Privacy Policy

Last updated: February 16, 2026

What We Collect

When you use HeadshotBox, we collect:

• Account information: Email address and password (hashed).
• Photos: The selfies you upload for AI headshot generation.
• Physical description: Age range, ethnicity, hair color, eye color, and glasses preference to improve generation accuracy.
• Payment information: Processed securely by Stripe. We never store your card details.

How We Use Your Data

• Your photos are used exclusively to train a custom AI model of your likeness and generate headshots.
• We never share your photos or data with third parties.
• We never use your photos to train general AI models or for any purpose other than your order.

Data Retention

• Your uploaded photos and trained AI model are automatically deleted after 30 days.
• Generated headshots remain available in your account until you delete them.
• Account information is retained until you request deletion.

Data Security

Your data is encrypted in transit (TLS) and at rest. We use Supabase for secure database storage and Vercel for hosting, both of which maintain industry-standard security practices.

Your Rights

You can request deletion of your account and all associated data at any time by emailing support@headshotbox.io.

Contact

For privacy questions, email support@headshotbox.io.