hold about you.
  • Rectification, Deletion and Restriction: You have the right to request that we rectify or delete any personal information that we have collected, or restrict the processing of your personal information.
  • Objection: If we are processing your personal information based on a legitimate interest, you may challenge this. However, we may be entitled to continue processing your personal information based on our legitimate interests or where this is relevant to legal claims. You also have the right to object to direct marketing.
  • Data Portability: You may have the right to request us to transfer personal information that you have provided to us.
  • Withdraw Consent: Where the processing of personal information is based on your consent, you have the right to withdraw this consent at any time.
  • Complain: You have the right to lodge a complaint with your local data protection authority if you believe that we have not complied with applicable data protection laws.

If you wish to exercise any of these rights, please contact us at support@drheadshot.com.

8. DATA BREACH NOTIFICATION

If we become aware of a data breach that impacts your personal data, we will notify you as soon as possible but no later than 72 hours after discovering the breach.

9. GOOGLE FIREBASE AUTHENTICATION

We use Google Firebase as one of our methods of authentication. When you choose to sign in with Gmail or your email, Firebase provides us with the following information:

  • Email address: We use your email address to create a new account or to link with an existing account if you choose to sign in with Gmail.
  • Profile Information: If you choose to sign in with Gmail, we may also receive your name and profile picture from Google. This information is used to personalize your user experience.

Please note that Google Firebase may also collect other data as per their privacy policy. We recommend that you read their policy to better understand the data they collect. Our use of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

Your personal data collected through Firebase is stored and processed by Google Firebase. For more information, please visit Google Firebase Privacy and Security.

10. COOKIES

Cookie Settings

11. AI PICTURES

When you use our platform to upload images and generate images using our AI, we treat your data with the utmost care and confidentiality. Your uploaded and generated images as well as associated data are stored on our secure servers in the EU. To further protect your privacy, you will receive an email 30 days after the generation of the images informing you that you can have your data deleted. If you do not respond to this email within 7 days, your data will be automatically removed from our systems. In addition, we offer you the option to manually delete your data at any time via our user portal. This allows you full control over your personal information and its processing by our services.

12. CORPORATE CUSTOMERS AND TEAMS

During registration or at the time of payment completion, a separate data processing agreement is concluded between Dr. Headshot and the corporate customer.

When you order headshots for teams, you have the option to invite employees to the Dr. Headshot platform via email. An invitation link is sent to the employees, allowing them to upload images that will be associated with the corporate account.

By providing the email address of your employee(s) or uploading images of your employee(s) to send invitations, you declare that you are authorized to do so in compliance with all applicable regulations, especially those related to data protection, and that you hold Dr. Headshot harmless in this regard.